Tuesday, October 28, 2008

AVSystemCare Ransomware

Removing AVSystemCare
Categories: Ransomware
A cryptovirus, cryptotrojan or cryptoworm is a type of
malware that encrypts the data belonging to an individual on a computer,
demanding a ransom for its restoration.

The term ransomware is commonly used to describe software that encrypts the data
belonging to an individual on a computer, demanding a ransom for its restoration.
Although the field known as cryptovirology predates the term "ransomware".
Visible Symptoms:
Files in system folders:
[%COMMON_DESKTOPDIRECTORY%]\AVSystemCare.lnk
[%COMMON_DESKTOPDIRECTORY%]\AVSystemCare.lnk

How to detect AVSystemCare:

Files:
[%COMMON_DESKTOPDIRECTORY%]\AVSystemCare.lnk
[%COMMON_DESKTOPDIRECTORY%]\AVSystemCare.lnk

Folders:
[%APPDATA%]\AVSystemCare
[%COMMON_PROGRAMS%]\AVSystemCare
[%PROGRAM_FILES%]\AVSystemCare
[%PROGRAM_FILES_COMMON%]\AVSystemCare

Registry Keys:
HKEY_CLASSES_ROOT\appid\popupg.dll
HKEY_CLASSES_ROOT\appid\{314f88d6-80ce-408a-9e8f-b2389b81e8b8}
HKEY_CLASSES_ROOT\aviebho.iefw
HKEY_CLASSES_ROOT\aviebho.iefw.2
HKEY_CLASSES_ROOT\clsid\{7a7f202e-af91-4889-9dd5-2fe241085cc1}
HKEY_CLASSES_ROOT\clsid\{faad2038-c371-473d-86f1-5b11d39c3775}
HKEY_CLASSES_ROOT\gpblocker.iepblocker
HKEY_CLASSES_ROOT\gpblocker.iepblocker.1
HKEY_CURRENT_USER\software\avsystemcare
HKEY_LOCAL_MACHINE\software\avsystemcare
HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy_fmtr

Registry Values:
HKEY_CURRENT_USER\software\microsoft\windows\shellnoroam\muicache
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce
HKEY_LOCAL_MACHINE\software\products
HKEY_LOCAL_MACHINE\software\products

Removing AVSystemCare:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Antivirus.Protection Ransomware Symptoms
Bitch.Controller Trojan Symptoms
Choprox Backdoor Removal instruction
Removing Downloader.ACV Adware
PViever Trojan Removal instruction

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)