Scnadator14.info

By GoldSparrow in Rogue Websites

Translate To:

Scnadator14.info is a malicious website that is involved in the advertisement of Eco Antivirus - a rogue anti-virus application. Once a victim is redirected to Scnadator14.info, fake security notifications will be launched to trick the victim into thinking his/her machine is infested with malware. The victim will then be persuaded to purchase the "full" version of Eco Antivirus in order to eradicate all the "detected" infections. Eco Antivirus is useless and a reliable anti-spyware should be used to remove all threats related to Scnadator14.info.

File System Details

Scnadator14.info may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%Documents and Settings%\All Users\Application Data\eca\vec.exe
Name: %Documents and Settings%\All Users\Application Data\eca\vec.exe Type: Executable File
2.	%Documents and Settings%\All Users\Application Data\eca\msll.exe
Name: %Documents and Settings%\All Users\Application Data\eca\msll.exe Type: Executable File
3.	%Documents and Settings%\All Users\Application Data\eca\msdl.exe
Name: %Documents and Settings%\All Users\Application Data\eca\msdl.exe Type: Executable File
4.	%Documents and Settings%\All Users\Application Data\Microsoft\Machine\WStech.dll
Name: %Documents and Settings%\All Users\Application Data\Microsoft\Machine\WStech.dll Type: Dynamic link library
5.	%Documents and Settings%\All Users\Application Data\Microsoft\Machine
Name: %Documents and Settings%\All Users\Application Data\Microsoft\Machine
6.	%Documents and Settings%\All Users\Application Data\eca\Base.dat
Name: %Documents and Settings%\All Users\Application Data\eca\Base.dat Type: Data file
7.	%Documents and Settings%\All Users\Desktop\ Eco AntiVirus.lnk
Name: %Documents and Settings%\All Users\Desktop\ Eco AntiVirus.lnk Type: Shortcut
8.	%Documents and Settings%\All Users\Application Data\eca
Name: %Documents and Settings%\All Users\Application Data\eca
9.	%Documents and Settings%\All Users\Start Menu\Programs\ Eco AntiVirus
Name: %Documents and Settings%\All Users\Start Menu\Programs\ Eco AntiVirus

Registry Details

Scnadator14.info may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

HKEY_CLASSES_ROOT\AppID\WStech.DLL

HKEY_CLASSES_ROOT\TypeLib\{512E801E-2F02-4ADE-ACAA-58F08A22B2F8}

HKEY_LOCAL_MACHINE\SOFTWARE\Eco

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "mxcll"

HKEY_CLASSES_ROOT\AppID\{29256442-2C14-48CA-B756-3EE0F8BDC774}

HKEY_CLASSES_ROOT\Interface\{051C9A06-FB08-486F-B09B-8B33B261637D}

HKEY_CLASSES_ROOT\WStech.WStechB.1

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96E-E325-11CE-BFC1-08002BE10318}\S

HKEY_CURRENT_USER\Software\ECO

HKEY_CLASSES_ROOT\CLSID\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}

HKEY_CLASSES_ROOT\WStech.WStechB

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Scnadator14.info

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen