Threat Database Rogue Websites is a browser hijacker promoting the rogue anti-spyware application known as Barracuda Antivirus. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing the fake spyware remover Barracuda Antivirus.

File System Details may create the following file(s):
# File Name Detections
1. %ProgramFiles%\Barracuda Antivirus\uninstall.exe
2. %ProgramFiles%\Barracuda Antivirus\Antivirussystempro.exe
3. %ProgramFiles%\Barracuda Antivirus\quarantine.vdb
4. %ProgramFiles%\Barracuda Antivirus\mbase.vdb
5. %ProgramFiles%\Barracuda Antivirus\conf.cfg
6. %ProgramFiles%\Barracuda Antivirus\queue.vdb

Registry Details may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Barracuda Antivirus"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Barracuda Antivirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad "ieModule"


Most Viewed