Virus Trigger (VirusTrigger) – Removal Instructions

Lets play clone the clone. That’s what the cyber-criminals behind Virus Trigger have just done.

Virus Trigger (VirusTrigger), is a new rogue security application which is essentially a clone of VirusResponse Lab 2009, which, in fact, was cloned from Antivirus Lab 2009.

Just like its predecessors, Virus Trigger is now prowling the Internet, seeking out unaware users in order to steal their money. Once again, Trojan.Zlob or the Vundo Trojan is the dropper used in spreading this scourge.

Experienced computer users’ are aware that the Internet is saturated with rogue security programs which, if installed, can often cost the unfortunate victim loads of money in an attempt to get rid of it. Rogue Security Software is now a billion dollar “business”.

Virus Trigger has the same objective as all Rogue Security Software; to convince the victim to pay for the “full” version of the application in order to remove what are, in fact, false positives that this program is designed to display on the infected computer in various ways, including fake scan results, pop-ups and system tray notifications.

(Click pic for larger)

Rogue security software often writes itself into multiple parts of the operating system, and in many cases, it can hide its files, registry entries, running process and services, making the infection difficult to find, and remove.

In the last year, or so, I have heard some horrendous stories from readers where the common thread has been the debiting of their credit cards, multiple times, by the cyber-criminals responsible for the distribution of Rogue Security Software.

If you are a victim of this or other Rogue Security Software, the following removal solutions will be invaluable. The individuals/companies, who wrote and developed these free tools, are to be congratulated for giving back so freely to the Internet community.

Without their generous efforts, those infected by this, and other rogue applications, would be faced with the unenviable task of performing a complete system reinstall, with a strong probability of losing irreplaceable Hard Drive data.

Removal Solutions:

SmitFraudFix, available for download at Geekstogo is a free tool that is continuously updated to assist victims of rogue security applications.

Bleeping Computer is a web site where help is available for many computer related problems, including the removal of rogue software.

Rogue Fix at Internet Inspiration

Malwarebytes, a reliable anti-malware company has created a free application to help keep you safe and secure. RogueRemover will safely remove a number of rogue security applications.

What you can do to reduce the chances of infecting your system with rogue security software.

Be careful in downloading freeware or shareware programs. Spyware is occasionally concealed in these programs. Download this type of program only through reputable web sites such as, or sites that you know to be safe.

Consider carefully the inherent risks attached to peer-to-peer (P2P), or file sharing applications where exposure to rogue security applications is widespread.

Install an Internet Browser add-on that provides protection against questionable or unsafe websites. My personal favorite is Web of Trust, an Internet Explorer/FireFox add-on that offers substantial protection against questionable or unsafe websites.


Filed under Antivirus Applications, Don't Get Hacked, Firefox Add-ons, Freeware, Geek Software and Tools, Interconnectivity, Manual Malware Removal, Online Safety, Rogue Software, Safe Surfing, Software, trojans, Virus Repair Tools, Viruses, Windows Tips and Tools, worms

2 responses to “Virus Trigger (VirusTrigger) – Removal Instructions

  1. This nasty type of attack is currently the leading cause of all the calls in to my tech support shop. I can attest that they are very difficult to remove using normal techniques.

    What I have found is that the variants that use a ‘red shield’ icon (identical-looking to the Windows Security Center shield) in the Notification Area (the icons down by the the clock) are the most effective at getting people to click.. they assume that it is Windows that is telling them they’re infected.
    Granted.. it sure looks like Windows.. but folks, understand this– if you go on the Internet, you ARE a target of criminals.
    Not maybe. Not sometimes. And not just if you go to ‘risky’ sites. But period.

    And I hate to be the bad-news-bearer, but, it’s going to get worse before it gets better.