Threat Database Rogue Anti-Spyware Program Antivirus XP Hard Disk Repair v9

Antivirus XP Hard Disk Repair v9

By ESGI Advisor in Rogue Anti-Spyware Program

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 6
First Seen: October 14, 2011
Last Seen: October 26, 2020
OS(es) Affected: Windows

ScreenshotAntivirus XP Hard Disk Repair v9 is a ransom Trojan detected as Trojan.MBRlock that pretends to be a genuine security application and uses deceptive methods to mislead credulous computer users into buying its rogue anti-spyware tool. Antivirus XP Hard Disk Repair v9 shows a bogus security alert that claims your PC is infected with Trojan.Agent.ARVP and urges you to purchase its fraudulent software program to delete Trojan.Agent.ARVP. Antivirus XP Hard Disk Repair v9 is a virus itself because it rewrites the Master Boot Record (MBR) and blocks affected PC users from starting Windows. Then, Antivirus XP Hard Disk Repair v9 demands a ransom before the PC system is restored to its initial state. Antivirus XP Hard Disk Repair v9 declares that Trojan.Agent.ARVP was created to delete your files, and if you won't uninstall it will harm your information; To remove Trojan.Agent.ARVP, you will have to buy Antivirus XP Hard Disk Repair v9. Antivirus XP Hard Disk Repair v9 also states that all data on your machine was encoded with a resistant crypto algorithm EAS-256 which you cannot decode by using ordinary means. Antivirus XP Hard Disk Repair v9 declares it is able to repair your computer and decode all your disks. It is strongly advised not to believe anything what Antivirus XP Hard Disk Repair v9 would tell you because it's a lie.

Trojan.Agent.ARVP cannot encode and delete your files as Antivirus XP Hard Disk Repair v9 claims. Antivirus XP Hard Disk Repair v9 says it would generate a HDDkey for each infected PC system according to hardware configuration; however, you will need to pay some money for this. To get a password, you have to fill in the registration form at http://www.antivirusharddiskrepair.ru and provide your HDDKey. Attackers state they will send you the password as quickly as possible. Do not trust any information Antivirus XP Hard Disk Repair v9 gives you because it's all falsified. Never send your HDDKey to allegedly register the license. You should not buy Antivirus XP Hard Disk Repair v9 because it's a malware program which only aims at stealing your money. ESG's malware researchers strongly recommend you to remove Antivirus XP Hard Disk Repair v9, if infected, as early as possible.

File System Details

Antivirus XP Hard Disk Repair v9 may create the following file(s):
# File Name Detections
1. %APPDATA%\temp_sys.exe

Registry Details

Antivirus XP Hard Disk Repair v9 may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon: 'Userinit' = '\userinit.exe, %Documents and Settings%\[UserName]\Application Data\temp_sys.exe'

Trending

Most Viewed

Loading...