Www2.novironyourpc.net

By Domesticus in Browser Hijackers

Translate To:

Www2.novironyourpc.net is involved in the malvertising of the rogue security program Live PC Care. Www2.novironyourpc.net is distributed by Trojans that can enter systems via browser vulnerabilities or malicious downloads. The Trojans also modify system settings to ensure that a victim's browser is frequently redirected to Www2.novironyourpc.net. Www2.novironyourpc.net will then disguise itself as a legitimate online system scan that automatically reports several infections on a victim's machine. Following the security reports and alerts, the victim will be advised to purchase the "licensed version" of Live PC Care in order to remove the detected computer parasites. Www2.novironyourpc.net is not to be trusted and Live PC Care is not worth wasting your money on.

File System Details

Www2.novironyourpc.net may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%Documents and Settings%\All Users\Application Data\117fc\sqlite3.dll
Name: %Documents and Settings%\All Users\Application Data\117fc\sqlite3.dll Type: Dynamic link library
2.	%UserProfile%\Recent\DBOLE.sys
Name: %UserProfile%\Recent\DBOLE.sys Type: System file
3.	%UserProfile%\Recent\FW.dll
Name: %UserProfile%\Recent\FW.dll Type: Dynamic link library
4.	%UserProfile%\Recent\runddl.dll
Name: %UserProfile%\Recent\runddl.dll Type: Dynamic link library
5.	%Documents and Settings%\All Users\Application Data\117fc\mozcrt19.dll
Name: %Documents and Settings%\All Users\Application Data\117fc\mozcrt19.dll Type: Dynamic link library
6.	%UserProfile%\Recent\DBOLE.exe
Name: %UserProfile%\Recent\DBOLE.exe Type: Executable File
7.	%UserProfile%\Recent\fan.exe
Name: %UserProfile%\Recent\fan.exe Type: Executable File
8.	%UserProfile%\Recent\ppal.sys
Name: %UserProfile%\Recent\ppal.sys Type: System file
9.	%Documents and Settings%\All Users\Application Data\117fc\LP339.exe
Name: %Documents and Settings%\All Users\Application Data\117fc\LP339.exe Type: Executable File
10.	%UserProfile%\Recent\CLSV.sys
Name: %UserProfile%\Recent\CLSV.sys Type: System file
11.	%UserProfile%\Recent\exec.dll
Name: %UserProfile%\Recent\exec.dll Type: Dynamic link library
12.	%UserProfile%\Recent\ppal.dll
Name: %UserProfile%\Recent\ppal.dll Type: Dynamic link library
13.	%UserProfile%\Recent\SM.dll
Name: %UserProfile%\Recent\SM.dll Type: Dynamic link library
14.	%Documents and Settings%\All Users\Application Data\117fc\8233.mof
Name: %Documents and Settings%\All Users\Application Data\117fc\8233.mof
15.	%Documents and Settings%\All Users\Application Data\LPCGSys\lpcg.cfg
Name: %Documents and Settings%\All Users\Application Data\LPCGSys\lpcg.cfg
16.	%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Live PC Care.lnk
Name: %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Live PC Care.lnk Type: Shortcut
17.	%UserProfile%\Recent\hymt.drv
Name: %UserProfile%\Recent\hymt.drv Type: Device Driver
18.	%UserProfile%\Start Menu\Live PC Care.lnk
Name: %UserProfile%\Start Menu\Live PC Care.lnk Type: Shortcut
19.	%Documents and Settings%\All Users\Application Data\117fc\LPCG.ico
Name: %Documents and Settings%\All Users\Application Data\117fc\LPCG.ico
20.	%Documents and Settings%\All Users\Application Data\LPCGSys
Name: %Documents and Settings%\All Users\Application Data\LPCGSys
21.	%UserProfile%\Application Data\Live PC Care\cookies.sqlite
Name: %UserProfile%\Application Data\Live PC Care\cookies.sqlite
22.	%UserProfile%\Recent\cb.drv
Name: %UserProfile%\Recent\cb.drv Type: Device Driver
23.	%UserProfile%\Recent\PE.tmp
Name: %UserProfile%\Recent\PE.tmp Type: Temporary File
24.	%Program Files%\Mozilla Firefox\searchplugins\search.xml
Name: %Program Files%\Mozilla Firefox\searchplugins\search.xml
25.	%Documents and Settings%\All Users\Application Data\117fc
Name: %Documents and Settings%\All Users\Application Data\117fc
26.	%Documents and Settings%\All Users\Application Data\117fc\LPCGSys\vd952342.bd
Name: %Documents and Settings%\All Users\Application Data\117fc\LPCGSys\vd952342.bd
27.	%UserProfile%\Application Data\Live PC Care
Name: %UserProfile%\Application Data\Live PC Care
28.	%UserProfile%\Desktop\Live PC Care.lnk
Name: %UserProfile%\Desktop\Live PC Care.lnk Type: Shortcut
29.	%UserProfile%\Recent\kernel32.drv
Name: %UserProfile%\Recent\kernel32.drv Type: Device Driver
30.	%UserProfile%\Start Menu\Programs\Live PC Care.lnk
Name: %UserProfile%\Start Menu\Programs\Live PC Care.lnk Type: Shortcut

Registry Details

Www2.novironyourpc.net may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

HKEY_CLASSES_ROOT\xp_5ea56.DocHostUIHandler

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform "[xSP_2:117fc3395e69e29f71abba93a68c4181_7]"

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = "no"

HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Live PC Care"

HKEY_CURRENT_USER\Software\3

HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://search-gala.com/?&uid=7&q={searchTerms}"

HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://search-gala.com/?&uid=7&q={searchTerms}"

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Www2.novironyourpc.net

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen