MSA Security Center

MSA Security Center Description

MSA Security Center is a rogue malware application which fraudulently presents itself as a security suite program. MSA Security Center can install itself onto the user's PC without their knowledge or consent. MSA Security Center comes installed and bundled with infected programs and Trojans. MSA Security Center will generate fake pop-up ads and alerts in order to persuade the user into purchasing the full paid version of the rogue application. MSA Security Center can also cause a slow down in the PC's performance.

Technical Information

File System Details

MSA Security Center creates the following file(s):
# File Name Detection Count
1 %Windir%\sysutils\sysutil_s.exe N/A
2 %Windir%\sysutils\sysutil.exe N/A
3 %Windir%\iebho.dll N/A
4 %Windir%\sysutils\winsystip.exe N/A
5 %Windir%\sysutils\uninstall.exe N/A
6 %Windir%\sysutils\sounds\02.wav N/A
7 %Windir%\sysutils\warning\alertpage.jpg N/A
8 %Windir%\sysutils\sounds\01.wav N/A
9 %Windir%\sysutils\warning\spacer.gif N/A
10 %Windir%\sysutils\settings.ini N/A
11 %Windir%\sysutils\sounds\03.wav N/A
12 %Windir%\sysutils\warning\warningpage.html N/A

Registry Details

MSA Security Center creates the following registry entry or registry entries:
RegistryKey
HKEY_CLASSES_ROOT\clsid\{f3642b57-3ea8-4eea-a643-9de138381a57}\inprocserver32 threadingmodel
HKEY_CLASSES_ROOT\clsid\{f3642b57-3ea8-4eea-a643-9de138381a57}\inprocserver32
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{f3642b57-3ea8-4eea-a643-9de138381a57}
HKEY_CLASSES_ROOT\clsid\{f3642b57-3ea8-4eea-a643-9de138381a57}
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run MSASecurityCenter