Search
Keyword: usoj_fakeav.smdj
This FAKEAV malware disguises itself as an antivirus specifically made for the Windows 8 operating system. This particular FAKEAV variant was seen in October 2012, which is the same month Windows 8
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It installs a fake antivirus/antispyware software. It
Similar to other FAKEAV variants, TROJ_FAKEAV.BSM also displays several graphical users interfaces (GUIs) to users in an attempt to convince them of system infection and to purchase this purported cleaning
It saves the downloaded file, which is detected as TROJ_FAKEAV.GXX in a specific folder. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting
This Trojan executes then deletes itself afterward. Installation This Trojan drops the following file(s)/component(s): %User Temp%\AUTMGR32.EXE - detected as TROJ_FAKEAV.SMEV %User Temp%
This Trojan may be dropped by other malware. It executes the files it drops, prompting the affected system to exhibit the malicious routines they contain. It accesses websites to download files. This
This Trojan poses as a legitimate antivirus software using various commercial names. Similar to other FAKEAV variants, TROJ_FAKEAV.KQWL also displays several graphical users interfaces (GUIs) to
This Trojan may be downloaded from remote sites by other malware. It displays fake alerts that warn users of infection. It also displays fake scanning results of the affected system. It then asks for
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies the Internet Explorer Zone Settings. It
compromises their financial accounts. These fake alerts will then lure the user to download a malicious FAKEAV executable from the site where it is hosted. As a result, malicious routines of the downloaded file
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to certain URLs. It may do this to remotely
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. When users agree to buy the software, it connects to a
characters} http://{BLOCKED}eredir.com/up.php?{random characters} http://{BLOCKED}irtaca.com/up.php?{random characters} NOTES: This is a component of FAKEAV malware. Trojan:Win32/FakeSysdef (Microsoft);
(Fortinet) Searches for iCloud Unveil FAKEAV Displays windows, Connects to URLs/IPs, Steals information