Home Malware Programs Rogue Anti-Spyware Programs SiteVillain


Posted: November 16, 2009

Threat Metric

Threat Level: 10/10
Infected PCs: 9
First Seen: December 1, 2009
Last Seen: January 9, 2019
OS(es) Affected: Windows

ScreenshotSiteVillain is a clone of the most recent rogue anti-spyware program in the notorious WiniSoft family that created AntiAID. SiteVillain has the same functions as it's predecessor and typically uses trojans and drive-by downloads to enter the system. SiteVillain relies on misleading advertising to trick users into purchasing it's so-called "license". SiteVillain performs malicious actions to trick users into purchasing it, and to protect itself from removal. SiteVillain displays annoying pop-ups and fake system notifications, claiming the user's system is infected. SiteVillain then performs fake system scans which mark harmless files as threats, creating the illusion that the user's system is infected. SiteVillain will then urge the user to purchase it's "licensed version" in order to dispose of the threats. SiteVillain will block legitimate security software, hijack the Internet browser, and disable certain system services, such as System Restore, and Registry Editor. SiteVillain poses a high threat to any system and should be removed immediately.


Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to SiteVillain may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria .

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:

SiteVillain.exe File name: SiteVillain.exe
Size: 1.63 MB (1634304 bytes)
MD5: dc960cd129e8a4181b3f9973c2a74a14
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
setup[1].exe File name: setup[1].exe
Size: 1.73 MB (1734072 bytes)
MD5: 51deebf6100c7826265a0f4292bba733
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
setup[2].exe File name: setup[2].exe
Size: 373.76 KB (373760 bytes)
MD5: 61754587a03d1d05466f0c6c68e11431
Detection count: 18
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009