Antivirzilla.com
Antivirzilla.com or Antivirzilla.net is a misleading website that is typically encountered by users infected with Virus Protector. Antivirzilla.com is inserted into a victim's Hosts file by Trojans, thus causing the victim's browser to be frequently redirected to the harmful website. Antivirzilla.com prompts users to purchase the full version of Virus Protector which is a useless application. Users should avoid Antivirzilla.com and never purchase anything on this website.
File System Details
Antivirzilla.com may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Documents and Settings%\[UserName]\Local Settings\Temp\[random].exe | |
| 2. | %Program Files%\Internet Explorer\[random].dll | |
| 3. | %WINDOWS%\system32\[random].exe | |
| 4. | %WINDOWS%\system32\drivers\[random].dll | |
| 5. | %Documents and Settings%\[UserName]\Application Data\[random].dll | |
| 6. | %Program Files%\Internet Explorer\[random].exe | |
| 7. | %WINDOWS%\[random].dll | |
| 8. | %WINDOWS%\system32\drivers\[random].exe | |
| 9. | %Documents and Settings%\[UserName]\Application Data\[random].exe | |
| 10. | %Documents and Settings%\[UserName]\Local Settings\Temp\[random].dll | |
| 11. | %WINDOWS%\[random].exe | |
| 12. | %WINDOWS%\system32\[random].dll |
Registry Details
Antivirzilla.com may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows "AppInit_DLLs" = "[random].dll"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows "LoadAppInit_DLLs" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Virus Protector"
