AntiVirGear
From Wiki-Security, the free encyclopedia of computer security
|
|||||||||||||||||||||
AntiVirGear is a new rogue anti-spyware application that has started to infiltrate computers recently. AntiVirGear is installed without your knowledge and permission and usually it gets into your PC via ZLOB/MediaAccess Codec installer from an adult site. Once it is executed on your PC, AntiVirGear will display false Warning messages and show misleading scan results in order to trick you in obtaining the full version of the program. AntiVirGear may also download and install additional spyware programs and Trojans and this is a serious threat to the security of your personal and financial information. AntiVirGear is associated with other rogue anti-spyware programs, including VirusProtect Pro. AntiVirGear's website is www.Antivirgear.com
To check your computer for AntiVirGear, download
SpyHunter Spyware Detection Tool.
SpyHunter spyware detection tool is only a scanner meant to assist you in detecting AntiVirGear and other threats. If you detect the presence of AntiVirGear on your PC, you have the opportunity to purchase the SpyHunter removal tool to remove any traces of AntiVirGear.
Contents |
Detection of AntiVirGear (Recommended)
AntiVirGear is difficult to detect and remove. AntiVirGear is not likely to be removed through a convenient "uninstall" feature. AntiVirGear, as well as other spyware, can re-install itself even after it appears to have been removed.
You also run the risk of damaging your computer since you're required to find and delete sensitive files in your system such as DLL files and registry keys. It is recommended you use a good spyware remover to remove AntiVirGear and other spyware, adware, trojans and viruses on your computer.
Run a AntiVirGear scan/check to successfully detect all AntiVirGear files with the SpyHunter Spyware Detection Tool. If you wish to remove AntiVirGear, you can either purchase the SpyHunter spyware removal tool to remove AntiVirGear or follow the AntiVirGear manual removal method provided in the "Remedies and Prevention" section.
Method of Infection
There are many ways your computer could get infected with AntiVirGear. AntiVirGear can come bundled with shareware or other downloadable software.
Another method of distributing AntiVirGear involves tricking you by displaying deceptive pop-up ads that may appear as regular Windows notifications with links which look like buttons reading Yes and No. No matter which "button" that you click on, a download starts, installing AntiVirGear on your system. AntiVirGear installs on your computer through a trojan and may infect your system without your knowledge or consent.
If you think you may already be infected with AntiVirGear, use this SpyHunter Spyware dectection tool to detect AntiVirGear and other common Spyware infections. After detection of AntiVirGear, the next advised step is to remove AntiVirGear with the purchase of the SpyHunter Spyware removal tool.
Symptoms
AntiVirGear may attempt to change your computer's desktop, hijack your browser, monitor your Internet browsing activities, change system files, and can do this without your knowledge or permission. Therefore, it is strongly recommended to remove all traces of AntiVirGear from your computer.
Remedies and Prevention
AntiVirGear, as well as other Spyware, are constantly evolving and becoming more advanced to avoid detection. AntiVirGear along with its variants can install in different locations and even when you try to uninstall it you find they reappear when you reboot your computer.
Install a good anti-spyware software
When there's a large number of traces of Spyware, for example AntiVirGear, that have infected a computer, the only remedy may be to automatically run a Spyware scan from a good anti-spyware software designed to detect AntiVirGear and other types of spyware.
