Suspiciouswebsiteblock.com
Suspiciouswebsiteblock.com is a hijacker and malicious website that is designed to promote and sell the Personal Antivirus rogue anti-spyware program. Suspiciouswebsiteblock.com uses deceiving methods to mislead computer users into thinking that they need a full version of Personal Antivirus to remove certain computer parasites or threats. Suspiciouswebsiteblock.com can potentially change browser settings and block security related web pages.
File System Details
Suspiciouswebsiteblock.com may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Program Files%\Personal Antivirus\PerAvir.exe | |
| 2. | %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe | |
| 3. | %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iv.exe | |
| 4. | %UserProfile%\Application Data\Personal Antivirus\unins000.exe | |
| 5. | %UserProfile%\Application Data\Microsoft\Windows\winlogon.exe | |
| 6. | %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Personal Antivirus.lnk | |
| 7. | %UserProfile%\Application Data\Personal Antivirus | |
| 8. | %UserProfile%\Application Data\Personal Antivirus\Uninstall Personal Antivirus.lnk | |
| 9. | %UserProfile%\Application Data\Personal Antivirus\db\Urls.inf | |
| 10. | %Program Files%\Personal Antivirus\activate.ico | |
| 11. | %Program Files%\Personal Antivirus\uninstall.ico | |
| 12. | %Program Files%\Personal Antivirus\db\ia080614.db | |
| 13. | %Program Files%\Personal Antivirus\Languages\IAFr.lng | |
| 14. | %WINDOWS%\system32\log.txt | |
| 15. | %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Personal Antivirus Home Page.lnk | |
| 16. | %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Personal Antivirus.lnk | |
| 17. | %UserProfile%\Application Data\Personal Antivirus\uill.ini | |
| 18. | %UserProfile%\Application Data\Personal Antivirus\db\Timeout.inf | |
| 19. | %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini | |
| 20. | %Program Files%\Personal Antivirus\unins000.dat | |
| 21. | %Program Files%\Personal Antivirus\db\DBInfo.ver | |
| 22. | %Program Files%\Personal Antivirus\Languages\IAEs.lng | |
| 23. | %Program Files%\Personal Antivirus\Languages\IAIt.lng | |
| 24. | %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png | |
| 25. | %Documents and Settings%\All Users\Desktop\Personal Antivirus.lnk | |
| 26. | %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Purchase License.lnk | |
| 27. | %UserProfile%\Application Data\Personal Antivirus\settings.ini | |
| 28. | %UserProfile%\Application Data\Personal Antivirus\db\config.cfg | |
| 29. | %UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt | |
| 30. | %Program Files%\Personal Antivirus\Explorer.ico | |
| 31. | %Program Files%\Personal Antivirus\working.log | |
| 32. | %Program Files%\Personal Antivirus\db\ia080618x.db | |
| 33. | %Program Files%\Personal Antivirus\Languages\IAGer.lng | |
| 34. | %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png |
Registry Details
Suspiciouswebsiteblock.com may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Personal Antivirus"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Personal Antivirus_is1
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "PrS"
