Prev: Sonicwall L2 enhanced mode, pinging WAN from LAN
Next: Anyone successfully set up a D-Link DIR-330 VPN?
From: darfun on 4 Jul 2010 13:37
Sysinternals Antivirus Manual Removal instructions

Sysinternals Antivirus is a rogue anti-spyware application that has
been directly related to Your PC Protector. Just like the program it
is related to, it tries to trick users into paying for a software
license. This rogue application gets installed via Trojans that force
their way on to the user system through malicious websites. Once
installed, Sysinternals Antivirus loads itself as a startup service
and proceeds to perform endless scans of the user’s system, handing
out fake reports which try to convince the user that the computer is
dangerously infected with a number of malware applications.
Sysinternals Antivirus also displays a large number of fake warning
pop-ups from the Windows taskbar in an attempt to scare users. The aim
of all this activity is to push the user into purchasing a license for
the so-called ‘full’ version of Sysinternals Antivirus by claiming
that the currently installed ‘trial’ version is incapable of cleaning
out all the detected ‘threats’. However, it should be kept in mind at
all times that Sysinternals Antivirus is simply a fake application
that cannot scan or clean your computer under any circumstances.
see the manual removal instructions within the link below to get rid
of Sysinternals antivirus VIRUShttp://techvts.com/security/remove-sysinternals-antivirus/
From: Ansgar -59cobalt- Wiechers on 4 Jul 2010 13:49
darfun <darfun.inc(a)gmail.com> wrote:
> Sysinternals Antivirus is a rogue anti-spyware application that has
> been directly related to Your PC Protector. Just like the program it
> is related to, it tries to trick users into paying for a software
> license. This rogue application gets installed via Trojans that force
> their way on to the user system through malicious websites. Once
> installed, Sysinternals Antivirus loads itself as a startup service
> and proceeds to perform endless scans of the user?s system, handing
> out fake reports which try to convince the user that the computer is
> dangerously infected with a number of malware applications.
> Sysinternals Antivirus also displays a large number of fake warning
> pop-ups from the Windows taskbar in an attempt to scare users. The aim
> of all this activity is to push the user into purchasing a license for
> the so-called ?full? version of Sysinternals Antivirus by claiming
> that the currently installed ?trial? version is incapable of cleaning
> out all the detected ?threats?. However, it should be kept in mind at
> all times that Sysinternals Antivirus is simply a fake application
> that cannot scan or clean your computer under any circumstances. see
> the manual removal instructions within the link below to get rid of
> Sysinternals antivirus VIRUS

http://technet.microsoft.com/en-us/library/cc512587.aspx

Removal tools (or instructions for manual removal) are no solution to an
infection, particularly not with malware that may download more malware
or may give an attacker remote access. One can never be sure what else
was modified on the system and thus can never be certain that the
malware was removed entirely.

cu
59cobalt
--
"If a software developer ever believes a rootkit is a necessary part of
their architecture they should go back and re-architect their solution."
--Mark Russinovich
 | 
Pages: 1
Prev: Sonicwall L2 enhanced mode, pinging WAN from LAN
Next: Anyone successfully set up a D-Link DIR-330 VPN?