Threat Database Rogue Websites also known as is a deceptive domain that promotes rogue software. is involved in the malvertising of the fake anti-virus application called Antivirus Live. is a site that victims are typically redirected to unintentionally. The redirection is achieved with the help of harmful Trojans that are able to modify the Hosts file and browser settings of a compromised system. Once a victim hits he/she will be informed that a scan conducted by Antivirus Live detected numerous malware infections on his/her computer. The user will also be advised to purchase the "full version" of Antivirus Live in order to remove all the detected malware. Users should be aware that any malware detected by Antivirus Live is fake and Antivirus Live does not have the functionalities of a legitimate security application.

File System Details may create the following file(s):
# File Name Detections
1. %Documents and Settings%\[UserName]\Application Data\[RandomSymbols]\[Random4Symbols]sysguard.exe

Registry Details may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows Script
HKEY_CURRENT_USER\Software\Microsoft\Windows Script\Settings


Most Viewed