Home Malware Programs Browser Hijackers Searchdwebs Virus

Searchdwebs Virus

Posted: June 24, 2013

Threat Metric

Ranking: 14,737
Threat Level: 5/10
Infected PCs: 3,546
First Seen: June 24, 2013
Last Seen: September 5, 2023
OS(es) Affected: Windows

Searchdwebs Virus Screenshot 1As a member of the 'Websearch' ring of websites, Websearch.Searchdwebs.info provides search redirects that are promoted by the Searchdwebs Virus, a browser hijacker that forces visitors to that site to allow Searchdwebs.info from benefiting from traffic without investing in any traditional e-marketing. Members of this family of sites, including the site of choice promoted by the Searchdwebs Virus's attacks, are not dangerous to your PC, but SpywareRemove.com malware experts emphasize that they don't have any benefits for the user and can provide irrelevant or advertisement-based search results. Repeated and undesirable redirects to Websearch.Searchdwebs.info or similar sites are evidence of a Searchdwebs Virus infection, and such infections always should be combated with anti-malware software that's able to remove the Searchdwebs Virus efficiently.

The Searchdwebs Virus: a Fresh Label for an Old Disease

Like the Searchdwebs.info website that the Searchdwebs Virus promotes in its attacks, the Searchdwebs Virus isn't an especially unique PC threat, most likely having been cloned from previous browser hijackers also involved in the same ring of Web search domains. The underlying business strategy of the Searchdwebs Virus is to redirect the users of compromised PCs to Searchdwebs.info and similar Websearch-based sites, which display a search field and no other content. Trying to use this search field will redirect the victims again, with Localmoxie.com being Websearch.searchdwebs.info's current choice of a search engine – one it shares in common with other exploitative sites like Websearch.simplespeedy.info, Websearch.a-searchpage.info, Websearch.youwillfind.info and Websearch.lookforithere.info.

Search result links and other content related to Localmoxie.com and other sites often encountered through the Searchdwebs Virus's attacks are not notable infection vectors or likely places to suffer from attacks by other PC threats. Hence, SpywareRemove.com malware experts have identified the browser redirects of the Searchdwebs Virus, itself, as the primary danger in such infections. Besides hindering your ability to search the Web with the site of your choice, a Searchdwebs Virus also may make browser changes that result in a less secure Web-browsing environment than is the norm.

The Right Treatment for Browser Hijacks from the Searchdwebs Virus

Homepage changes, search redirects and other attacks associated with browser hijackers like the Searchdwebs Virus always should be considered malicious, even if the sites that are promoted in such attacks don't necessarily include any hostile Web content. Because SpywareRemove.com malware researchers have failed to connect the Searchdwebs Virus to any specific browser add-on that could be removed easily, they suggest using general anti-malware software for finding and removing a Searchdwebs Virus infection.

The Searchdwebs Virus and similarly low-level PC threats usually are distributed, not by themselves, but along with other programs that are downloaded from unsafe sources. File piracy sites, torrenting sites and some general freeware websites all are major examples of the possible infection vectors for a Searchdwebs Virus.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



7zS.sfx.exe File name: 7zS.sfx.exe
Size: 261.66 KB (261662 bytes)
MD5: 7aee9a9cf97a446c99b34805be325e9e
Detection count: 17
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: June 26, 2013

Registry Modifications

The following newly produced Registry Values are:

HKEY..\..\..\..{RegistryKeys}SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{2E250190-F284-4666-8B06-ED067738BF5B}

Additional Information

The following directories were created:
%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\SearchNewTab%USERPROFILE%\AppData\LocalLow\SearchNewTab
Loading...