System Security 4.52

System Security 4.52 Description

System Security 4.52 is a new rogue anti-spyware application emanating from the same family as System Security, System Security 2009 and System Security 4.51. Usually System Security 4.52 is downloaded onto a computer once a fake video codec is installed manually by an unknowing user. Once active, System Security 4.52 kills all .exe processes, leaving the system without fully operational and functional processes. Along with fake scan reports that display fictitious and sometimes grossly exaggerated infection results, the user is prompted to purchase and download the fake spyware remover System Security 4.52 in order to combat these threats.

Technical Information

File System Details

System Security 4.52 creates the following file(s):
# File Name Detection Count
1 549344438.exe N/A
2 1003720520.exe N/A
3 TubePlayer.ver.6.exe N/A
4 mupd1_2_1165664.exe N/A
5 ldycgadzmr.dll N/A
6 19329203.exe N/A
7 281681216.exe N/A
8 bnmio.exe N/A
9 iii[1].exe N/A
10 ParisHilton[1].exe N/A
11 card[1].exe N/A
12 AdwarePro_Setup[1].exe N/A
13 1[1].exe N/A
14 Omahonafazeq.dll N/A
15 adv111[1].exe N/A
16 ieupdates.exe N/A
17 loader[1].exe N/A
18 i386si.sys N/A
19 uxeqipuzimocin.dll N/A
20 winlogin.exe N/A
21 imod3.dll N/A
22 swapdm.dll N/A
23 431192516.exe N/A
24 931330021.exe N/A
25 432632312.exe N/A
26 438978017.exe N/A
27 2030350728.exe N/A
28 1431998300.exe N/A
29 1767930182.exe N/A
30 1550536869.exe N/A
31 2029503323.exe N/A
32 375534146.exe N/A
33 370382475.exe N/A
34 25238076.exe N/A
35 1690486455.exe N/A
36 1255330437.exe N/A
37 01560265.exe N/A
38 500153984.exe N/A
39 13496218.exe N/A
40 06837430.exe N/A
41 90188702.exe N/A
42 13059684.exe N/A
43 17236094.exe N/A
44 14865934.exe N/A
45 16846714.exe N/A
46 18058594.exe N/A
47 99363896.exe N/A
48 10639534.exe N/A
49 19916874.exe N/A
50 14147964.exe N/A
51 14945624.exe N/A
52 16723754.exe N/A
53 90249366.exe N/A
54 936453029.exe N/A
55 1714292029.exe N/A
56 AdobeFlash[1].exe N/A
57 torbjne.exe N/A
58 iemodule.dll N/A
59 iehelper.exe N/A
60 install[1].exe N/A
61 ~tmpa.exe N/A
62 vamsoft.exe N/A
63 winafoe.exe N/A
64 TckBX673.exe N/A
65 AdwarePro.exe N/A
66 StartApp.exe N/A
67 usp10.dll N/A
68 gr[2].exe N/A
69 SetupAntivirusXP[1].exe N/A
70 Test.exe N/A
71 Hyves_Browser_Instalation.exe N/A
72 1462403437.exe N/A
73 oqarib.dll N/A
74 vvunbwrhxa.exe N/A
75 svchost.exe N/A
76 800990911.exe N/A
77 240844061.exe N/A
78 3DF7076F.exe N/A
79 1591300478.exe N/A
80 1977868703.exe N/A
81 564DB681.exe N/A
82 1940874419.exe N/A
83 695276073.exe N/A
84 498278020.exe N/A
85 1743310514.exe N/A
86 202150970.exe N/A
87 801085450.exe N/A
88 1354455340.exe N/A
89 2113272685.exe N/A
90 554845319.exe N/A
91 00607031.exe N/A
92 52796787.exe N/A
93 14610250.exe N/A
94 03380828.exe N/A
95 93069676.exe N/A
96 97246086.exe N/A
97 94875926.exe N/A
98 99388276.exe N/A
99 18563124.exe N/A
100 91457186.exe N/A
101 90649526.exe N/A
102 93789346.exe N/A
103 94157956.exe N/A
104 94955616.exe N/A
105 96733746.exe N/A
106 19815934.exe N/A
107 SystemSecurity.exe N/A
108 788573529.exe N/A
109 adobe_flash[1].exe N/A
110 cogad.exe N/A
111 winscenter.exe N/A
112 iehelpers[1].exe N/A
113 ayscjcts.exe N/A
114 setupapi.dll N/A
115 bd3q0qix.exe N/A
116 load[1].exe N/A
117 winkfmc.exe N/A
118 ert51791.exe N/A
119 SSEngine.dll N/A
120 ntos.exe N/A
121 new23[1].exe N/A
122 new26[1].exe N/A
123 28823330.exe N/A
124 Hyves_Browser.exe N/A
125 9179499.exe N/A
126 cvucujahoza.dll N/A
127 AntivirusXP.exe N/A
128 372561511.exe N/A
129 1610380076.exe N/A
130 172939276.exe N/A
131 973260134.exe N/A
132 613622941.exe N/A
133 1986350760.exe N/A
134 install[2].exe N/A
135 1947101902.exe N/A
136 650526885.exe N/A
137 1327825314.exe N/A
138 14894324.exe N/A
139 1573468717.exe N/A
140 2084498445.exe N/A
141 380679599.exe N/A
142 1725032906.exe N/A
143 1126514300.exe N/A
144 02686578.exe N/A
145 96484328.exe N/A
146 03326093.exe N/A
147 29192498.exe N/A
148 00184705.exe N/A
149 11120624.exe N/A
150 699415262.exe N/A
151 19378284.exe N/A
152 96856706.exe N/A
153 11447194.exe N/A
154 19353904.exe N/A
155 13779354.exe N/A
156 99926866.exe N/A
157 17722954.exe N/A
158 16692344.exe N/A
159 99825926.exe N/A
160 10239374.exe N/A

