Description is a malicious website that promotes and sells rogue anti-spyware program Antivirus 2009 as a legitimate software. Although download link for Antivirus 2009 doesn’t work at this moment, all the other links provided by will redirect you to a malicious page to purchase Antivirus 2009’s “licensed” program.

If you were tricked into purchasing rogue Antivirus 2009 from thinking it would remove your spyware infections, you have just fallen into the trap set up by the trojan makers.

Antivirus 2009 generates an exaggerated amount of popups and system notifications only to make you believe you’re infected with spyware. Moreover, Antivirus 2009 is able to emulate a computer system scan and display erroneous scan results. All links provided by Antivirus 2009 will most likely redirect you to its website to further download the full version of the program.

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter. Automatic Detection Tool (Recommended)

Is your PC infected with To safely & quickly detect we highly recommend you run the malware scanner listed below.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 cfqbw.dll
    2 fdpzgi.dll
    3 gtawclv.dll
    4 iesplugin.dll
    5 iesuninst.exe
    6 isaddon.dll
    7 isamini.exe
    8 isamonitor.exe
    9 khtbpdl.dll
    10 Online Security Guide.url
    11 pmmon.exe
    12 pmsngr.exe
    13 pmuninst.exe
    14 Security Troubleshooting.url
    15 veptlh.dll
    16 vjxwnn.dll
    17 vmlwp.dll

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70d17a5f-ef27-4295-90f5-20ad6f24834f}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80ced3d6-ece9-48ba-8df8-2503d8d87c2b}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D61D7E1A-6613-49CA-B6F9-51DB248E209D}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa6d4f53-4c8d-4549-84d2-02d584acc4e9}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper objects\{D61D7E1A-6613-49CA-B6F9-51DB248E209D}HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}IExplorer Security Plug-inInternet Explorer Secure BarMessenger Service
Posted: September 16, 2008 | By
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Threat Metric
Threat Level: 5/10
Home Malware ProgramsBrowser Hijackers

Leave a Reply

What is 8 + 9 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)