What is is yet another awkwardly named browser hijacker that poses as a legitimate search engine. You definitely should not trust it, and we recommend that you remove it because its primary purpose is to generate advertising revenue. In a nutshell, this so-called search engine is designed to hijack your web browser’s settings, such as the homepage and search provider and feature promotional links in its search results. A browser hijacker is considered a computer infection because it is set to enter a computer without your authorization. Thus, can pose a threat to your computer’s security, so we invite you to read this article to learn more.testtesttest

Where does come from?

We are of the opinion that knowing a program’s origins is of utmost importance. Therefore, we are going to overview the information regarding where it comes from. First of all, it is important to know its developer. Our malware researchers have discovered that this hijacker was created by a company called SuperWeb LLC. This company was previously known for publishing adware-type programs, such as High Stairs, Walermis, Thirteen Degrees, and so on. However, now it develops hijackers, such as Trendio Ads,, and Therefore, we conclude that this browser hijacker comes from an established malware developer that does not allow honesty to get in the way of making money.

Now let us talk distribution. It is important to know how this infection is distributed and spread the word so that more people would be in the know and avoid getting it on their PCs. Our malware analysts have found that this hijacker has a dedicated website at that features its installer. Now, this does not mean that it infects your computer without your authorization since, in this case, you make the decision whether to install it or not. Also, its installer for Google Chrome is featured on the Chrome Web Store at Nevertheless, there is a third distribution method called software bundling. Our researchers say that malicious bundles might inject this hijacker to Chrome and Firefox without your knowledge or consent. Hence, that is the main reason why it is regarded as a malicious.

How does work? works like any other browser hijacker as its main objective is to replace your web browser’s homepage and search provider (and in the case of Chrome, the new tab page) with its address and force you to use it for processing your search queries. But, here is the twist — this hijacker redirects the search queries from to a modified search engine This version can be configured to present custom search results of unverifiable legitimacy. Therefore, this browser hijacker can jeopardize your computer’s security because there is no way of knowing whether its promotions are reliable.

Apart from that, it does not seem to be of any use. It should change your search page’s background image, but it only has a white background. Note that the search page is set to show you the date and time as well as weather information which is neat but this useful function pales in comparison with its unreliable search results.

As far as privacy is concerned, we want you to know that this browser hijacker can and probably will collect information about you. As stated in the privacy policy “We may collect information that can personally identify you, such as your name and email address, as well as other information that does not personally identify you.” Now, this information is collected on a voluntary basis which is when you contact the owners directly. Otherwise, they will only collect non-personally identifiable information that includes, but is not limited to search history, IP address, computer information, and usage patterns. This information is used to determine your browsing habits and present more relevant ads. So the hijacking is done for the purpose of showing you ads that are of no use to you if you want relevant search results.

How to remove

If your computer has been infected with this browser hijacker and you want to delete it, then we have the answer. We have composed a removal guide that will help you get rid of it for good. Note that you can manually delete the files of this hijacker’s browser extension from %LOCALAPPDATA%\Google\Chrome\User Data\Default\Extensions\ndilfbngdlcppiffemoiaogjaalmpcbd (for Chrome) and %AppData%\Mozilla\Firefox\Profiles\[Profile Name]\extensions searchvoyage.xpi (for Firefox) and the registry keys at HKLM\SOFTWARE\Google\Chrome\Extensions\ndilfbngdlcppiffemoiaogjaalmpcbd and HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ndilfbngdlcppiffemoiaogjaalmpcbd (Chrome Only.) However, our researchers found that removing the extension via browser settings is sufficient, so we recommend opting for that method.

How to get rid of this browser hijacker

Mozilla Firefox

  1. Press Ctrl+Shift+A.
  2. Choose Extensions.
  3. Locate the unwanted extension and click Remove.

Microsoft Internet Explorer

  1. Press Alt+T.
  2. Choose Manage add-ons.
  3. Click Toolbars and extensions.
  4. Locate the extension and click Remove.

Google Chrome

  1. Press Alt+F.
  2. Choose More tools and click Extensions.
  3. Locate and Remove the add-on.
100% FREE spyware scan and
tested removal of*

Leave a Comment

Enter the numbers in the box to the right *