What is VirusTrigger?
- Type: Spyware
- Category: Rogue Programs
- Discovered: 22 November 2008
- Removal tools: Malwarebytes' Anti-Malware, Spyware Doctor
1. Introduction
The program that falls into rogue computer software category for alerting user about PC security problems that even do not exist. The application has been designed to act as virus, spyware and other malicious software removal program. In the ordinary way Virus Trigger download is caused by Trojan.Zlob which is usually embedded into media related websites where trojan is pretended to be a video codec.
Virus Trigger is configured to start computer scan every time Windows are booted up. The main purpose of Virus Trigger is to scare user about computer disorder and make him to pay for the assumed anti-virus program. The program pops fictitious alert messages right after scan report has been generated and asks to buy licensed program version in order to remove found threats. It is recommended to remove Virus Trigger as soon as it has been noticed on computer system.
Virus Trigger fake alert:
Related threats: Virus Response Lab 2009, Antivirus Trigger
Virus Trigger is configured to start computer scan every time Windows are booted up. The main purpose of Virus Trigger is to scare user about computer disorder and make him to pay for the assumed anti-virus program. The program pops fictitious alert messages right after scan report has been generated and asks to buy licensed program version in order to remove found threats. It is recommended to remove Virus Trigger as soon as it has been noticed on computer system.
Virus Trigger fake alert:
Related threats: Virus Response Lab 2009, Antivirus Trigger
2. VirusTrigger removal tools:
- Malwarebytes' Anti-Malware (for the installation guide click here)
- Spyware Doctor (for the installation guide click here)
3. Screenshot:
4. VirusTrigger files:
gowqug.dll, tiltmeo.dll, wakjs.dllVirusTriggerBin.exe, vrt_setup.exe (setup file)
5. Hijackthis entries:
O4 Entries:
O4 - HKCU\..\Run: [VirusTriggerBin] "C:\Program Files\VirusTriggerBin\ VirusTriggerBin.exe"
O22 Entries:
O22 - SharedTaskScheduler: flaxen - {257f6f44-2c64-46bb-acb4-55f9b9e0ae08} - C:\ WINDOWS\system32\wakjs.dll
O22 - SharedTaskScheduler: behaves - {1f3dd9bf-1472-4a8b-b295-b596a597149b} - C: \WINDOWS\system32\gowqug.dll
O22 - SharedTaskScheduler: crimsonness - {e0feeb92-908e-46d2-8a66-88c5295f2629} - C:\WINDOWS\system32\tiltmeo.dll
O4 - HKCU\..\Run: [VirusTriggerBin] "C:\Program Files\VirusTriggerBin\ VirusTriggerBin.exe"
O22 Entries:
O22 - SharedTaskScheduler: flaxen - {257f6f44-2c64-46bb-acb4-55f9b9e0ae08} - C:\ WINDOWS\system32\wakjs.dll
O22 - SharedTaskScheduler: behaves - {1f3dd9bf-1472-4a8b-b295-b596a597149b} - C: \WINDOWS\system32\gowqug.dll
O22 - SharedTaskScheduler: crimsonness - {e0feeb92-908e-46d2-8a66-88c5295f2629} - C:\WINDOWS\system32\tiltmeo.dll