When malware are installed on your system, it changes the DNS (Domain Name Server) nameservers of your ISP. This DNS nameserver is used to query the IP address of a website. This malware will replace your ISP DNS nameserver with their own nameserver to do fake queries. This malicious DNS nameservers usually will give you the right IP address for a given domain name but for a few specific domain name query they will returns you a fake IP address which redirect you to phishing website and more. Hackers can use this method to steal your password or redirect you to their advertisement.

For example, when a person query for google.com, the malicious DNS server will replies with a fake ip. So that means when you visit www.google.com, you will be redirected to other website.

Make sure your computer is protected with internet security software.

Below is one of the most recommended internet security software with anti virus protection and more.

Popularity: 3%