1. /
  2. Security Response/
  3. Antivirus360

Antivirus360

Updated:
April 8, 2009 2:17:05 PM
Type:
Misleading Application
Name:
Antivirus 360
Risk Impact:
Medium
Systems Affected:
Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
Behavior
The program must be manually installed. The risk attempts to trick users into installing it through fake messages that appear in their Web browsers claiming that the computer has been compromised.

Once installed, the program reports false or exaggerated system security threats on the computer.





The user is then prompted to pay for a full license of the application in order to remove the threats.



The risk also displays various pop-up messages while the computer is in use. These fake messages cover the following topics:
  • Internal conflict alerts
  • Vulnerable files found
  • Spyware Activity alerts
  • Privacy Violation alerts
  • System file modification alerts


Installation
The risk is a self-contained executable. It may arrive with the following file name:
%CurrentFolder%\av360.exe

When the program is executed, it creates the following files:
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Antivirus 360.lnk
%UserProfile%\Desktop\Antivirus 360.lnk
%UserProfile%\Start Menu\Antivirus 360\Antivirus 360.lnk
%UserProfile%\Start Menu\Antivirus 360\Help.lnk
%UserProfile%\Start Menu\Antivirus 360\Registration.lnk

It also creates the following registry subkey:
HKEY_CURRENT_USER\Software\[RANDOM HEXADECIMAL NUMBER]


Similar Security Risks:

Antivirus2008

Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report, Volume 17
Symantec DeepSight Screensaver