SweeperLab

SweeperLab Description

Screenshot

SweeperLab – A Threat Hailing from Korea

SweeperLab is part of a group of fake security programs that are designed to target victims located in Korea. Because this program's interface and pop-up messages are all in Korean, computer users not familiar with this language may have become alarmed at the presence of this disruptive program in their computer. However, regardless of your location, the way to deal with SweeperLab is to use a legitimate security program to remove SweeperLab automatically, preferably after restarting Windows in Safe Mode. In fact, not being able to understand this dangerous application's language may even be an advantage, since SweeperLab is a fake anti-virus program designed entirely to steal you money through a well-known online scam. Do not become a victim of SweeperLab; protect your computer system and remove this dangerous malware presence at once.

Understanding the SweeperLab Scam

SweeperLab follows the same pattern as most rogue security applications, in its attempt to scam its victims. Like most rogue security programs, the SweeperLab scam involves making the victim believe that their computer system has become severely infected with a large variety of dangerous malware. Most of the time, though, the malware on the victim's computer is SweeperLab itself, or malware directly related to this infection. Once the victim believes that his/her computer system is in danger, SweeperLab offers to remove all the fake infections, if the victim decides to purchase the useless 'full version' of this fake security program. ESG security researchers strongly advise against paying for SweeperLab, as this program has no anti-virus capabilities at all. Some ways in which SweeperLab attempts to convince its victims that their computer is in danger include the following:

  1. SweeperLab will run a highly-visible fake scan of the victim's computer system, claiming to have found a large list of potential problems and malware infections.
  2. SweeperLab will also pester its victim with a large number of security alerts, fake system alerts, error message, and pop-up messages from the task bar. These will all claim that the victim's computer is infected.
  3. SweeperLab can block access to certain applications and files, usually claiming that access cannot be granted, because the file in question is infected. While this is done to convince victims that their computer is infected, it also helps SweeperLab protect itself, by disabling any legitimate security programs on the victim's computer system.
  4. In the same vein, SweeperLab blocks access to the Internet, forcing its victim to visit SweeperLab's own website instead. This prevents the victim from looking for help online.

Technical Information

Registry Details

SweeperLab creates the following registry entry or registry entries:
RegistryKey
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweeperLabUp.exe
HKEY_CURRENT_USER\Software\SweeperLab
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "SweeperLab"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SweeperLab

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.