Description
Paladin Antivirus belongs to a group of rogue software and is related to .
Removal instructions
To remove this Spyware infection, download Spyware Doctor, install it and run full computer scan. At the end of the scan choose Fix Checked to start computer cleaning process.
Behavior
· Annoying pop-ups. Alerts and warnings appearring frequently and stating that the computer has been infected. It also can be promotional message asking to register or buy some rogue program.
· Disabled anti-virus tools. If any anti-spyware or anti-virus tool is present, it will turned off and blocked
· Exaggerated PC scan reports. Even if the computer is clean scan report stating that the system is infected is generated.
· Fake security warnings. Warnings stating that the computer system is not secure.
· Fake Windows security alerts. Alerts that in appearance are identical to those displayed by Windows
· Faked Windows Security Center. Windows Security Center generated by fake anti-spyware software and in appearance very similar to the original one displayed by Windows OS
· Heavy rogue program advertising. Notices about fake anti-spyware software that are displayed frequently and are disturbing from work.
· Slow computer. Slower computer performance noticed.
· The risk of fraudulent payment. Frequent user persuading to buy rogue program license.
Files
C:\DOCUME~1\user\LOCALS~1\Temp\msdtctr.exe
C:\Program Files\Paladin Antivirus\pav.exe
C:\Program Files\Paladin Antivirus\pav.exe
Symptoms in Hijackthis
O4 - HKCU\..\Run: [msdtctr.exe] C:\DOCUME~1\user\LOCALS~1\Temp\msdtctr.exe |
O4 - HKCU\..\Run: [Paladin Antivirus] "C:\Program Files\Paladin Antivirus\pav.exe" -noscan |
O4 - HKUS\S-1-5-21-789336058-1935655697-1957994488-1003\..\Run: [msdtctr.exe] C:\DOCUME~1\user\LOCALS~1\Temp\msdtctr.exe (User '?') |
O4 - HKUS\S-1-5-21-789336058-1935655697-1957994488-1003\..\Run: [Paladin Antivirus] "C:\Program Files\Paladin Antivirus\pav.exe" -noscan (User '?') |