Is Paladin Antivirus a New Healer or Just a Scam?

News

Contributed by: Aurelija
Date: February 17, 2010

	5 Vote 0	Is Paladin Antivirus a New Healer or Just a Scam?

Are you looking for a reliable anti-virus application? If your answer to this question is yes, then I'd definitely recommend you to stay away from Paladin Antivirus. My opinion here is completely different to that of the creators of this program. Why? Paladin Antivirus is just a new rogue anti-spyware increasingly attacking unaware computer users.

Where does this rogue come from and how it manages to infect huge numbers of computer systems. First of all, it has to be noted that Paladin Antivirus can also come with one of the following names: PaladinAntivirus, Paladin.Antivirus, rogue.Paladin Antivirus. The program can be installed through the use of Trojan infections, such as the well-known Zlob or Vundo. It can also be advertized on various malicious websites where potential victims just have to click on the "download" button.

Once installed on the system, Paladin Antivirus configures your Registry settings so that the program would be launched each time when Windows starts. Immediately after that it begins its malicious activities. First of all, Paladin Antivirus starts performing fake system scans that generate falsified results. The rogue then starts displaying various warnings and notifications claiming that your PC is infected with lots of parasites. Without a doubt, you will then be asked to spend your money and purchase a full version of the program as this is the only way to clean your PC. Don't do that because Paladin Antivirus is just a scam!

Here you can see a screenshot of a fake system scan performed by Paladin Antivirus:

Image 1. Paladin Antivirus malicious scan

Let's move on to the analysis of Paladin Antivirus itself. As is the case with any other malicious applications, this rogue anti-spyware program is associated with several distinct files that need to be deleted in order to remove the rogue from an infected system. Have a look at the following table with four distinct files, their sizes and MD5 signatures:

File Name	File Size	MD5
phook.dll	9216	d2cf8c85cda2d189ae311073e42af609
pav.exe	2220032	d7f99e8f3bd8a91cd76593acd99ffe89
pav.exe	2342912	814cafe042f1fcec320b5a1793f5f622
pavext.dll	37376	5585c4da24fcf724c8bc3eede4a4d813

Table 1. File information

For the end of my article I can just warn you - don't believe in anything these cyber criminals are trying to convince you of. The truth is that the only real risk on your computer is Paladin Antivirus itself. Remove it from your system immediately after its detection and use reliable anti-virus software to avoid similar infections in the future.

Resources:
Paladin Antivirus description
Rogueware details and removal

User Comments

ajay February 20, 2010

first time user

Featured Videos

Optimize Startup

From: PC1News Videos

Added: November 11, 2008

Software Downloads

SpyHunter V.4

Free Spyhunter Scanner (Spyware/Trojan Detection). DETECT Spyware, Trojans, Worms, Viruses and malware on your PC absolutely FREE.

Download now

Registry Mechanic 8

Award Winning software, Fixes registry and improves computer performance. Created by a division of Symantec, this tool will scan your registry and find errors that can be later cleaned either individually or all together.

Download now

SpywareBlaster 4.1

The tool is used to prevent the installation of spyware and other potentially unwanted software. As soon as you download it, you will be able to protect your system.

Download now