Home Malware Programs Hijackers rodyshop.com


Posted: February 25, 2011

Besides being a dangerous website, rodyshop.com is also a browser hijacker that forces browsers to redirect towards that website. rodyshop.com infections can be difficult to identify manually due to their use of random file names. If you interact with the rodyshop.com site significantly or don't delete rodyshop.com's hijacker, your computer will be open to security risks that can drop other malware onto your system. The product promoted by rodyshop.com is the rogue scanner AntiVira Av, a hostile entity that imitates the basic look of an anti-virus scanner while creating false errors to bully you out of your money. Removing anything related to rodyshop.com or AntiVira Av is a basic system maintenance procedure required to keep your computer secured and in good health.

rodyshop.com - In the Business of Trafficking Computerized Misery

The foremost mistake one can make with rodyshop.com is assuming that rodyshop.com's trademark product, AntiVira Av, is here to help your computer. With a layout that expertly imitates real security website visuals, rodyshop.com makes it easy for users to place their trust in its treacherous hands. AntiVira Av and similar rogue anti-virus software will cause the following problems, making it clear that you shouldn't have a thing to do with them on your machine.

  • Strange desktop pop-up errors and alerts. If you see messages in those formats that scream loudly about serious errors your real security software didn't pick up, then these messages have been produced by a rogue anti-virus program or a related Trojan. Their content is predetermined, since malware like rogue anti-virus programs aren't able to detect infections.
  • Prompts within the above messages to download additional, unfamiliar software. This is a trick used to get you to willingly install a rogue program, and is usually indicative of a Trojan infection. Ignore the recommendation since it's only pretending to come from your operating system, and get ready to scan for and remove the Trojan.
  • Scanning programs that prompt for scans immediately after each reboot. These are a trademark tactic of rogue entities, which will always return results of heavy infection presence that can't be cleansed. In some cases, rogue anti-virus tools may declare harmless files as infected. In others, it may actually create the necessary files to point fingers at.
  • Browser hijacks. Infections like rodyshop.com often ride alongside rogue anti-virus program-related infections and may sometimes be built right in to the anti-virus program. Hijacking events may be subtle, altering your search results or displaying fake unsafe website errors to redirect you towards rodyshop.com and similar sites.

Shoving rodyshop.com Off Your System and Out of Your Life

Between randomized file names, registry entries and accompanying malware, rodyshop.com hijackers can be hard to rid oneself directly. Unless you're confident in your expertise, you should use anti-malware scanners to delete rodyshop.com and its friends thoroughly.

In cases where rodyshop.com refuses to let the appropriate programs run, stopping rodyshop.com from running is usually the key, and can almost always be done by rebooting in Safe Mode. Safe Mode with Networking will also let you browse the web in the instance of you needing to download the right software.

Don't try to beat a browser hijacker by ignoring it - rodyshop.com and malware just like rodyshop.com have little difficulty hijacking all popular browsers. Worse yet, they do offer security risks by being on your computer, and removing rodyshop.com is a high-priority task for anyone who cares for their machine.

File System Modifications

  • The following files were created in the system:
    # File Name

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter "Enabled" = "0"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = ""HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = "http="HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyEnable” = "1"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[RANDOM CHARACTERS].exe"HKEY_CURRENT_USER\Software\[RANDOM CHARACTERS]