What is Personal Antivirus?
- Type: Spyware
- Category: Rogue Programs
- Discovered: 15 September 2009
- Removal tools: Malwarebytes' Anti-Malware, Spyware Doctor
1. Introduction
It's unreliable and insecure computer application, pretending to be antivirus tool, but in fact it is known as a rogue program.
Right after Personal Antivirus has been transferred to computer, it will begin system scan process and generate report after the scan has been completed, making user an impression of an ordinary antivirus program. But going further into the matter, transparent lie is noticed. In scan results, legitimate Windows files such as explorer.exe, regedit.exe, notepad.exe are defined as Password Stealers, HijackThis setup file HJTInstall.exe is defined as a Trojan. These are only a few examples of entire fake report.
Personal Antivirus will act as a scareware. It will pop messages "Worm Found", "Trojan Found", Windows Meta File vulnerability", "Security Violation Error", suggesting user to ignore or block assumed threats by purchasing licensed program version.
Personal Antivirus will start every time Windows are booted. An icon in a shape of a shield is visible in the taskbar area. Add/Remove Programs will not display Personal Antivirus, but an entry in Start menu is created. Trying to uninstall the program through Start menu by choosing Uninstall will not work.
Right after Personal Antivirus has been transferred to computer, it will begin system scan process and generate report after the scan has been completed, making user an impression of an ordinary antivirus program. But going further into the matter, transparent lie is noticed. In scan results, legitimate Windows files such as explorer.exe, regedit.exe, notepad.exe are defined as Password Stealers, HijackThis setup file HJTInstall.exe is defined as a Trojan. These are only a few examples of entire fake report.
Personal Antivirus will act as a scareware. It will pop messages "Worm Found", "Trojan Found", Windows Meta File vulnerability", "Security Violation Error", suggesting user to ignore or block assumed threats by purchasing licensed program version.
Personal Antivirus will start every time Windows are booted. An icon in a shape of a shield is visible in the taskbar area. Add/Remove Programs will not display Personal Antivirus, but an entry in Start menu is created. Trying to uninstall the program through Start menu by choosing Uninstall will not work.
2. Personal Antivirus removal tools:
- Malwarebytes' Anti-Malware (for the installation guide click here)
- Spyware Doctor (for the installation guide click here)
3. Screenshot:
4. Personal Antivirus files:
C:\Program Files\PersonalAV\PersonalAV.exe5. Hijackthis entries:
O4 - HKLM\..\Run: [PersonalAV] C:\Program Files\PersonalAV\PersonalAV.exe