Proland Software Download Anti virus software now!

Home
Anti virus products
Download Anti virus Software
Order On-line
Support
Email
Protector Plus Anti virus Software for
Anti virus Software for Windows XP and 2000
Antivirus Software for Windows Vista
Anti virus Software for Windows Me and 98
Anti virus Software for Exchange
Anti virus Software for NetWare
Protector Plus Console
Buy Anti virus software now!

SpamChoke Antispam Software
SpamChoke Antispam
Software

Subscribe to Virus Alert
Mailing List

Enter your Email
 (Ex : john@company.com)






Download Anti virus software

W32/FakeAV.EB Trojan

Blueball Information about the W32/FakeAV.EB Trojan:

W32/FakeAV.EB is a trojan. The trojan will infect Windows systems.

The trojan may be dropped by other malware or may be downloaded from remote website by other malware. It may also be downloaded unknowingly by a user while visiting malicious Website.

Upon execution, the trojan drops the following files:

database.dat in the %Program Files%\rhc7pgj0e3ct folder,
license.txt in the %Program Files%\rhc7pgj0e3ct folder,
MFC71.dll in the %Program Files%\rhc7pgj0e3ct folder,
MFC71ENU.DLL in the %Program Files%\rhc7pgj0e3ct folder,
msvcp71.dll in the %Program Files%\rhc7pgj0e3ct folder,
msvcr71.dll in the %Program Files%\rhc7pgj0e3ct folder,
rhc7pgj0e3ct.exe in the %Program Files%\rhc7pgj0e3ct folder,
rhc7pgj0e3ct.exe.local in the %Program Files%\rhc7pgj0e3ct folder,
Uninstall.exe in the %Program Files%\rhc7pgj0e3ct folder,
Antivirus XP 2008.lnkin the Documents and Settings\All Users\Desktop,
phc3pgj0e3ct.bmp in the Windows System folder,
pphc3pgj0e3ct.exe in the Windows System folder,
Antivirus XP 2008.lnk in the %User Profile%\Application Data\Microsoft\Internet Explorer\Quick Launch.

The trojan modifies registry at the following locations to load itself during each startup:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\lphc3pgj0e3ct
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\SMrhc7pgj0e3ct

It also modifies registry at the following locations:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhc7pgj0e3ct
HKEY_CURRENT_USER\Control Panel\Desktop\SCRNSAVE.EXE
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
HKEY_CURRENT_USER\Software\Sysinternals\Bluescreen Screen Saver
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier
HKEY_CURRENT_USER\Control Panel\Colors\Background
HKEY_CURRENT_USER\Control Panel\Desktop\ConvertedWallpaper
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore\DisableSR

The trojan modifies the system wallpaper and screensaver.

This trojan first appeared on August 27, 2008.

Blueball Other names of W32/FakeAV.EB Trojan:

This trojan is also known as TROJ_FAKEAV.EB.

Download Now



Download the FREE Evaluation copy of Protector Plus antivirus software


Blueball About Protector Plus Antivirus Software Packages:

Proland Software is the developer of Protector Plus range of antivirus software packages. Protector Plus 2008 is available for Windows Vista, Windows 95/98/Me, Windows XP, Windows NT/2000/2003 servers and workstations, MS-Exchange 2000/2003, MS-DOS and NetWare servers.

Anti virus for Windows Download Now! Special Offer Order Protector Plus Antivirus software Now and get SpamChoke Antispam Software worth $29.95 FREE!

Protector Plus range of antivirus products offer on-line virus detection and removal. All the packages have the ability to detect and isolate all types of viruses, trojans, worms and other types of malware.

These products are updated on a continuous basis and the latest upgrades for all the platforms are made available for downloading from this site.

Click here to order
Protector Plus anti virus software 

 Buy Anti virus software now!


You can download the 30 day evaluation copy of the
antivirus software free of cost for these platforms:
Anti virus Software for Windows XP and 2000 Anti virus Software for Windows Me and 98 Anti virus Software for Exchange Anti virus Software for NetWare


HomeAnti virus productsDownload Anti virus SoftwareOrder On-lineEmail

Copyright © 2008 Proland Software. All rights reserved.


Download Anti virus software