Registry Details

System Security 4.52 creates the following registry entry or registry entries:
RegistryKey
Microsoft\Windows\CurrentVersion\Run\kxva
Adware Pro
AntivirusXP
MICROSOFT\WINDOWS\CURRENTVERSION\RUN\AntivirusXP.exe
Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\System Security
Microsoft\Windows\CurrentVersion\Uninstall\SystemSecurity2009
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\cogad
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 11120624
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 699415262
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19378284
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 96856706
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 11447194
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19353904
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 13779354
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99926866
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 17722954
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16723754
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19815934
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 90249366
Microsoft\Windows\CurrentVersion\Run\281681216
Microsoft\Windows\CurrentVersion\Run\AdwareProMFCT
Microsoft\Windows\CurrentVersion\Run\Mmexofumutokara
Microsoft\Windows\CurrentVersion\Uninstall\Hyves Browser
Microsoft\Windows\CurrentVersion\Run\973260134
Microsoft\Windows\CurrentVersion\Run\370382475
Microsoft\Windows\CurrentVersion\Run\00206953
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 13059684
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 17236094
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14865934
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16846714
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 18058594
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99363896
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 10639534
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 19916874
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94157956
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94955616
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 16692344
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 10239374
Microsoft\Windows\CurrentVersion\Run\SystemSecurity
Microsoft\Windows\CurrentVersion\Uninstall\AdwarePro
Microsoft\Windows\CurrentVersion\App Paths\AdwarePro.exe
Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AntivirusXP
Microsoft\Windows\CurrentVersion\Run\359F5809-00B8-4455-A73A-9EA62A51101B
Microsoft\Windows\CurrentVersion\Run\1690486455
Microsoft\Windows\CurrentVersion\Run\02215359
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 93069676
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 97246086
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 94875926
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99388276
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 18563124
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 91457186
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 90649526
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 93789346
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14147964
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 14945624
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 96733746
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 99825926