|
Aug
30
|
Malware Analysis:
There is no justification for the shameful practices of Antivirlock.com as it is a real nasty hijacker that pushes a yet nastier malware tool. Antivirlock.com is in fact another one of the tens of Security Suite’s ‘official’ websites advertising this software as if it were the best anti-spyware out there. But no, that’s certainly not true – Security Suite is a fake computer cleaner that is deploying a really vast misinformation campaign throughout the worldwide cyber space. This mendacious program tends to be spread with the help of trojan horses that come as a part of unsafe files downloaded unknowingly by potential victims. It’s real hard to let Security Suite pass by your attention because it does a bunch of really messy stuff with the compromised computer. The rogue displays misleading alerts stating that your PC is at risk. If you click one of those, you will be automatically directed to Antivirlock.com/shop website where the entire spectrum of Security Suite solutions is available. But the key thing is – you will be recommended to buy the license for Security Suite on there. If you believe you can just reject that offer, you are slightly mistaken… The browser diverts will keep on occurring until you do one of the two things: either waste your money for Security Suite full version, or remove this whole malware pack (Antivirlock.com hijacker and Security Suite scareware). We hope you pick the second option. If so, please go to our removal guide – it’s right below this overview of Antivirlock.com.
Determine if your PC is infected with Antivirlock.com hijacker and affiliated malware (Security Suite scareware):
Download Antivirlock.com Hijacker Free Scanner with Remover
Antivirlock.com Screenshot:
Security Suite Counterfeit Warning Page Screenshot:
How to remove Antivirlock.com hijacker manually:
To perform manual removal of Antivirlock.com hijacker and related rogue trialware, you should do the following:
Delete the following corrupt files:
- %UserProfile%\Local Settings\Application Data\[random]
- %UserProfile%\Local Settings\Application Data\
\[random]shdw.exe
Remove Antivirlock.com related registry entries:
- HKEY_CURRENT_USER\Software\wnxmal
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter “Enabled” = “0″
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = “”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1:6522″
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations “LowRiskFileTypes” = “.exe”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments “SaveZoneInformation” = “1″
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random]“
- HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache “%UserProfile%\Desktop\flash_player_installer\flash_player_installer.exe”
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random]“
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “CheckExeSignatures” = “no”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyEnable” =”1″
Please, note that manual removal of Antivirlock.com hijacker is a procedure of high complexity and should be performed with extreme caution. Lack of the required skills and even the slightest deviation from the instructions may lead to irreparable system damage. To ensure trouble-free deletion, it is recommended to use the automatic removal tool below:
 |
Download Antivirlock.com Hijacker Removal Tool |  |