Antivirus Action Description
Antivirus Action, a.k.a AntivirusAction, is a rogue anti-virus program that uses Trojans to penetrate a system and misleading system scans to scare users into purchasing the program. Antivirus Action comes on the heels of Security Antivirus, Security Suite, AV Security Suite, Security Suite Pro, and Security Tool — other popular rogue anti-spyware programs proliferating on the Web.
The most common methods through which rogue anti-virus programs are distributed include corrupt video codecs downloads bundled with Trojans, e-mail spam attachments, fraudulent or questionable websites, misleading advertisements, malicious links found on social networks, browser hijacking attacks, “poisoned” search results, and other aggressive, stealthy tactics.
Antivirus Action installs itself through the constant use of Trojans that exploit browser security holes, so it can enter a system without the user’s knowledge.
The authors behind Antivirus Action have a clear and obvious strategy: to trick innocent users into believing that they have all types of malware problems on their computer and to ask payment for Antivirus Action’s so-called services. AntivirusAction does not have a spyware detection or removal engine, so it will not be able to remove any malware. It is highly recommended that you use a reliable anti-spyware program and remove Antivirus Action from your PC. Do not click on anything which seems related to this blatant scam and have AntivirusAction removed as soon as it has been detected.
Suspicious file [Panda]Mal/FakeAV-DO [Sophos]Trojan/Win32.FakeAV [AhnLab-V3]High Risk Cloaked Malware [Prevx]Rogue:Win32/FakeSpypro [Microsoft]Trojan.Win32.Generic.pak!cobra [VIPRE]Trojan.FakeAV.2534 [DrWeb]Trj/CI.A [Panda]Generic19.CKTO [AVG]Trojan.Win32.Generic!BT [Sunbelt]
More aliases (19)
Antivirus Action Automatic Detection Tool (Recommended)
Is your PC infected with Antivirus Action? To safely & quickly detect Antivirus Action, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Antivirus Action What happens if Antivirus Action does not let you open SpyHunter or blocks the Internet?
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %TEMP%\ uqqvywvei\ jdxgxhqdlta.exe 855 2 %TEMP%\ rxwbinprw\ yoajgukdlta.exe 454 3 %TEMP%\ lajoxonjo\ wpvsdmgtsbl.exe 368 4 %TEMP%\ bwvjsyaot\ udjxvkntsbl.exe 330 5 %TEMP%\ okqtcoxha\ aekvsqydlta.exe 295 6 %TEMP%\ ytdeejivq\ vklsehhdlta.exe 295 7 %TEMP%\ egqnyfgyw\ insmdkadlta.exe 279 8 %TEMP%\ qxnajlfhv\ eyunlmwtsbl.exe 279 9 %TEMP%\ oljonsdoq\ rbkeknfdlta.exe 258 10 %TEMP%\ oggmyfyst\ lialolidlta.exe 253
- The following URL's were detected:
184.108.40.206220.127.116.11 18.104.22.168 22.214.171.124 126.96.36.199antispydot.com antispylake.com antispylake.net antispyroad.com antispytag.net antispytask.com antispyway.comantispyway.net antisywire.com antivirboost.com antivirdrome.com antivirnet.com antivirnet.net antivirstress.com ns1.antispydot.com ns1.antispylake.com ns1.antispyroad.com ns1.antispytag.com ns1.antispytag.net ns1.antispytask.com ns1.antispyway.com ns1.antispyway.net ns1.antisywire.com ns1.antivirboost.com ns1.antivirdrome.com ns1.antivirnet.com ns1.antivirnet.net ns1.antivirstress.com ns1.antivirwall.com ns1.infinitetraffic.info ns1.pcsecurityland.com ns1.softwaretoolsstore.com ns1.versionantispy.com ns2.antispydot.com ns2.antispylake.com ns2.antispyroad.com ns2.antispytag.com ns2.antispytag.net ns2.antispytask.com ns2.antispyway.com ns2.antispyway.net ns2.antisywire.com ns2.antivirboost.com ns2.antivirdrome.com ns2.antivirnet.com ns2.antivirnet.net ns2.antivirstress.com ns2.antivirwall.com ns2.pcsecurityland.com ns2.softwaretoolsstore.com ns2.versionantispy.com server1.usdebtmodifiers.comsoftwaretoolsstore.com versionantispy.com
- The following messages's were detected:
# Message 1 Security Warning
Application cannot be executed. The file notepad.exe is infected. Do you want to activate your antivirus software now.
2 Windows Security Alert
Windows reports that computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the scan your computer. Your system might be at risk now.
Posted: December 20, 2010 | By SpywareRemove
Threat Level: 10/10
Rate this article:
Detection Count: 5,792