It is
proposed that this article be deleted because of the following concern:
If you can address this concern by improving, copyediting, sourcing, renaming, or merging the page, please edit this page and do so. You may remove this message if you improve the article or otherwise object to deletion for any reason. Although not required, you are encouraged to explain why you object to the deletion, either in your edit summary or on the talk page. If this template is removed, do not replace it. The article may be deleted if this message remains in place for seven days, i.e., after 05:12, 4 May 2024 (UTC). Find sources: "ContraVirus" – news · newspapers · books · scholar · JSTOR Nominator: Please consider notifying the author/project: {{
subst:proposed deletion notify|ContraVirus|concern=Run-of-the-mill malware with no evidence of notability. Shows up on a few "how to disinfect your computer" sites but nothing else}} ~~~~ |
ContraVirus is a rogue spyware application that poses as a legitimate anti-spyware program. [1] The application uses a false scanner to force computer users to pay for the removal of non-existent spyware items. It may also be known as ExpertAntivirus. [2] [3]
Methods of infection
ContraVirus may be downloaded as a trojan horse, along with possible other software. Typically, it may be installed by the SmitFraud trojan. [4]
Symptoms of infection
ContraVirus has been known to display fake messages stating that a user's computer is infected with spyware. It may also install the file wincom27.dll, located in C:\WINDOWS\ and ext32inc.dll located in C:\WINDOWS\system\, in order to persuade a user to purchase the software. [5] Traditionally, a user will see Contravirus running a "scan" of their computer, at which time a user will be prompted to purchase the Contravirus software in order to remove the threat. It may also hijack the user's browser and install a toolbar. [6]
95, 98, Me, NT, XP, Server 2000, 2000, Server 2003, Vista, Server 2008, 7 and Server 2008 R2 are operating systems capable of becoming infected.
See also
References
- ^ "W32/Contra.worm". Archived from the original on 2009-09-01. Retrieved 2008-08-20.
- ^ "Risk Detected".
- ^ http://www.ca.com/securityadvisor/pest/pest.aspx?id=453113271 [ dead link]
- ^ "What is a Trojan Horse? Definition from WhatIs.com". Security. Retrieved 2023-12-11.
- ^ "How to Remove Contravirus (Removal Instructions) - Spyware and Malware Removal Guides Archive".
- ^ Vincentas (12 October 2012). "ContraVirus in SpyWareLoop.com". Spyware Loop. Retrieved 28 July 2013.