Trojan.FraudPack
Trojan.FraudPack Description
Trojan.FraudPack is a Trojan that delivers rogue security applications onto your PC. Like many Trojans, Trojan.FraudPack has been observed to use browser exploits and malicious advertising scripts to infect new computers without consent. Rogue security programs distributed by Trojan.FraudPack are known to cause many different problems such as preventing applications from running, hijacking web browsers to redirect you to dangerous websites, creating fake infection alerts and corrupting the Windows Registry. Removing Trojan.FraudPack should be a natural part of an overall system scan that removes Trojan.FraudPack’s rogue security programs from your computer, since removing the threat while leaving Trojan.FraudPack intact will not solve the root of your problems.
Trojan.FraudPack is Just a Chauffeur for Fake Security Software
Trojan.FraudPack is the seedy side of rogue security anti-virus programs that the criminals don’t want you to know about – although the rogue security programs delivered by Trojan.FraudPack are all obnoxiously visible, Trojan.FraudPack itself is well-hidden, being a clear sign of hostile intent that ruins the atmosphere of the scam. Trojan.FraudPack is known to distribute rogue security applications like Antivirus Monitor, Antivirus Soft, Antimalware GO, Antivirus .NET, AntiVira AV and many more.
Trojan.FraudPack will try to infect your computer through hostile scripts that are hosted on dangerous websites or embedded in dangerous advertisements. Disabling Flash and JavaScript will help you reduce the vectors for Trojan.FraudPack infections, but even these actions can’t keep your computer completely safe.
The main purpose of a Trojan.FraudPack infection is to download and install (or ‘drop’) one of the above rogue security programs on your PC, sometimes through the use of fake errors imitating Windows alerts. After this, the rogue security program takes up most of the limelight, creating countless fake infection alerts and other system problems. Although the threat will persistently try to get you to spend money on an activation key, following along with Trojan.FraudPack’s plan will only harm your computer and your finances.
Clearing Out the Pack of Frauds
You may experience other problems while Trojan.FraudPack and Trojan.FraudPack’s rogue security applications are on your PC. The most common symptoms include:
- Fake security program infections that result in the program crashing when you try to launch it. Rogue security applications will do this to avoid any possibility of real anti-malware software detecting them. One possible error that’s used by Trojan.FraudPack-related infections contains the following text:
“Application cannot be executed. The file [executable file] is infected. Do you want to activate your anti-virus software now?” - Browser hijacks that control your browsing habits. You may see an error that stops you from visiting a website related to PC security, or you may be redirected to the rogue security product’s homepage.
Deleting Trojan.FraudPack along with any other malware Trojan.FraudPack dropped on your PC should be considered absolutely required for insuring your computer’s privacy. Attempting to find and remove Trojan.FraudPack yourself is a difficult task that is best reserved for situations where all other solutions have failed.
Rather than taking the hard option, go easy on yourself and use an actual anti-malware program to hunt down and take out Trojan.FraudPack for you. Switching to Safe Mode may be necessary to stop Trojan.FraudPack from avoiding its imminent destruction.
Aliases
Trojan.FraudPack [Ikarus]PUP/Win32.Helper [AhnLab-V3]TR/FraudPack.R.7 [AntiVir]Trojan.FraudPack!IK [Emsisoft]Win32:PUP-gen [PUP] [Avast]Artemis!BF6D991EA7F0 [McAfee]Trojan.Fakealert.33931 [nProtect]Generic19.MSP [AVG]W32/FraudPack.BJVJ!tr [Fortinet]Trojan.Win32.Generic.52328C0D [Rising]
More aliases (714)
Trojan.FraudPack Automatic Detection Tool (Recommended)
Is your PC infected with Trojan.FraudPack? To safely & quickly detect Trojan.FraudPack, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Trojan.FraudPack
What happens if Trojan.FraudPack does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 semasowa.dll 696 2 win32extension.dll 679 3 msnaoladdon.dll 586 4 %LOCALAPPDATA%\ asam.exe 560 5 iehelpmod.dll 520 6 lovebudo.dll 461 7 msxml71.dll 337 8 msxmlm.dll 190 9 %PROGRAMFILES%\ svchost.exe 54 10 UpdateCheck.dll 44
More files
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}vshnnwvc - The following CLSID's were detected:
HKEY..\..\{CLSID Path} {CDD09383-67FD-4877-A8BF-1EED6367207E}{B3639C67-B12C-4F81-8418-59AF117A8264}{23EF1F0F-1CBF-4D5E-86B6-5669F9E55A09}{8560D250-FC95-4B64-AB0E-D01FB848FA3E}{4B9F0938-149B-41D5-A0A2-58B834195F74}{9ED3EB90-FB3D-430C-B54F-8A2D5F03AE3B}{C73FD00D-A099-405C-92B4-8997710D187D}{60242C4F-F730-44B0-8440-F59C489C0219}{B1D3576A-CA42-4D09-83C1-15D563C19D71}{BB28A003-32B3-F829-C4BC-F13F7CDC1FFD}{C213ED2A-7141-44CF-A0B1-1AE95A9A4BA6}{BC36F9FB-688E-4f8d-8622-55D30A28A08F}{fb0d2a3e-2938-4c38-8ddd-7090254c1d08}{A77D3539-581D-450C-9E44-A84C415A6172}{BBD4551D-9B24-42cb-9BCD-818CA2DA7B63}{c1524bd1-1817-d505-3730-4f5d3ea9104d}{fb9da17d-703b-4cbc-8228-61f4f6ec8421}{BBD4551A-9B23-41cd-9BCD-818AA2DA7B63}{ABC42510-9B22-41c1-9DCD-8182A2D07C63}{500BCA15-57A7-4eaf-8143-8C619470B13D}{C20EE2D6-81C3-6A08-79C5-1989DA43BC19}
Posted: February 29, 2008 | By SpywareRemove
MoreThreat Level: 9/10
(No Ratings Yet)
Loading ...Rate this article:
Detection Count: 766
