Today we would like to tell you about the latest and very dangerous rogue which name is XP Internet Security 2010. It is fake antispyware application that comes under random names depends on Operating System that is been in use on different computers. The most common names are Win 7 Antispyware 2010, or Vista Antispyware 2010. This is absolutely helpless program that is promoted by Trojan. This virus will worm into your computer when you are trying to use online anti-virus scanners or when you download some video codec updates to watch video online from unsecure web sites. XP Internet Security 2010 is typical rogue antispyware software. It uses fake system scans to make you feel afraid about your PC and offers to pay for so called “registered” license to be able to remove all infections that has been detected. Interesting fact about XP Internet Security 2010’s activity is that everything it alerts about is 100% falsehood. Moreover, some files that were determined to be viruses are legitimate Windows files and their removing will lead to unpredictable consequences. What is more, XP Internet Security 2010 will send tons of annoying pop-ups stating about “Tracking software found” and more bogus warnings. Be sure and do not trust such alerts because they are absolutely trustless and are only the way XP Internet Security 2010 scamming users out of their money. Also, XP Internet Security 2010 will hijack your Internet browser, so this badware would be able to scan your activity inside the world web and protect itself from detection. It will send different warnings informing about insecurity of some web pages, which actually operates the tools that are able to detect and immediately remove this rogue antispyware application from your beloved machine. As you can see, XP Internet Security 2010 is simple scareware that was constructed as a powerful tool of influencing and scamming users to spend their money on products they do not need. XP Internet Security 2010 will never protect your computer from infections, moreover, XP Internet Security 2010 is that infection you should be afraid of and keep yourself out of using and keeping it on your PC. That is why it is highly recommended to get rid of XP Internet Security 2010 immediately after detection and never use the same type badwares afterwards.
Type: Rogue Anti-Spyware
Malware Author: Unknown
Threat Level: Critical
Screenshot:
How to remove XP Internet Security 2010 manually:
It's possible to remove XP Internet Security 2010 manually, but you have to be very experienced in dealing with registry entries, program files and .dll files.
The files to be deleted:
Remove registry entries:
%Documents and Settings%\[UserName]\Application Data\av.exe
%Documents and Settings%\[UserName]\Application Data\WRblt8464P
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
HKEY_CLASSES_ROOT\secfile\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “av.exe” /START “firefox.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “av.exe” /START “firefox.exe” -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “av.exe” /START “iexplore.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = “1″
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallOverride” = “1″
No comments:
Post a Comment