Antivirvip.net

Antivirvip.net Description

Antivirvip.net is a malicious browser hijacker that supports a rogue anti-spyware application Antivirus Protection. Antivirvip.net not only gives bogus information about the affiliated fake security program Antivirus Protection, but it also is an additional infection as it hijacks the web browser on a compromised victim's computer. Antivirvip.net prevents you from surfing the web freely because of dangerous threat interruption. Each time you attempt to visit a website you want, you will be diverted to Antivirvip.net. Antivirus Protection that had previously injured your computer system without your awareness, makes changes to some Internet connection settings and the browser configuration, which automatically affect the specificity of your Internet sessions. Any website value you attempt to get returned will be changed by the Antivirvip.net. You will also be diverted to Antivirvip.net whenever you click on some advertisements designed by fraudulent anti-virus software Antivirus Protection.

Technical Information

File System Details

Antivirvip.net creates the following file(s):
# File Name Detection Count
1 %Temp%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe N/A
2 %Temp%\[RANDOM CHARACTERS]\ N/A

Registry Details

Antivirvip.net creates the following registry entry or registry entries:
Registry key
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = ''
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = '.exe'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[RANDOM CHARACTERS].exe"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = 'http=127.0.0.1:59274'
HKEY_CURRENT_USER\Software\[RANDOM CHARACTERS]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter "Enabled" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyEnable" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'