VirusHeal 4.1

VirusHeal 4.1 is a rogue security program that shows false Warning messages. It also shows misleading scan Results. It also uses aggressive advertising and can also install through Trojan exploits.

General information:

Malware Name: VirusHeal 4.1
Malware Type: Rogue Security Program
Company Name: VirusHeal
Company URL: http://www.virusheal.com/
Threat Level: Elevated Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation

Company Description:

VirusHeal provides you the software VirusHeal 4.1 that completely scans of your computer system to detect Spyware parasites. It has also the ability to review and remove all forms of Spyware and also gets you the regular updates on new Spyware threats. It also provides you the quarantine infected files for immediate protection.

Spyware Description:

VirusHeal 4.1 is a rogue security program that shows false Warning messages. It also shows misleading scan Results. It also uses aggressive advertising and can also install through Trojan exploits.

Characteristics/Symptoms:

    -> It shows false Warning messages. -> It also shows misleading scan Results. -> It can also install through Trojan exploits. -> It also uses aggressive advertising.

Additional information might be found here:

google Search at Google for VirusHeal 4.1
bing Search at Bing for VirusHeal 4.1
yahoo Search at Yahoo for VirusHeal 4.1

Processes Running:

VirusHeal 4.1.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\[USER]\Application Data\Microsoft\Internet Explorer\Quick Launch\VirusHeal 4.1.lnk 666 Shortcut
C:\Documents and Settings\[USER]\Start Menu\Programs\VirusHeal 4.1\VirusHeal 4.1.lnk 660 Shortcut
C:\Documents and Settings\[USER]\Start Menu\VirusHeal 4.1.lnk 648 Shortcut

Folder information Created after Installation:

Folder Location
C:\Program Files\VirusHeal 4.
C:\Program Files\VirusHeal 4.1\Lan

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE \SOFTWARE\Classes\Interface\{C5F970ED-F7F4-43B6-8BDA-217769DAE93A}
HKEY_LOCAL_MACHINE \SOFTWARE\Classes\Interface\{C91D2160-A8A7-4FEB-81C5-E125E585F459}
HKEY_LOCAL_MACHINE \SOFTWARE\Classes\Interface\{CAF1FAAE-64B1-4FE7-8EE3-62B3DA241298}