Remove AntiVirGear manually
Another method to remove AntiVirGear is to manually delete AntiVirGear files in your system. Detect and remove the following AntiVirGear files:
Processes
- AntiVirGear 3.7.exe
- AntiVirGear 3.8.exe
- AntiVirGear 3.9.exe
DLLs
- wqzdtjg.dll
- ddllup.dll
- vmlwp.dll
- lgaac.dll
- iheuv.dll
- txxkb.dll
- zdhgsp.dll
- pluwue.dll
- jrpkmgh.dll
- rnxwph.dll
- swqzdtj.dll
- vusxqm.dll
- vzfhprk.dll
- rmtdvc.dll
- veptlh.dll
- hteogat.dll
- hymww.dll
- fifzqip.dll
- gdrtul.dll
- rrtrit.dll
- siiyal.dll
- flirek.dll
- sttwrd.dll
- mxhfjy.dll
- fwzozx.dll
- gaaplp.dll
- nczupfw.dll
- clbrcek.dll
- beahahl.dll
- ugbtna.dll
- fqgwiw.dll
- itdtjjf.dll
- tkosvv.dll
- pfrmj.dll
- yneid.dll
- bqrcr.dll
- dsibr.dll
- nieyn.dll
- eulbn.dll
- fnczfh.dll
- aghmao.dll
- xovdzz.dll
- bubbj.dll
Other Files
- AntiVirGear 3.7.lnk
- Uninstall AntiVirGear 3.7.lnk
- AntiVirGear 3.7 Website.lnk
- AntiVirGear 3.7.url
- AntiVirGear 3.7
- %ProgramFiles%\AntiVirGear 3.7
- AntiVirGear 3.8
- AntiVirGear 3.8.lnk
- Uninstall AntiVirGear 3.8.lnk
- AntiVirGear 3.8.url
- AntiVirGear 3.8 Website.lnk
- %ProgramFiles%\AntiVirGear 3.8
- AntiVirGear 3.9
- AntiVirGear 3.9.lnk
- AntiVirGear 3.9 Website.lnk
- Uninstall AntiVirGear 3.9.lnk
- AntiVirGear 3.9.url
- %ProgramFiles%\AntiVirGear 3.9
Registry Keys
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\b8ea5f37-7327-4923-9808-8fd3b6f0d529
- 418985AE-4FE4-448D-83EE-238C887D8FC2
- 5F251303-F8C4-44C3-A7C2-9E8A93C59322
- 61840430-C7CF-43A0-9D49-3B3ED563FED1
- 64A8E3CA-AE17-4EB0-8C67-47D1103A5B6F
- 765A8F7D-F57B-4601-A038-3F463A4D3193
- 77E616D5-5DB4-4B6A-8BDA-2BE4103A9921
- 8742F319-C916-4930-B781-1C148134C05C
- 897F5CB6-C1C1-494E-8F17-972784193442
- A2224C72-745E-4046-882F-1A48C9311D77
- AA500EFC-3C92-44C9-B1D6-7A7033343A50
- AB5E9971-7086-4E6E-ADFA-BE9C685BE68B
- AD7CA0BC-693A-4AF9-B31A-60472248F761
- B2882CC2-0077-426B-916D-E0B9EA23A1B5
- EE241504-6F15-49E4-847F-B4D7DA9EA8F9
- F1666E4E-45C8-462A-97FF-BFD5A103BFFA
- FD9A05E8-4A1E-45E6-B3B6-37CE20140278
- AF0C5CBA-52E1-4B29-A2DC-58D91D599612
- AntiVirGear 3.7
- Microsoft\Windows\CurrentVersion\App Paths\AntiVirGear 3.7.exe 3.7
- d4c4bc43-0974-4dec-a669-9f7bfcb3503d
- 98013eb8-258b-4979-bfd5-04ecd93f765c
- 655560a9-3ca8-4509-9632-6abbef21426b
- 27882a9f-8937-4ae4-87ab-ed669c8b6d7a
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\8a96d76c-97fc-42c8-8e68-5613bacef854
- Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AntiVirGear 3.7
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\95dde900-8bf3-428c-b9be-8345c9d194f7
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\b02c6db1-a1ea-470f-8100-b1391463ba92
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\cc25189b-1b13-4abe-900e-65e08bd961af
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\d6ef030a-a235-41ba-9ead-89b6ff542f00
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\60dea04c-9817-4309-bfa2-f8a1766c3cd1
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\adf64b1b-c68c-4ce8-bb55-258b7b8b0f81
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\5feba593-3e6d-4606-ae6e-0680501cd29e
- adf64b1b-c68c-4ce8-bb55-258b7b8b0f81
