Www2.novironyourpc.net
Www2.novironyourpc.net is a Browser Hijacker which promotes the rogue anti-spyware program Live PC Care. Www2.novironyourpc.net imitates a system scanner which allegedly runs online and pretends to perform a spyware check for the system. When the scanner ends it will generate false results to convince the user that the system has been infected. Do not fall prey to this trickery and do not click on anything associated with Www2.novironyourpc.net. Use an effective malware remover to detect and terminate any threats linked to this cyber scam.
File System Modifications
- The following files were created in the system:
# File Name 1 %Documents and Settings%\All Users\Application Data\117fc 2 %Documents and Settings%\All Users\Application Data\117fc\8233.mof 3 %Documents and Settings%\All Users\Application Data\117fc\LP339.exe 4 %Documents and Settings%\All Users\Application Data\117fc\LPCG.ico 5 %Documents and Settings%\All Users\Application Data\117fc\LPCGSys\vd952342.bd 6 %Documents and Settings%\All Users\Application Data\117fc\mozcrt19.dll 7 %Documents and Settings%\All Users\Application Data\117fc\sqlite3.dll 8 %Documents and Settings%\All Users\Application Data\LPCGSys 9 %Documents and Settings%\All Users\Application Data\LPCGSys\lpcg.cfg 10 %Program Files%\Mozilla Firefox\searchplugins\search.xml 11 %UserProfile%\Application Data\Live PC Care 12 %UserProfile%\Application Data\Live PC Care\cookies.sqlite 13 %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Live PC Care.lnk 14 %UserProfile%\Desktop\Live PC Care.lnk 15 %UserProfile%\Recent\cb.drv 16 %UserProfile%\Recent\CLSV.sys 17 %UserProfile%\Recent\DBOLE.exe 18 %UserProfile%\Recent\DBOLE.sys 19 %UserProfile%\Recent\exec.dll 20 %UserProfile%\Recent\fan.exe 21 %UserProfile%\Recent\FW.dll 22 %UserProfile%\Recent\hymt.drv 23 %UserProfile%\Recent\kernel32.drv 24 %UserProfile%\Recent\PE.tmp 25 %UserProfile%\Recent\ppal.dll 26 %UserProfile%\Recent\ppal.sys 27 %UserProfile%\Recent\runddl.dll 28 %UserProfile%\Recent\SM.dll 29 %UserProfile%\Start Menu\Live PC Care.lnk 30 %UserProfile%\Start Menu\Programs\Live PC Care.lnk
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://search-gala.com/?&uid=7&q={searchTerms}"HKEY_CURRENT_USER\Software\3HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://search-gala.com/?&uid=7&q={searchTerms}"HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = "no"HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform "[xSP_2:117fc3395e69e29f71abba93a68c4181_7]"HKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}HKEY_CLASSES_ROOT\xp_5ea56.DocHostUIHandlerHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Live PC Care"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.