XP Antimalware 2011
XP Antimalware 2011 is a fake anti-spyware application that spreads via Trojans. When inside a machine it will create a start-up registry entry and cause the internet browser to be frequently redirected to malicious websites. Then XP Antimalware 2011 will run a fake system scan which will report the detection of numerous malware. It will also display several bogus security alerts and pop-up warnings to further alarm a victim and prompt him/her into paying for the full version of XP Antimalware 2011 to remove the detected malware. The actual malware is XP Antimalware 2011 and it should be removed as soon as possible.
File System Details
XP Antimalware 2011 may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %UserProfile%\AppData\Local\pw.exe | |
| 2. | %UserProfile%\Local Settings\Application Data\MSASCui.exe | |
| 3. | %UserProfile%\Local Settings\Application Data\pw.exe | |
| 4. | %UserProfile%\AppData\Local\MSASCui.exe | |
| 5. | %UserProfile%\AppData\Local\opRSK | |
| 6. | %UserProfile%\Local Settings\Application Data\opRSK |
Registry Details
XP Antimalware 2011 may create the following registry entry or registry entries:
[HKEY_CLASSES_ROOT\.exe\shell\open\command]
"Content Type"="application/x-msdownload"
[HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command]
@="exefile"
[HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command]
[HKEY_CLASSES_ROOT\.exe]
[HKEY_CLASSES_ROOT\secfile]