- 60dea04c-9817-4309-bfa2-f8a1766c3cd1
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\92050ffb-b796-4146-ae27-7e5e1d93b8a8
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\02e155c1-202c-43a5-a212-58bb67d4341c
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\79cdca21-5055-4cae-b609-e1685ef55cf7
- 92050ffb-b796-4146-ae27-7e5e1d93b8a8
- 02e155c1-202c-43a5-a212-58bb67d4341c
- 79cdca21-5055-4cae-b609-e1685ef55cf7
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\16be3225-e902-4d2a-ac98-aab162796927
- 0A0FC1A4-41D4-4793-9AC5-0B55CDC95AE9
- 14F47CA3-2291-4B3E-9ED4-8C7E6AE80851
- 2447284F-3590-4E8C-A869-049BD87CAD07
- 38EEEF46-CA24-4ACA-A90D-540978DF7252
- 3D5E5AE1-5DED-4520-BDC2-B9292EA708CA
- 409A05EF-1B48-4198-B6BF-993B8B52790C
- 47A93011-1004-440C-9960-BD3B0348A7C2
- 50B388D5-4A80-4191-8BCC-5DD031D7F3EE
- 58A1ACE6-0DBA-45D2-8154-E8253A7B87BB
- 73D25394-992F-43D1-BF92-48494CC0D1AE
- 7D2A83A4-0687-4704-937E-A29045826F77
- A7FE54B2-B167-4017-BCCC-CF73B2F678E3
- C183B073-2D7F-45BC-8967-80147CECEE45
- F6FDBF9A-19A7-4F0A-9F46-6F015A067B44
- F90A7969-20A0-4257-B39D-9C73D64CE3B0
- FA38F299-57F8-4FEB-9096-715460AE943C
- DE6AE29A-EB7D-4656-9418-26D5FCC9ADF5
- AntiVirGear 3.8
- Microsoft\Windows\CurrentVersion\App Paths\AntiVirGear 3.8.exe 3.8
- 16be3225-e902-4d2a-ac98-aab162796927
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\34ec76b6-53c4-4686-822f-910c790683fb
- 34ec76b6-53c4-4686-822f-910c790683fb
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\ee6bd1ad-1992-4f2c-8ea2-edc6eee4548b
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\e1adb94e-0dc6-487c-b274-981bee6301a1
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\a47e7ce0-263d-40aa-86bc-27c1f6433143
- ee6bd1ad-1992-4f2c-8ea2-edc6eee4548b
- e1adb94e-0dc6-487c-b274-981bee6301a1
- a47e7ce0-263d-40aa-86bc-27c1f6433143
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\23ED2206-856D-461A-BBCF-1C2466AC5AE3
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\7999c5e2-b500-4ba5-8e9a-99639eca65fc
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\c74f7434-a6e7-46c3-bf60-62a005074fe5
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\a6d478c6-7961-4fe9-be4b-e621dd640112
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\f0c5ef8b-f4bb-4612-9ea8-361fff3da3d5
- Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\12a8c4e6-06c8-4ab3-9274-a0cde148e3da
- 23ED2206-856D-461A-BBCF-1C2466AC5AE3
- 7999c5e2-b500-4ba5-8e9a-99639eca65fc
- c74f7434-a6e7-46c3-bf60-62a005074fe5
- e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2
- a6d478c6-7961-4fe9-be4b-e621dd640112
- f0c5ef8b-f4bb-4612-9ea8-361fff3da3d5
- 12a8c4e6-06c8-4ab3-9274-a0cde148e3da
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\eb4c6870-721f-4989-9c90-8cbfa46d0298
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\75a65a53-15c9-4a0c-bb40-a7ca8b24f544
- eb4c6870-721f-4989-9c90-8cbfa46d0298
- 75a65a53-15c9-4a0c-bb40-a7ca8b24f544
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\3aea41ad-3ce4-48d9-acab-be40ad329e40
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\7dfa04a9-5e60-458b-ace4-4a7613504e8d
