Microantiviruslive.com
Microantiviruslive.com is a malicious browser hijacker which promotes the rogues XP Antivirus Pro 2010 and its clone Windows Defender 2010. Microantiviruslive.com redirects the browser to a fake webpage which resembles a system scan. This scan produces bogus results which claim the system is infected with all sorts of malware. Microantiviruslive.com will then urge the computer user to purchase a licensed version of Microantiviruslive.com to remove the alleged threats. Do not fall for this blatant scam and use reliable anti-malware software to remove all threats from your system.
File System Modifications
- The following files were created in the system:
# File Name 1 %UserProfile%\Local Settings\Application Data\av.exe 2 %UserProfile%\Local Settings\Application Data\WRblt8464P 3 Av.exe
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-modeHKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "AntiVirusOverride" = "1"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "FirewallOverride" = "1"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.