Antivirii 2011 is a rogue security program that comes from NRB (Napalm Rogue Builder). This fake anti-virus software is hosted on various fraud web sites that will provide a quick online virus scan upon your visit. On an analysis conducted by precisesecurity.com, these web sites will open a browser window that mimics the looks of Windows Explorer. However, authors behind the attack have integrated a virus scanner to deceive users and convince them to download the trial version of Antivirii 2011.
Other than the copied Windows Explorer interface, Antivirii 2011 will also present a fake “Windows Security Alert” consisting of an identified number of infected files. Execution of this alert may install Antivirii 2011 and will bring severe disruption on the PC.
Once Antivirii 2011 is installed, it alters the registry to run itself every time Windows starts. So far, this single change is the only recorded harm it can cause on the infected PC.
Likely, this rogue security software will fabricate scary tactics like fake security alerts and system tray messages. Virus scan runs routinely on every Windows start-up. Detecting dozens of non-existing viruses, Trojans and worms attempts to aggravate victim’s concern over this shaped situation.
The only solution to this type of malware behavior is to scan the computer with an effective and genuine anti-malware product. Simple and free removal tool is what we can provide to help you delete Antivirii 2011.
Screen Shot Image:
Technical Details and Additional Information:
Antivirii 2011 Is Also Detected As:
TR/Dropper.Gen (AntiVir), SHeur4.JTW (AVG), Trojan.FakeAlert.CQI (BitDefender), Heur.Suspicious (Comodo), Trojan.Win32.FakeAV!IK (Emsisoft), Trojan.FakeAlert.CQI (F-Secure), Trojan.FakeAlert.CQI (GData), Trojan.Win32.FakeAV (Ikarus), Trojan-FakeAV.Win32.Antivirii.a (Kaspersky), Artemis!97B7917E777D (McAfee), W32/Adclicker.LLM.dropper (Norman), Mal/Generic-L (Sophos), Trj/CI.A (Panda)
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
Fake anti-virus program Antivirii 2011 can be acquired by visiting maliciously created web sites or legitimate web sites that are compromised by a Trojan. When visiting these sites, it will display the following message:
Message from webpage
Windows Security has found possible virus threats on your computer and it will perform a quick scan.
Next, the site will scan visitor’s computer using a graphical user interface similar to Windows Explorer.
While Antivirii 2011 is running on the computer, it will display various fake security alerts including the following:
Your computer is in danger!
Antivirii 2011 has detected some serious threats to your computer!
These viruses need to be eliminated immediately! Please click this icon to remote threats.
Your system is infected!
Your computer is compromised by hackers, adware, malware and worms!
Antivirii 2011 can remove this infection. Please click this icon to remove threats.
Antivirii 2011 – Malware Detected
Threats have been detected!
Warning! Some serious threats have been detected to your computer, that need to be removed instantly or they may cause critical damage to your computer!
Antivirii 2011 can remove these viruses easily, and prevent damage to your personal computer.
If you click “Remove viruses”, you can protect your computer from destruction, however, if you click “Continue unprotected”, your identity can be compromised and you may lose all your important files and experience system slowdown.