Threat Information for "WinAntiVirus Pro"
| Summary | Top |
- Name: WinAntiVirus Pro
- Aliases:Trojan.Fakealert, Download/WinFixer!00, Winfixer
- Date Discovered: 2006-09-21
- Protection Added: 2006-09-26
| Description | Top |
-- Ease of Removal 1: Uses running processes 2: Consistent file contents 3: Consistently named 4: Creates new registry entries with consistent data -- Damage/Intrusion/Annoyance 1: Creates new files 2: Autoruns at startup without an option to be disabled 3: Creates taskbar notification area icons 4: Creates user-visible icons -- Propagation/Saturation 1: Bundled with third-party applications
| Technical Details | Top |
- Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\fopn.sys - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\pv.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\vbpv.dat - Added Directory/File:
FilePath: %USERDESKTOP%\WinAntiVirus Pro 2006.lnk - Added Directory/File:
FilePath: %COMMONPROGRAMS%\WinAntiVirus Pro 2006\WinAntiVirus Pro 2006.lnk - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\AWBase\database\enemies.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\License.rtf - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\unins000.dat - Added Directory/File:
FilePath: %COMMONFILESDIR%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %TEMPDIR%\~wa*.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\fat.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\plugins - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\Updater.exe - Added Directory/File:
FilePath: %ROOTDRIVE%FileAccess.log - Added Directory/File:
FilePath: %COMMONPROGRAMS%\WinAntiVirus Pro 2006\Uninstall WinAntiVirus Pro 2006.lnk - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\AWBase - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\lapv.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\st.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %TEMPDIR%\tmp* - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\CompWiz.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\plugins\*.xmd - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\update.log - Added Directory/File:
FilePath: %SYSTEMDIR%\stera.job - Added Directory/File:
FilePath: %COMMONDESKTOP%\WinAntiVirus Pro 2006.lnk - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\ASupdater.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\img - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\sqlite3.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\winpgi.dll - Added Directory/File:
FilePath: %USERAPPDATA%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\bnlink.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\PGupdater.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\UninstallPage.html - Added Directory/File:
FilePath: %SYSTEMDIR%\SpOrder.dll - Added Directory/File:
FilePath: %WINDIR%\Application Data\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\Activate.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\fopnl.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\pv.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\WAV6COM.dll - Added Directory/File:
FilePath: %COMMONPROGRAMS%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\AWBase\vbpv.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\online.url - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\unins000.exe - Added Directory/File:
FilePath: %SYSTEMDIR%\drivers\FOPN.sys - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\fopn.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\ps.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\VAExt.exe - Added Directory/File:
FilePath: %USERPROGRAMS%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %COMMONPROGRAMS%\WinAntiVirus Pro 2006\WinAntiVirus Pro 2006 Manual.lnk - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\AWBase\database - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\libfn.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\support.url - Added Directory/File:
FilePath: %COMMONFILESDIR%\WinAntiVirus Pro 2006\WapCHK.dll - Added Directory/File:
FilePath: %TEMPDIR%\wa*.log - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\diagnosis.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\plugins\*.?vd - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\updater.dat - Added Directory/File:
FilePath: %SYSTEMDIR%\stera.log - Added Directory/File:
FilePath: %COMMONPROGRAMS%\WinAntiVirus Pro 2006\Contact customer support.lnk - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\avkernel.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\InstHelp.exe - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\sr.log - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\worldmap.swf - Added Directory/File:
FilePath: %USERAPPDATA%\WinAntiVirus Pro 2006\Logs - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\bpupdater.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\PGBase - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\up.dat - Added Directory/File:
FilePath: %SYSTEMDIR%\stera.exe - Added Directory/File:
FilePath: %COMMONAPPDATA%\WinAntiVirus Pro 2006 - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\asmngr.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\history.db - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\rpt.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\WinAV.exe - Added Directory/File:
FilePath: %USERDIR%\FileAccess.log - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\bdcore.dll - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\PGBase\vbpv.dat - Added Directory/File:
FilePath: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\uninstall.ico - Added Directory/File:
FilePath: %SYSTEMDIR%\av.cpl - Added Registry Key:
Key: HKCU\Software\WinAntiVirus Pro 2006 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{B2A3156E-3332-4b47-AF5A-5B121503514F} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\WAP6.PCheck - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\VapFM.CreationNotifier.1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{2178F3FB-2560-458f-BDEE-631E2FE0DFE4} - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\AppID\VapFM.EXE - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AVExplorer.ShellExtension - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{367A86A5-D048-4785-86BE-4E2706AAFDD9} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AppID\{367A86A5-D048-4785-86BE-4E2706AAFDD9} - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\TypeLib\{EB2A5B78-7437-43EF-AB74-4AB1D3A374B6} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AntiVirusCOM.AVOfficeProtect - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{E18B69D0-7E9E-4C6E-BDD8-879A1FFF7123} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\WinPGIntegrator.IEIntegrator.1 - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\Interface\{C0A3779C-3345-4150-BD63-C399EB32661E} - Added Registry Key:
Key: HKLM\%BHOREG%\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Component Categories\{56FFCC30-D398-11d0-B2AE-00A0C908FA49} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\WAP6.PCheck.1 - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\VapFM.CreationNotifier - Added Registry Key:
Key: HKLM\%CURRENTVERSIONREG%\Uninstall\WA6P_is1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{723D54C7-7483-4EB8-8EED-CE5B2AEA534D} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AVExplorer.ShellExtension.2 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{732B6533-7F78-4C47-9C01-2979BA0829B9} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{1AC5C88A-DEA7-462b-A232-04AF5CA42E7E} - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\AppID\{EB2A5B78-7437-43ef-AB74-4AB1D3A374B6} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AntiVirusCOM.AVOfficeProtect.1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{1234890A-5E6E-4867-8136-CA6F1456B235} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AppID\WinPGI.DLL - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\Interface\{27967FBC-694B-41A6-8CCE-30E59292350E} - Added Registry Key:
Key: HKLM\SOFTWARE\WinAntiVirus Pro 2006 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{0B9A27EB-125F-4F3E-A35C-2769C47A1442} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\WinPGIntegrator.IEIntegrator - Added Registry Key:
Key: HKLM\SOFTWARE\CLASSES\CLSID\{328BA26A-1619-47ee-A37D-7D7A6AB1B000} - Added Registry Value:
Key: HKLM\%CURRENTVERSIONREG%\SharedDLLs Value: %COMMONFILESDIR%\WinAntiVirus Pro 2006\WFSF.vxd - Added Registry Value:
Key: HKLM\%CURRENTVERSIONREG%\SharedDLLs Value: %COMMONFILESDIR%\WinAntiVirus Pro 2006\WVapFM.exe - Added Registry Value:
Key: HKLM\%CURRENTVERSIONREG%\SharedDLLs Value: %COMMONFILESDIR%\WinAntiVirus Pro 2006\WapCHK.dll - Added Registry Data:
Key: HKLM\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %PROGRAMFILESDIR%\WinAntiVirus Pro 2006\WinAV.exe - Added Registry Data:
Key: HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\ShellExtension Value: [RANDOM VALUE] Data: {1AC5C88A-DEA7-462b-A232-04AF5CA42E7E} - Added Registry Data:
Key: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\ShellExtension Value: [RANDOM VALUE] Data: {1AC5C88A-DEA7-462b-A232-04AF5CA42E7E} - Added Registry Data:
Key: HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\ShellExtension Value: [RANDOM VALUE] Data: {1AC5C88A-DEA7-462b-A232-04AF5CA42E7E}