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\daecb1b9-9f49-40f3-873d-5db0fdb14d7d
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\837d024d-e0fb-44e8-acb1-24ec2309c487
- 3aea41ad-3ce4-48d9-acab-be40ad329e40
- 7dfa04a9-5e60-458b-ace4-4a7613504e8d
- daecb1b9-9f49-40f3-873d-5db0fdb14d7d
- 837d024d-e0fb-44e8-acb1-24ec2309c487
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\41591d7f-9e25-4bd0-af53-9908fcf3a738
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\2dcea392-ea10-4e6d-aba4-329ac377119c
- 41591d7f-9e25-4bd0-af53-9908fcf3a738
- 2dcea392-ea10-4e6d-aba4-329ac377119c
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\06e3d089-46cb-4aff-a45d-f0dc7efa1577
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\96773c21-1b6b-4db0-8fe8-0c59f3c8a355
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\48a7a70a-e118-4506-a373-c9d4e8a212a1
- 06e3d089-46cb-4aff-a45d-f0dc7efa1577
- 96773c21-1b6b-4db0-8fe8-0c59f3c8a355
- 48a7a70a-e118-4506-a373-c9d4e8a212a1
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\a6fddce1-36ae-41c1-87d3-f49e514273d4
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\de313bc7-422a-4344-a9aa-3e703922345c
- a6fddce1-36ae-41c1-87d3-f49e514273d4
- de313bc7-422a-4344-a9aa-3e703922345c
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\1977ce08-a38f-43db-a856-f4aa6122131b
- 1977ce08-a38f-43db-a856-f4aa6122131b
- SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\1817ab5d-25bf-4d5e-ba90-6e5fe658fc5f
- 1817ab5d-25bf-4d5e-ba90-6e5fe658fc5f
- 0F44BBC9-DB3A-4DF4-A3A4-C9B0C21965B9
- 37E9084E-2F33-40CB-AE70-08CCA7D35181
- 3AD29C7B-47D1-4E62-97FB-310F14131D10
- 48614E7F-07AD-46AC-ADFD-EA462F0797AE
- 50690FE4-0986-4B04-BEB3-09AD48B3C836
- 523BE6B4-E203-4355-9C9A-40F6EB2A914A
- 6DA38FB4-3F20-4C0B-B31B-C005BE2AE99F
- 74110FB0-7C6D-4BB9-AE8D-419289F4B99C
- 937CEADB-C6BC-40EC-BCEB-8B1B0FF8257F
- AE67E7F7-3ADE-4AD5-85E6-DEF454C448C7
- B46326D7-B6B6-4C95-81EE-A0201D01546E
- BE5ABF82-0740-42E9-8D22-4EB662848C59
- C541B506-FC15-4C64-B3D0-DDC6DA308B65
- DCC58039-1835-4449-8570-94CDE6646031
- E2A00EA6-81D9-4F5A-A123-296D42377A41
- EC6CF387-979F-4535-A33F-7EC77EE236B4
- B3737DD3-1543-43DF-8038-6AB593990F15
- AntiVirGear 3.9
- Microsoft\Windows\CurrentVersion\App Paths\AntiVirGear 3.9.exe 3.9
- Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AntiVirGear 3.9
Known Variants
VirusBurst is a re-branded variant of other well-known rogue anti-spyware programs, including SpywareQuake, SpyFalcon, SpywareStrike, SpySheriff, SpyHeal and many other pseudonyms.
External links
|
Spyware infects over 80% of all PCs.
Your PC could be infected with Spyware! |
- Non-profit Malware Process Library - Non-profit website that list most known Spyware Process names.
- How Spyware And The Weapons Against It Are Evolving
- Windows System Update - Latest bug fixes for Microsoft Windows
- Manual Removal Instructions for AntiVirGear - Learn how to remove AntiVirGear.
- McAfee Threat Center - Library of detailed information on viruses.
- Remove AntiVirGear - Easy AntiVirGear removal steps. Parasite database on how to remove spyware and rogue anti-spyware programs.
|
