Rapid Antivirus Firewall Alert
"Rapid Antivirus Firewall" Alert is a fake alert message that is generated by the rogue anti-spyware program Rapid Antivirus. The "Rapid Antivirus Firewall" Alert message may read:
"Rapid Antivirus Firewall Alert. Rapid Antivirus Firewall has blocked a program from accessing the Internet. Internet Explorer may be injected with worm Lsas.Blaster.Keyloger. This worm is trying to send your credit card details data using Internet Explorer to connect to remote host."
"Rapid Antivirus Firewall" Alert should not be trusted nor the Rapid Antivirus fake anti-spyware application. It is advised to detect and remove this infection with a reliable anti-spyware removal program.
File System Modifications
- The following files were created in the system:
# File Name 1 %common_programs%\Rapid Antivirus\purchase license.lnk 2 %common_programs%\Rapid Antivirus\start Rapid Antivirus.lnk 3 %common_programs%\Rapid Antivirus\support page.lnk 4 %desktopdirectory%\Rapid Antivirus.lnk 5 %profile%\application data\Rapid Antivirus\base.dat 6 %profile%\application data\Rapid Antivirus\base2.dat 7 %profile%\application data\Rapid Antivirus\desc.dat 8 %profile%\application data\Rapid Antivirus\Rapid Antivirus.ini 9 %profile%\application data\Rapid Antivirus\spline.dat 10 %program_files%\Rapid Antivirus\ 11 %program_files%\Rapid Antivirus\buy.url 12 %program_files%\Rapid Antivirus\help.url 13 %program_files%\Rapid Antivirus\howtobuy.txt 14 %program_files%\Rapid Antivirus\id.dat 15 %program_files%\Rapid Antivirus\license.txt 16 %program_files%\Rapid Antivirus\RapidAntivirus.exe 17 %program_files%\Rapid Antivirus\restart.exe 18 %program_files%\Rapid Antivirus\uninstall.exe 19 %UserProfile%\Application Data\install_511_MHw0MXwwfHx8fHx8fHw_ 20 %UserProfile%\Application Data\install_511_MHw0MXwwfHx8fHx8fHw_\base.dat 21 %UserProfile%\Application Data\install_511_MHw0MXwwfHx8fHx8fHw_\base2.dat 22 %UserProfile%\Application Data\install_511_MHw0MXwwfHx8fHx8fHw_\Desc.dat 23 %UserProfile%\Application Data\install_511_MHw0MXwwfHx8fHx8fHw_\spline.dat 24 %UserProfile%\Application Data\Rapid Antivirus 25 %UserProfile%\Application Data\Rapid Antivirus\Rapid Antivirus.ini 26 C:\Windows\System32\RapidAntivirus.exe 27 C:\Windows\System32\rp-config.xml
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Rapid Antivirus
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.