Antivir-labs.com
Antivir-labs.com is a deceptive website that promotes the rogue application Security Tool. Antivir-labs.com is distributed by Trojans that modify a victim's browser settings, causing it to be constantly redirected to Antivir-labs.com. Once a victim hits Antivir-labs.com, a fake online system scan is conducted and a scan report is produced which indicates that the system in infested with dangerous computer threats. Alarming security alerts and pop-ups will also be displayed to further convince the victim of the detected threats and coerce him/her into purchasing the rogueware Security Tool. Do not fall victim to this scam and use a legitimate anti-spyware application to remove the Trojan behind Antivir-labs.com.
File System Details
Antivir-labs.com may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %UserProfile%\Application Data\4946550101\[random number].exe | |
| 2. | %UserProfile%\Application Data\4946550101\[random number].bat | |
| 3. | %UserProfile%\Application Data\4946550101\[random number].cfg | |
| 4. | %UserProfile%\Start Menu\Programs\Security Tool.lnk | |
| 5. | %UserProfile%\Application Data\4946550101 | |
| 6. | %UserProfile%\Desktop\Security Tool.lnk |
Registry Details
Antivir-labs.com may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "[random number]"
HKEY_CURRENT_USER\Software\Security Tool
