System Security 4.52

Descrição do System Security 4.52

O System Security 4.52 é um novo aplicativo anti-spyware nocivo, que vem da família do System Security, System Security 2009 e System Security 4.51. Normalmente ele é baixado para um computador, quando um falso codec de vídeo é instalado manualmente por um usuário ingênuo. Uma vez ativo, ele anula todos os processos .exe , deixando o sistema sem processos plenamente operacionais e funcionais. Junto com uma falsa varredura, que exibe resultados de infecção fictícios e, por vezes exagerados, o usuário é aconselhado a comprar e baixar o falso removedor de spyware do System Security 4.52, a fim de combater essas ameaças.

Informação Técnica

Detalhes Sobre os Arquivos do Sistema

System Security 4.52 cria o(s) seguinte(s) arquivo(s):
# Nome do arquivo Contagem da Detecção
1 549344438.exe N/A
2 1003720520.exe N/A
3 TubePlayer.ver.6.exe N/A
4 mupd1_2_1165664.exe N/A
5 ldycgadzmr.dll N/A
6 19329203.exe N/A
7 281681216.exe N/A
8 bnmio.exe N/A
9 iii[1].exe N/A
10 ParisHilton[1].exe N/A
11 card[1].exe N/A
12 AdwarePro_Setup[1].exe N/A
13 1[1].exe N/A
14 Omahonafazeq.dll N/A
15 adv111[1].exe N/A
16 ieupdates.exe N/A
17 loader[1].exe N/A
18 i386si.sys N/A
19 uxeqipuzimocin.dll N/A
20 winlogin.exe N/A
21 imod3.dll N/A
22 swapdm.dll N/A
23 431192516.exe N/A
24 931330021.exe N/A
25 432632312.exe N/A
26 438978017.exe N/A
27 2030350728.exe N/A
28 1431998300.exe N/A
29 1767930182.exe N/A
30 1550536869.exe N/A
31 2029503323.exe N/A
32 375534146.exe N/A
33 370382475.exe N/A
34 25238076.exe N/A
35 1690486455.exe N/A
36 1255330437.exe N/A
37 01560265.exe N/A
38 500153984.exe N/A
39 13496218.exe N/A
40 06837430.exe N/A
41 90188702.exe N/A
42 13059684.exe N/A
43 17236094.exe N/A
44 14865934.exe N/A
45 16846714.exe N/A
46 18058594.exe N/A
47 99363896.exe N/A
48 10639534.exe N/A
49 19916874.exe N/A
50 14147964.exe N/A
51 14945624.exe N/A
52 16723754.exe N/A
53 90249366.exe N/A
54 936453029.exe N/A
55 1714292029.exe N/A
56 AdobeFlash[1].exe N/A
57 torbjne.exe N/A
58 iemodule.dll N/A
59 iehelper.exe N/A
60 install[1].exe N/A
61 ~tmpa.exe N/A
62 vamsoft.exe N/A
63 winafoe.exe N/A
64 TckBX673.exe N/A
65 AdwarePro.exe N/A
66 StartApp.exe N/A
67 usp10.dll N/A
68 gr[2].exe N/A
69 SetupAntivirusXP[1].exe N/A
70 Test.exe N/A
71 Hyves_Browser_Instalation.exe N/A
72 1462403437.exe N/A
73 oqarib.dll N/A
74 vvunbwrhxa.exe N/A
75 svchost.exe N/A
76 800990911.exe N/A
77 240844061.exe N/A
78 3DF7076F.exe N/A
79 1591300478.exe N/A
80 1977868703.exe N/A
81 564DB681.exe N/A
82 1940874419.exe N/A
83 695276073.exe N/A
84 498278020.exe N/A
85 1743310514.exe N/A
86 202150970.exe N/A
87 801085450.exe N/A
88 1354455340.exe N/A
89 2113272685.exe N/A
90 554845319.exe N/A
91 00607031.exe N/A
92 52796787.exe N/A
93 14610250.exe N/A
94 03380828.exe N/A
95 93069676.exe N/A
96 97246086.exe N/A
97 94875926.exe N/A
98 99388276.exe N/A
99 18563124.exe N/A
100 91457186.exe N/A
101 90649526.exe N/A
102 93789346.exe N/A
103 94157956.exe N/A
104 94955616.exe N/A
105 96733746.exe N/A
106 19815934.exe N/A
107 SystemSecurity.exe N/A
108 788573529.exe N/A
109 adobe_flash[1].exe N/A
110 cogad.exe N/A
111 winscenter.exe N/A
112 iehelpers[1].exe N/A
113 ayscjcts.exe N/A
114 setupapi.dll N/A
115 bd3q0qix.exe N/A
116 load[1].exe N/A
117 winkfmc.exe N/A
118 ert51791.exe N/A
119 SSEngine.dll N/A
120 ntos.exe N/A
121 new23[1].exe N/A
122 new26[1].exe N/A
123 28823330.exe N/A
124 Hyves_Browser.exe N/A
125 9179499.exe N/A
126 cvucujahoza.dll N/A
127 AntivirusXP.exe N/A
128 372561511.exe N/A
129 1610380076.exe N/A
130 172939276.exe N/A
131 973260134.exe N/A
132 613622941.exe N/A
133 1986350760.exe N/A
134 install[2].exe N/A
135 1947101902.exe N/A
136 650526885.exe N/A
137 1327825314.exe N/A
138 14894324.exe N/A
139 1573468717.exe N/A
140 2084498445.exe N/A
141 380679599.exe N/A
142 1725032906.exe N/A
143 1126514300.exe N/A
144 02686578.exe N/A
145 96484328.exe N/A
146 03326093.exe N/A
147 29192498.exe N/A
148 00184705.exe N/A
149 11120624.exe N/A
150 699415262.exe N/A
151 19378284.exe N/A
152 96856706.exe N/A
153 11447194.exe N/A
154 19353904.exe N/A
155 13779354.exe N/A
156 99926866.exe N/A
157 17722954.exe N/A
158 16692344.exe N/A
159 99825926.exe N/A
160 10239374.exe N/A

