Threat Database Fake Error Messages "Spyware Activity Alert" Popup

"Spyware Activity Alert" Popup

By GoldSparrow in Fake Error Messages

"Spyware Activity Alert" popup is a fake warning message created by the rogue anti-spyware application known as AntivirusBEST, in an effort to intimidate users into purchasing the fake spyware remover. The "Spyware Activity Alert" popup reads as follows:

"Spyware activity alert! Spyware.IMonster activity detected! It is spyware that attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other programs, including logins and passwords from online banking sessions, eBay, PayPal."

The "Spyware Activity Alert" popup is nothing more than a fake security notification used to deceive the user into believing their computer is infected, and prompting them to purchase and install the rogue anti-spyware program AntivirusBEST.

File System Details

"Spyware Activity Alert" Popup may create the following file(s):
# File Name Detections
1. C:\Documents and Settings\\Application Data\AB\Installer.exe
2. abest.exe
3. C:\Documents and Settings\\Application Data\AB\svchost.exe
4. qwprotect.dll
5. svchost.exe
6. C:\Documents and Settings\\Application Data\AB\abest.exe
7. C:\Documents and Settings\\Application Data\AB\QWProtect.dll
8. installer.exe
9. C:\Documents and Settings\\Desktop\AntivirusBEST.lnk
10. qwprotect.dllx
11. C:\Documents and Settings\\start menu\Programs\antivirusbest\Uninstall.lnk
12. C:\Documents and Settings\\Start Menu\Programs\AntiVirusBEST
13. C:\Documents and Settings\\start menu\Programs\antivirusbest\AntivirusBEST.lnk
14. C:\Documents and Settings\\Application Data\AB\ABEST.CAB

Registry Details

"Spyware Activity Alert" Popup may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44b2c9f5-608d-46de-82e1-26c5bcb85193}


Most Viewed