Thursday, September 2, 2010

antiviruspro2010

Type: rogue

Alias: antivirus pro 2010, antiviruspro_2010

Company: XP AntiSpyware 2009.com

Description: AntivirusPro2010 is a rogue anti-spyware. It may give exaggerated threat reports on the compromised computer then ask the user to purchase a registered version to remove those reported threats. AntivirusPro2010 is also known as Antivirus Pro 2010.

Malware Threat

antiviruspro2010

Warning: An spy-ware software uses certain rules for detection and removal of spy-ware, malware, ad-ware and trojan from your PC; thus providing 99.99% accuracy. ScanSpyware.Net provides this information "AS IS" without warranty of any kind. Your use of this information is at your own risk. We strictly restrict you from using this information if you are not sure about what you are doing.

Recommendation 1: We recommend you to take a backup of Windows Registry before following these manual spyware removal instructions to fix your PC. You can do this by either creating a Restore Point using System Restore Utility in Windows System Tools or using the Export feature of regedit.exe.

Recommendation 2: By trying to remove spy-ware from your PC without getting any help from an expert may produce unexpected results. In case you suspect that your PC is infected with some spy-ware, ad-ware, malware or virus, just follow the instructions available at http://how-to.scanspyware.net/diagnose-and-fix.html to contact us for abolutely FREE help.

Directories

C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010
C:\Documents and Settings\user-account-name\Start Menu\Programs\Antivirus Pro 2010
C:\Program Files\AntivirusPro_2010
C:\Program Files\Antivirus Pro 2010
C:\Program Files\AntivirusPro_2010\data
C:\Program Files\Antivirus Pro 2010\data

Files

%quicklaunchdir%\AntivirusPro_2010.lnk
%quicklaunchdir%\Antivirus Pro 2010.lnk
C:\Documents and Settings\user-account-name\Desktop\AntivirusPro_2010.lnk
C:\Documents and Settings\user-account-name\Desktop\Antivirus Pro 2010.lnk
C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010\Uninstall.lnk
C:\Program Files\AntivirusPro_2010\wscui.cpl
C:\Program Files\AntivirusPro_2010\AVEngn.dll
C:\Program Files\AntivirusPro_2010\htmlayout.dll
C:\Program Files\AntivirusPro_2010\Uninstall.exe
C:\Program Files\AntivirusPro_2010\pthreadVC2.dll
C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010\AntivirusPro_2010.lnk
C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.cfg
C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.exe
antiviruspro_2010.lnk (md5:a1ba703dd710d1e9df01ae...)
antiviruspro_2010.exe (md5:a4b6177b5bf235a170c36b...)

Registry Keys

HKEY_LOCAL_MACHINE\SOFTWARE\AntivirusPro_2010
HKEY_LOCAL_MACHINE\SOFTWARE\Antivirus Pro 2010
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntivirusPro_2010
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antivirus Pro 2010

Registry Values

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Antivirus Pro 2010

- dbit.aDbit.A is a trojan that allows hackers to access and gives full control over infected computer.
- dbit.bDbit.B is a backdoor worm that spreads through network shares and allows attackers to access and control over infected computer.
- dcadsDcads is an adware program with several variants. It displays popup ads while surfing internet.
- dchargeDCharge is a Distributed Denial of Service mail bombing trojan program that runs from a compromised machine.
- dckaneDckane is a backdoor trojan that allows unauthorized access to infected machines.
- dcomDcom is an malware that is silently Installed in your computer.
- ddokiDdoki Is a Toolbar that redirect internet searches, internet traffic, display popup and modify web browser setting.

antiviruspro2010

ACROSS THE GLOBE

ACROSS THE GLOBE

IN United States

FROM United States