Click on screenshot to zoom
Danger level 7
Type: Browser Hijackers
Common infection symptoms:
  • Hijacks homepage
  • Changes default search engine

When opens up on your browser, it is easy to believe this domain belongs to some search engine that can provide you with reliable search results. However, if your homepage is set to this domain, and you have no idea how it happened, the situation is clear: you have been infected with a browser hijacker. A browser hijacker is a type of computer security threat that modifies browser settings without user’s permission. It is intrusive and potentially harmful. It is strongly recommended that computer users remove and other similar intruders immediately upon noticing them. No one should tolerate them.

Yet, since we are trying to get to the core of this infection, perhaps we should check it how entered your computer in the first place? After all, it is obvious that you did not install this browser hijacker willingly. Or did you?

One of the most frustrating things about such intruders is that they cannot infect your computer at will, so they require your permission to step into your system. Of course, users are seldom aware that they allow such unwanted applications to enter their computers. This happens because does not have a direct distribution source and so it spreads in software packages. If you have recently downloaded a video codec, a video cutter, or any other freeware application from some third-party source, it is very likely that this browser hijacker came bundled with the same program in a third-party installer.

This is exactly how the other programs from the ELEX hijacker family were distributed, too. So one of the best ways to avoid a browser hijacker infection is to refrain from downloading freeware programs. Especially, if they come from third-party sources. Sometimes even programs from official websites are bundled with additional features, so it goes without saying that apps from files-sharing sites are far from being perfectly safe.

When this browser hijacker changes your homepage, it starts using tracking cookies to monitor your online activity. It cannot log your keystrokes and thus figure out your login and password information. However, the hijacker can process your web browsing patterns; the most often used keywords, and more or less figure out your likes and preferences. Then, it can show modified search results that would be related to the things you like. Why does do that? It needs to make money for its creators, and every time you click its link, you help it generate some profit via the pay-per-click system.

Unfortunately, you get nothing in return for helping this program make money. Of course, the tactic itself is not illegal, but we should take into consideration other security concerns associated with this threat. For instance, malicious exploitation.

As mentioned, does not try to steal your personal information and it does not want to infect you with malware. But whenever we encounter a browser hijacker we have to understand that such an application presents a particular vulnerability. It means that you were not attentive enough and this unwanted program entered your computer. Thus, it also means that more programs could do the same. Some of them could even exploit to slither into your system because browser hijackers have quite a few security loopholes that cyber criminals can easily exploit.

So if this goes on and on, and you do nothing about the situation at hand, eventually it could lead to a severe malware infection or personal data theft. Take this matter into your hands and remove today. At the bottom of this description, you will find manual removal instructions that will show you how to delete the hijacker from your browser.

After manual removal, do not forget to scan your computer with the SpyHunter free scanner. As mentioned, there might be several other unwanted programs on-board, so you should terminate them all in one swing. Also, a computer security tool of your choice will help you protect your PC from other unwanted programs in the future.

Please do not hesitate to contact us if you have more questions about this intruder or your computer’s security in general. If you need guidelines on how to protect your system from harm while you browse the web, our team is always ready to help.

How to Delete


  1. Press Win+R and the Run prompt will open.
  2. Type %AppData% into the Open box and click OK.
  3. Navigate to Mozilla\Firefox\[Unique User ID].
  4. Find and open the prefs.js file.
  5. Delete the following string: user_pref("browser.startup.homepage", "http:// ");
  6. Close the file.

Internet Explorer

  1. Press Win+R and type regedit into the Open box. Press OK.
  2. Go to HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main.
  3. Right-click the Start page value on the right.
  4. Choose Modify on the drop-down menu and edit the homepage address. Click OK.
  5. Navigate to HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.
  6. Modify the following values:


  1. Press Win+R and enter %LocalAppData%. Click OK.
  2. Open Google\Chrome\User Data\Default.
  3. Remove the Preferences, Secure Preferences, and Web Data files.
Download Spyware Removal Tool to Remove*
  • Quick & tested solution for removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.