From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
The AfD states that articles on this topic were deleted in 2012 and in 2017. David notMD (talk) 18:06, 8 July 2019 (UTC)
As noted in the Attributions, this contains material from the Mal Ware Wiki. It is actually a verbatim copy of that page (or was before some of it was trimmed).. It's not a copyvio, since the original page is indeed under a Wikipedia compatible license (CC BY-SA 3.0), Still, we cannot use this material since the page is a user-generated site and hence is not WP:RS. We could reuse anything that is sourced to a reliable source on the Wikia page by reusing the source, but only one sentence is sourced and that is to a personal YouTube page, so not WP:RS. There is nothing in this draft that we can use on Wikipedia.. Meters (talk) 05:11, 11 July 2019 (UTC)
  • Agree 100%. I added the attribution because FurryGodzilla hadn't acknowledged the source this was verbatim copy/pasted from at all, and we do need to attribute content like this even while it is a draft. It's not remotely useful as an article in this form, though. -- Begoon 08:56, 11 July 2019 (UTC)

NavaShield is a rogue antivirus program on Microsoft Windows that tricks unsuspecting users into downloading it, when it is actually malware and nagware. The program first started in 2007 as a project, but it was initially discovered in 2010, when it advertised itself with the slogan "award winning computer protection". It was popularized by the YouTubers danooct1 and rogueamp. It also makes some grammatical errors in its alerts and such, which is a clue that it is a rogue antivirus. The logo appears to be a blue shield with a chrome-like color around it with an 'N' centered in it. In 2013, it was discovered that its servers are currently down, and any registration key entered in its download window is useless.[1]


It had its own website, Navashield (dot) com. NavaShield's site looked very user-friendly like any antivirus website, so normal Windows users may have thought it was legitimate. This is aided by the rogue's design. Icons.png NavaShield desktop icon The rogue does not do anything until one week has passed when it begins nagging the user to buy the "full" version. It does this by making an annoying ticking sound and displaying an ad encouraging the user to buy NavaShield. After the rogue has been on the system for several more weeks, it attempts to simulate an actual malware infection to get the user to purchase the fake program. To do this, it plays the sound of a group of men laughing over and over again. If the user has one of Microsoft's Text-To-Speech voices installed (usually Microsoft Sam), Navashield will make the TTS Voice talk at the user or say nonsensical things, such as "I am a Robot from outer space.", "I love you!", or it can even swear at the user. It also redirects the user to adult content sites if the user goes online. It may also go to Match (dot) com, or Casino (dot) com. It will also open Mail and show a non-existent email address to send to: "beb@sexsex". The icon tray bar will also start changing in size. Finally, another laugh that is higher in pitch starts to play. It also blocks Task Manager to stop the user from cancelling the infection. In the first payload, an annoying clock will sound and tell you that Navashield has expired. This will keep happening. At any given moment after the 1st week, it will start a skewed laughter. During this time it will do things such as throw up porn, explorer windows, attempt to send messages, increase CPU, say various things, and block programs. It will also put up this message saying "Disk drive C: is being deleted", it makes a pinging noise and it gets bigger and bigger till it fills up the entire screen.


  1. ^ ComputerVirusWatch (29 August 2013), Trying to run NavaShield in 2018 – via YouTube