Information about Security Antivirus
If it happens for you to receive any alert from Security Antivirus program, you can be sure that your PC is infected with malware. Actually, Security Antivirus (also called as SecurityAntivirus) is that problem foolishly described as a reputable anti-spyware program but in reality created for the malicious reasons. This software aims at fooling trustful PC users who are expected to spend their money for Security Antivirus removal services which in reality are useless.
Security Antivirus is propagated in many ways. First of all, this rogue is closely associated with Trojans viruses, browser hijackers or fake online scanners and advertisements. You must know that these parasites not only install the trialware of Security Antivirus but additionally create fake malware files that do not pose any harm but may trick you into giving the money away. These files usually are:
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\std.exe
%UserProfile%\Recent\cid.dll
%UserProfile%\Recent\ddv.dll
%UserProfile%\Recent\runddlkey.dll
%UserProfile%\Recent\DBOLE.sys
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\tjd.sys
%UserProfile%\Recent\ddv.sys
%UserProfile%\Recent\energy.tmp
%UserProfile%\Recent\PE.tmp
%UserProfile%\Recent\FS.drv
%UserProfile%\Recent\CLSV.drv
%UserProfile%\Recent\ANTIGEN.drv
%UserProfile%\Recent\gid.drv
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\tjd.drv
When active, SecurityAntivirus starts with imitation of scanning the system for viruses. We can predetermine that this app will “detect” its earlier created files and will trigger multiple fake security alerts notifying about that, for example:
Security Antivirus has detected potentially harmful software in your system! It is strongly recommended that you register Security Antivirus to remove all found threats immediately.
Suspicious software which may be malicious has been detected on your PC! Click here to remove this threat immediately using Security Antivirus.Click here to remove all potentially harmful programs found immediately using Security Antivirus.
After getting into the trap that their computers are really infected, people are offered the only solution which is, of course, getting the paid “licensed” version of Security Antivirus. Bear in mind, that doing so may lead you into negative consequences for your system. Avoid Security Antivirus and if you’ve detected its activity delete its trialware on board. Remove Security Antivirus as soon as possible!
Security Antivirus Facts
- Security Antivirus pretends to increase security of your PC
- Security Antivirus free version will show popups, alerts and fake results to convince you to pay
- Security Antivirus creators will not deliver license keys upon paying or the full version will not be functional
- Security Antivirus might be used to download and advertise other malicious software
- Security Antivirus might disable some of your PCs or its programs functions
Manual Security Antivirus removal instructions
ANTIGEN.exe
PE.exe
std.exe
sqlite3.dll
cid.dll
ddv.dll
runddlkey.dll
HKEY_CLASSES_ROOT\SA345d.DocHostUIHandler
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://findgala.com/?&uid=195&q={searchTerms}"
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://findgala.com/?&uid=195&q={searchTerms}"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "PRS" ="http://127.0.0.1:27777/?inj=%ORIGINAL%"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform "App/7.00195"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Security Antivirus"
c:\Documents and Settings\All Users\Application Data\345d567\72.mof
c:\Documents and Settings\All Users\Application Data\345d567\mozcrt19.dll
c:\Documents and Settings\All Users\Application Data\345d567\SA345d.exe
c:\Documents and Settings\All Users\Application Data\345d567\SAV.ico
%UserProfile%\Application Data\Security Antivirus
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Security Antivirus.lnk
%UserProfile%\Application Data\Security Antivirus\cookies.sqlite
%UserProfile%\Desktop\Security Antivirus.lnk
%UserProfile%\Recent\ANTIGEN.drv
%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\cid.dll
%UserProfile%\Recent\CLSV.drv
%UserProfile%\Recent\DBOLE.sys
%UserProfile%\Recent\ddv.dll
%UserProfile%\Recent\ddv.sys
%UserProfile%\Recent\energy.tmp
%UserProfile%\Recent\FS.drv
%UserProfile%\Recent\gid.drv
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\PE.tmp
%UserProfile%\Recent\runddlkey.dll
%UserProfile%\Recent\std.exe
%UserProfile%\Recent\tjd.drv
%UserProfile%\Recent\tjd.sys
%UserProfile%\Start Menu\Security Antivirus.lnk
%UserProfile%\Start Menu\Programs\Security Antivirus.lnk
c:\Documents and Settings\All Users\Application Data\345d567\sqlite3.dll
c:\Documents and Settings\All Users\Application Data\345d567\BackUp
c:\Documents and Settings\All Users\Application Data\345d567\BackUp\Adobe Reader Speed Launch.lnk
c:\Documents and Settings\All Users\Application Data\345d567\BackUp\Adobe Reader Synchronizer.lnk
c:\Documents and Settings\All Users\Application Data\345d567\Quarantine Items\
c:\Documents and Settings\All Users\Application Data\345d567\SAVSys\
c:\Documents and Settings\All Users\Application Data\345d567\SAVSys\vd952342.bd
c:\Documents and Settings\All Users\Application Data\SADFIOPODIV\SAAKDUPV.cfg
c:\Program Files\Mozilla Firefox\searchplugins\search.xml
Security Antivirus removal instructions comments
Related information
 No comments yet |
 |
|
No comments yet |
|
|
No comments yet |
|
