Monday, December 1, 2008

TrustedAntivirus Ransomware

Removing TrustedAntivirus
Categories: Ransomware
A cryptovirus, cryptotrojan or cryptoworm is a type of
malware that encrypts the data belonging to an individual on a computer,
demanding a ransom for its restoration.

The term ransomware is commonly used to describe software that encrypts the data
belonging to an individual on a computer, demanding a ransom for its restoration.
Although the field known as cryptovirology predates the term "ransomware".
Visible Symptoms:
Files in system folders:
[%APPDATA%]\TrustedAntivirus\avtasks.dat
[%APPDATA%]\TrustedAntivirus\Logs\av.log
[%APPDATA%]\TrustedAntivirus\Logs\ga6Support.log
[%APPDATA%]\TrustedAntivirus\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Uninstall TrustedAntivirus.lnk
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\bm.exe
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\ugcw.exe
[%SYSTEM%]\drivers\FMTR.sys
[%APPDATA%]\TrustedAntivirus\avtasks.dat
[%APPDATA%]\TrustedAntivirus\Logs\av.log
[%APPDATA%]\TrustedAntivirus\Logs\ga6Support.log
[%APPDATA%]\TrustedAntivirus\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Uninstall TrustedAntivirus.lnk
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\bm.exe
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\ugcw.exe
[%SYSTEM%]\drivers\FMTR.sys

How to detect TrustedAntivirus:

Files:
[%APPDATA%]\TrustedAntivirus\avtasks.dat
[%APPDATA%]\TrustedAntivirus\Logs\av.log
[%APPDATA%]\TrustedAntivirus\Logs\ga6Support.log
[%APPDATA%]\TrustedAntivirus\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Uninstall TrustedAntivirus.lnk
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\bm.exe
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\ugcw.exe
[%SYSTEM%]\drivers\FMTR.sys
[%APPDATA%]\TrustedAntivirus\avtasks.dat
[%APPDATA%]\TrustedAntivirus\Logs\av.log
[%APPDATA%]\TrustedAntivirus\Logs\ga6Support.log
[%APPDATA%]\TrustedAntivirus\Logs\update.log
[%COMMON_DESKTOPDIRECTORY%]\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Contact Customer Support.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\TrustedAntivirus.lnk
[%COMMON_PROGRAMS%]\TrustedAntivirus\Uninstall TrustedAntivirus.lnk
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\bm.exe
[%PROGRAM_FILES_COMMON%]\TrustedAntivirus\ugcw.exe
[%SYSTEM%]\drivers\FMTR.sys

Folders:
[%PROGRAM_FILES%]\TrustedAntivirus

Registry Keys:
HKEY_CURRENT_USER\software\trustedantivirus
HKEY_LOCAL_MACHINE\software\trustedantivirus

Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload
HKEY_LOCAL_MACHINE\software\products
HKEY_LOCAL_MACHINE\software\products

Removing TrustedAntivirus:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Bizibot Trojan Information
Webbulion Adware Cleaner

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)