Antivir 2010

Antivir 2010 Description

Antivir 2010 is a fake anti-virus application stemming from the same family as Antivir and Alpha Antivirus. Antivir 2010 can be installed onto a system by ignorant users who accept the offer advertised on malicious online scanners, for a free version of Antivir 2010. Antivir 2010 can also be secretly installed onto a system by stealthy Trojans. On execution, Antivir 2010 will launch deceitful pop-ups, security warnings and online scan reports in order to trick the user into believing that the system is infested with dangerous malware. The user will then be given the option to pay for the "full version" of Antivir 2010 in order to remove all the threats. Ignore all security warnings displayed by Antivir 2010 and never purchase this rogue application.

Technical Information

Screenshots & Other Imagery

Antivir 2010 Video

Tip: Turn your sound ON and watch the video in Full Screen mode.

File System Details

Antivir 2010 creates the following file(s):
# File Name Detection Count
1 %WINDOWS%\system32\UpdateCheck.dll N/A
2 %Program Files%\AV\antivir2010.exe N/A
3 %Documents and Settings%\All Users\Start Menu\AV\Uninstall.lnk N/A
4 %Program Files%\Common Files\Uninstall\AV N/A
5 %Documents and Settings%\All Users\Start Menu\AV\Antivir 2010.lnk N/A
6 %Program Files%\Common Files\Uninstall N/A
7 %UserProfile%\Desktop\Antivir 2010.lnk N/A
8 %Documents and Settings%\All Users\Start Menu\AV N/A
9 %Program Files%\AV N/A
10 %Program Files%\Common Files\Uninstall\AV\Uninstall.lnk N/A

Registry Details

Antivir 2010 creates the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35A5B43B-CB8A-49CA-A9F4-D3B308D2E3CC}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Antivir 2010
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AV"

One Comment

  • Nancy:

    This article claims that "Antivir 2010 can be installed onto a system by ignorant users who accept the offer advertised on malicious online scanners, ..."

    The software also launches if you click Cancel. Once you have this nasty bug you are doomed.

    I work in IT and my helpdesk guys have been fighting a bug I got last week. So far they have not gotten rid of it. I had sucess with Spyhunter at home, so I have downloaded it at work to see if it finds the bugger.