Home / malware BrowserModifier:Win32/SupTab
First posted on 08 November 2016.
Source: MicrosoftAliases :
There are no other names known for BrowserModifier:Win32/SupTab.
Explanation :
This threat installs a browser extension, toolbar, or add-on that you did not consent to from the standard browser consent dialogs or prompts.
Behavior
Installs a browser extension
In Internet Explorer the threat adds a browser extension without asking your consent.
Changes your search provider
When an application changes your default search provider in Internet Explorer, you should also see a prompt that confirms if you want to change your default search provider. It will list the name of the program that is asking you to change it, the new search provider, and your current search provider.
This threat modifies your Internet Explorer search settings without asking permission, bypassing the browser prompt:
Note that the search icon appears as Bing search, but directs to Oursurfing.
Modifies browser shortcuts
This threat uses modifies shortcut files of popular web browsers. The modified browser shortcut files point to any of the following websites:
- istartpageing.com
- mylucky123.com
- mysites123.com
- nuesearch.com
- omniboxes.com
- yoursearching.com
- yoursites123.com
It makes this modification so that when you launch the browser using a modified shortcut file, the browser opens any of the websites above.
Additional information
You can read our objective criteria to find out more about how and why we detect this as unwanted software.
You can also read the MMPC blog Staying in control of your browser: New detection changes for additional information on how we're working to keep you in control of your browser.Last update 08 November 2016
