It is
proposed that this article be deleted because of the following concern:
If you can address this concern by improving, copyediting, sourcing, renaming, or merging the page, please edit this page and do so. You may remove this message if you improve the article or otherwise object to deletion for any reason. Although not required, you are encouraged to explain why you object to the deletion, either in your edit summary or on the talk page. If this template is removed, do not replace it. The article may be deleted if this message remains in place for seven days, i.e., after 05:12, 4 May 2024 (UTC). Find sources: "ContraVirus" – news · newspapers · books · scholar · JSTOR Nominator: Please consider notifying the author/project: {{
subst:proposed deletion notify|ContraVirus|concern=Run-of-the-mill malware with no evidence of notability. Shows up on a few "how to disinfect your computer" sites but nothing else}} ~~~~ |
ContraVirus is a rogue spyware application that poses as a legitimate anti-spyware program. [1] The application uses a false scanner to force computer users to pay for the removal of non-existent spyware items. It may also be known as ExpertAntivirus. [2] [3]
ContraVirus may be downloaded as a trojan horse, along with possible other software. Typically, it may be installed by the SmitFraud trojan. [4]
ContraVirus has been known to display fake messages stating that a user's computer is infected with spyware. It may also install the file wincom27.dll, located in C:\WINDOWS\ and ext32inc.dll located in C:\WINDOWS\system\, in order to persuade a user to purchase the software. [5] Traditionally, a user will see Contravirus running a "scan" of their computer, at which time a user will be prompted to purchase the Contravirus software in order to remove the threat. It may also hijack the user's browser and install a toolbar. [6]
95, 98, Me, NT, XP, Server 2000, 2000, Server 2003, Vista, Server 2008, 7 and Server 2008 R2 are operating systems capable of becoming infected.