English 
Deutsch
Español
Français
Portuguese
XP Antispyware 2009 XP Antispyware 2009
By
GoldSparrow in Rogue Anti-Spyware Program |
95 views
(No Ratings Yet)
Loading ...
XP Antispyware 2009 Description
XP Antispyware 2009 or Antispyware XP 2009, is a rogue anti-spyware program and family of XP Antivirus 2008 . XP Antispyware 2009 is known to secretly install in the user’s computer system with the help Trojans or the user may have downloaded a fake video codec bundled with a Trojan, malware or virus. Once the user is infected, he/she may receive numerous and deceiving popup messages stating that the user’s computer is infected with spyware. This is a very common tactic used by other rogues to trick users and urge them to purchase the “full” version of the program from a malicious website.
In addition, XP Antispyware 2009 may create “malware” files to later detect them with its fake computer scan. All links provided by XP Antispyware 2009 will most likely redirect users to XP Antispyware 2009’s homepage (XPAntispyware2009.com) to further purchase XP Antispyware 2009’s full version.
XP Antispyware 2009 may launch on every Windows startup.
Type: Rogue AntiSpyware Programs
How Can You Detect XP Antispyware 2009?
XP Antispyware 2009 Technical Report
As new XP Antispyware 2009 details are reported by our customers and findings from our Threat Research Center, we will update this section.
The following XP Antispyware 2009 files with its MD5s were created in the system:
| File Name | File Size | MD5 |
|---|
| XP_AntiSpyware.exe | 420640 | bcb6c350da2a91725be9b00c87d68bd6 |
| XP_AntiSpyware.exe | 813644 | 37cdb5930c4d0f029df306cf38a78795 |
| proas2009.exe | 928768 | d82c13c222b4b3fbb1b2b77884cd111f |
| XP_AntiSpyware.exe | 808646 | 58da43b4103727ddc29dd2d188c57046 |
| Install[1].exe | 76632 | 9c573a7daf0322b0de66d0bdb1f3edf2 |
| AVEngn.dll | 215612 | a118dcd827ea43f260369ed941e68ce2 |
| MSASCui.exe | 184320 | 67271575648ff65dccfd300b06053074 |
XP Antispyware 2009 has typically the following processes in memory:
- antispyware-2009.exe
- setup_100527_3_.exe
- %PROGRAMFILES%\XP_AntiSpyware\XP_AntiSpyware.exe
- XPAntispyware2009.exe
- setup.exe
- XP_AntiSpyware.exe
- %profile%\application data\secure solutions\XPAntispyware2009\as2008xp.exe
- as2008xp.exe
- ntdll64.dll
XP Antispyware 2009 created the following directories, files, paths:
- %UserProfile%\Start Menu\Programs\XP_AntiSpyware
- %ProgramFiles%\XP_AntiSpyware
XP Antispyware 2009 creates the following registry entries:
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009 lid
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009\2.1 installtime
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009 pid
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009\2.1\config
- XP_Antispyware
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009 lgid
- HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run ieupdate
- HKEY_CURRENT_USER\software\secure solutions\XPAntispyware2009\2.1 start counter
Important Article Disclaimer