Detalhes sobre o Registro

System Security 4.52 cria a seguinte entrada de registro ou entradas de registro:
RegistryKey
Microsoft\Windows\CurrentVersion\Run\kxva
Adware Pro
AntivirusXP
MICROSOFT\WINDOWS\CURRENTVERSION\RUN\AntivirusXP.exe
Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\System Security
Microsoft\Windows\CurrentVersion\Uninstall\SystemSecurity2009
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\cogad
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 11120624
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 699415262
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19378284
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 96856706
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 11447194
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19353904
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 13779354
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99926866
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 17722954
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16723754
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19815934
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 90249366
Microsoft\Windows\CurrentVersion\Run\281681216
Microsoft\Windows\CurrentVersion\Run\AdwareProMFCT
Microsoft\Windows\CurrentVersion\Run\Mmexofumutokara
Microsoft\Windows\CurrentVersion\Uninstall\Hyves Browser
Microsoft\Windows\CurrentVersion\Run\973260134
Microsoft\Windows\CurrentVersion\Run\370382475
Microsoft\Windows\CurrentVersion\Run\00206953
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 13059684
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 17236094
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14865934
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16846714
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 18058594
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99363896
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 10639534
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19916874
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94157956
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94955616
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16692344
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 10239374
Microsoft\Windows\CurrentVersion\Run\SystemSecurity
Microsoft\Windows\CurrentVersion\Uninstall\AdwarePro
Microsoft\Windows\CurrentVersion\App Paths\AdwarePro.exe
Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AntivirusXP
Microsoft\Windows\CurrentVersion\Run\359F5809-00B8-4455-A73A-9EA62A51101B
Microsoft\Windows\CurrentVersion\Run\1690486455
Microsoft\Windows\CurrentVersion\Run\02215359
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 93069676
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 97246086
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94875926
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99388276
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 18563124
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 91457186
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 90649526
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 93789346
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14147964
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14945624
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 96733746
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99825926