Multi-Device Licenses (Volume Discounts)

Change Region

English Português
Threat Database Rogue Websites Websafetynetwork.com

Websafetynetwork.com

By Sumo3000 in Rogue Websites
Translate To:
English

Websafetynetwork.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Due to affiliated Trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Websafetynetwork.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and often grossly exaggerated infection results in order to intimidate the user into purchasing the fake spyware remover Personal Antivirus.

File System Details

Websafetynetwork.com may create the following file(s):
Expand All | Collapse All
# File Name Detections
1. %Program Files%\Personal Antivirus\PerAvir.exe
2. %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
3. %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iv.exe
4. %UserProfile%\Application Data\Personal Antivirus\unins000.exe
5. %UserProfile%\Application Data\Microsoft\Windows\winlogon.exe
6. %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Personal Antivirus Home Page.lnk
7. %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Purchase License.lnk
8. %UserProfile%\Application Data\Personal Antivirus\settings.ini
9. %UserProfile%\Application Data\Personal Antivirus\db
10. %UserProfile%\Application Data\Personal Antivirus\db\Urls.inf
11. %Program Files%\Personal Antivirus
12. %Program Files%\Personal Antivirus\unins000.dat
13. %Program Files%\Personal Antivirus\db
14. %Program Files%\Personal Antivirus\db\ia080618x.db
15. %Program Files%\Personal Antivirus\Languages\IAFr.lng
16. %WINDOWS%\system32\log.txt
17. %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
18. %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus
19. Antivirus.lnk
20. %UserProfile%\Application Data\Personal Antivirus
21. %UserProfile%\Application Data\Personal Antivirus\Uninstall Personal Antivirus.lnk
22. %UserProfile%\Application Data\Personal Antivirus\db\Timeout.inf
23. %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
24. %Program Files%\Personal Antivirus\Explorer.ico
25. %Program Files%\Personal Antivirus\working.log
26. %Program Files%\Personal Antivirus\db\ia080614.db
27. %Program Files%\Personal Antivirus\Languages\IAEs.lng
28. %Program Files%\Personal Antivirus\Languages\IAIt.lng
29. %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png
30. %Documents and Settings%\All Users\Desktop\Personal Antivirus.lnk
31. %Documents and Settings%\All Users\Start Menu\Programs\Personal Antivirus\Personal
32. %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Personal Antivirus.lnk
33. %UserProfile%\Application Data\Personal Antivirus\uill.ini
34. %UserProfile%\Application Data\Personal Antivirus\db\config.cfg
35. %UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt
36. %Program Files%\Personal Antivirus\activate.ico
37. %Program Files%\Personal Antivirus\uninstall.ico
38. %Program Files%\Personal Antivirus\db\DBInfo.ver
39. %Program Files%\Personal Antivirus\Languages
40. %Program Files%\Personal Antivirus\Languages\IAGer.lng
41. %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png

Registry Details

Websafetynetwork.com may create the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Personal Antivirus"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Personal Antivirus_is1
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "PrS"

Trending

Most Viewed

Loading...