Loved-online-tube.com
Loved-online-tube.com is a rogue website sponsoring the fake spyware remover called System Security 2009 (also known as System Security or System Security Antivirus). To achieve this goal, trojans infiltrate your computer through security holes and alter your browser settings, causing web-surfing activities to be interrupted and then diverted to the Loved-online-tube.com web page. Once here, your PC is subject to a fake online scan that reports fabricated infection results in order to scare you into purchasing System Security 2009.
File System Modifications
- The following files were created in the system:
# File Name 1 %\Documents and Settings%\All Users\Application Data\00308937\00308937.exe 2 %\Documents and Settings%\All Users\Application Data\00308937\config.udb 3 %\Documents and Settings%\All Users\Application Data\00308937\pc00308937ins 4 %UserProfile%\Desktop\System Security 2009.lnk 5 %UserProfile%\Start Menu\Programs\System Security\System Security 2009 Support.lnk 6 %UserProfile%\Start Menu\Programs\System Security\System Security 2009.lnk
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\Software\00308937HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "00308937"HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}SystemSecurity2009
Start computer in safe mode and perform a system restore to a checkpoint prior to the infection. My computer struggled with this and seemed to just stop. At this point I hit the reset button to force a reboot which was successful and restored to prior infection. Everything is working fine now