Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

FRAUDTOOL.SECURITYCENTER (Security Center)

 

 

 

Name:

Fraudtool.SecurityCenter

Added:

May 25, 2011

Type:

Fraudtool

Risk:

Low

Payload:

N/A

At risk systems:

Windows 95/98/ME/XP/NT/2003

 

 

Description:

 

When FraudTool.SecurityCenter is executed, it installs the fake security application called, “Security Center”.

The scareware is a dropped file and this dropped file get loaded in memory by a registry entry  dropped by the dropper.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

7bf97b57-d11a-40a5-8dd1-b3850942908c = rundll32.exe
"C:\ProgramData\7bf97b57-d11a-40a5-8dd1-b3850942908c.dat", txmmypskrqjf

It will display fake security warning and fake virus alerts in an attempt to trick users in to purchasing the bogus software to eliminate the threats.

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

 

 

 

 

 

 

 
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

Malware problems?
We can help.

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

Evaluate Thirtyseven4 Antivirus Now

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 - Industry Leading Endpoint Security Solution

“Delight yourself in the Lord and he will give you the desires of your heart.” Psalm 37:4