Antivirus Trigger is a rogue antispyware program designed to trick users into buying a fake software by using scare tactics. It is a fresh clone of rogue antispyware called VirusTrigger. Antivirus Trigger uses a Zlob trojan (fake audio and video codec) for the hit on your computer. Once infected, your computer will display fake security alert stating that your computer infected with malware:
System Alert!
Your system might be infected with malicious software that may impact the performance of your computer. Click the icon for a free scan to detect any active spyware applications.
After clicking this, you will be brought to the AntivirusTrigger website.
During installation, Antivirus Trigger configures itself to run automatically every time, when you start your computer. Once running, Antivirus Trigger will scan your computer and list a variety of spyware, malware. Then, it said that you should purchase AntivirusTrigger in order to remove them. Running of the program may drastically slow the performance of your computer.
Symptoms in a HijackThis Log.
R1 – HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://windiwsfsearch.com
R1 – HKLM\Software\Microsoft\Internet Explorer,SearchURL = http://windiwsfsearch.com
R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://windiwsfsearch.com
R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://windiwsfsearch.com/ie6.html
R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://windiwsfsearch.com
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://windiwsfsearch.com
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://windiwsfsearch.com/ie6.html
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://windiwsfsearch.com
R1 – HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://windiwsfsearch.com
R0 – HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://windiwsfsearch.com
O2 – BHO: (no name) – {64466B8E-20A7-4A4A-AFF4-AAD9CA68B52C} – C:\Program Files\WebMediaViewer\hpmun.dll
O2 – BHO: AvirTrWarningBHO Class – {3A267370-076E-4af4-B986-77626B8E89DF} – C:\Program Files\AvirTrsoftware\AvirTrWarning.dll
O2 – BHO: VirTriggerWarningBHO Class – {0088C75C-6361-4dfb-B2CF-576CACFA3C55} – C:\Program Files\VirTrigger\VirTriggerWarning.dll
O4 – HKCU\..\Run: [AvirTr] “C:\Program Files\AvirTrsoftware\AvirTr.exe”
O4 – HKCU\..\Run: [VirTrigger] “C:\Program Files\VirTrigger\VirTrigger.exe”
O4 – HKCU\..\Run: [wblogon] C:\WINDOWS\system32\algg.exe
O4 – HKLM\..\Policies\Explorer\Run: [QuickTime Task] C:\Program Files\WebMediaViewer\qttask.exe
O4 – HKLM\..\Policies\Explorer\Run: [VMware hptray] C:\Program Files\WebMediaViewer\hpmon.exe
O22 – SharedTaskScheduler: crimsonness – {e0feeb92-908e-46d2-8a66-88c5295f2629} – C:\WINDOWS\system32\tiltmeo.dll
Use the following instructions to remove Antivirus Trigger (Uninstall instructions).
- Download MalwareBytes Anti-malware (MBAM). Close all programs and Windows on your computer.
- Double Click mbam-setup.exe to install the application. When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure a checkmark is placed next to Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select “Perform Quick Scan”, then click Scan.
- The scan may take some time to finish,so please be patient.
- When the scan is complete, click OK, then Show Results to view the results.
- Make sure that everything is checked, and click Remove Selected.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.
If you need help with the instructions, then post your questions in our Spyware Removal forum.
Worked Perfect!! Thanks a million!!
thank you very much for a great product
When I switch on computer, after booting immediately antivirus trigger running, rest of the other programs or windows cannot be opened. How to delete this antivirus trigger or any other way i can open other files.
MA, follow the instructions.
Many, Many, Many Sincere Thanks. This worked great to get rid of Antivirus Trigger when others fell far short…WHEW!!!
Same situation as MA. How do we download Malware Bytes if the Trigger is locking up the laptop computer. No access to internet. Download on another computer to a cd and run on laptop? DESPERATE to fix! Thanks!
Worked like a charm, but the website for the remover gets blocked by the malware. What a whore. Had to use a thumbdrive to load the removal software.
Thanks for the fix.
Malware is brilliant. Removed Antivirus Trigger without any problem
Thank you
thank you – thank you for the directions on removing this evil software!!! I have Norton 360 and can’t understand why it didn’t detect this junk and remove it. Once again – THANKS!!!