Oemantivir.microsoft.com

By GoldSparrow in Rogue Websites

Translate To:

Oemantivir.microsoft.com is a browser hijacker promoting the distribution of the rogue anti-spyware application known as Antivirus System PRO. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Oemantivir.microsoft.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing and downloading the fake spyware remover Antivirus System PRO.

File System Details

Oemantivir.microsoft.com may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%WINDOWS%\system32\iehelper.dll
Name: %WINDOWS%\system32\iehelper.dll Type: Dynamic link library
2.	%WINDOWS%\sysguard.exe
Name: %WINDOWS%\sysguard.exe Type: Executable File

Registry Details

Oemantivir.microsoft.com may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}

HKEY_CLASSES_ROOT\CLSID\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}

HKEY_CURRENT_USER\Software\AvScan

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "system tool"

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Oemantivir.microsoft.com

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen