Tuesday, May 29, 2012

antiviruspro2010

Type: rogue

Alias: antivirus pro 2010, antiviruspro_2010, troj_renos.bdp

Company: XP AntiSpyware 2009.com

Description: AntivirusPro2010 is a rogue anti-spyware. It may give exaggerated threat reports on the compromised computer then ask the user to purchase a registered version to remove those reported threats. AntivirusPro2010 is also known as Antivirus Pro 2010.

antiviruspro2010

Warning: A spy-ware removal software uses certain rules for detection and removal of spy-ware, malware, ad-ware and trojan from your PC. ScanSpyware.Net provides this information "AS IS" without warranty of any kind. Your use of this information is at your own risk. We strictly restrict you from using this information if you are not sure about what you are doing.

Recommendation 1: We recommend you to take a backup of Windows Registry before following these manual spyware removal instructions to fix your PC. You can do this by either creating a Restore Point using System Restore Utility in Windows System Tools or using the Export feature of regedit.exe.

Recommendation 2: By trying to remove spy-ware from your PC without getting any help from an expert may produce unexpected results. In case you suspect that your PC is infected with some spy-ware, ad-ware, malware or virus, just follow the instructions available at http://how-to.scanspyware.net/diagnose-and-fix.html to contact us for abolutely FREE help.

Directories

C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010
C:\Documents and Settings\user-account-name\Start Menu\Programs\Antivirus Pro 2010
C:\Program Files\AntivirusPro_2010
C:\Program Files\Antivirus Pro 2010
C:\Program Files\AntivirusPro_2010\data
C:\Program Files\Antivirus Pro 2010\data
C:\Program Files\AntivirusPro_2010\Microsoft.VC80.CRT

Files

C:\Documents and Settings\user-account-name\Local Settings\svcst.exe
C:\Documents and Settings\user-account-name\Local Settings\seres.exe
C:\Windows\akonuxak.dat
C:\Windows\eqake.bat
C:\Windows\isuni.vbs
C:\Windows\lozarer.inf
C:\Windows\owah.pif
C:\Windows\yfife.dl
C:\Documents and Settings\user-account-name\Local Settings\doweqomob.pif
C:\Documents and Settings\user-account-name\Local Settings\ereqiw.lib
C:\Documents and Settings\user-account-name\Local Settings\ewina.pif
C:\Documents and Settings\user-account-name\Local Settings\gopocis.sys
C:\Documents and Settings\user-account-name\Local Settings\gotekufos.com
C:\Documents and Settings\user-account-name\Local Settings\lizkavd.exe
%quicklaunchdir%\AntivirusPro_2010.lnk
%quicklaunchdir%\Antivirus Pro 2010.lnk
C:\Documents and Settings\user-account-name\Desktop\AntivirusPro_2010.lnk
C:\Documents and Settings\user-account-name\Desktop\Antivirus Pro 2010.lnk
C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010\Uninstall.lnk
C:\Program Files\AntivirusPro_2010\wscui.cpl
C:\Program Files\AntivirusPro_2010\AVEngn.dll
C:\Program Files\AntivirusPro_2010\htmlayout.dll
C:\Program Files\AntivirusPro_2010\Uninstall.exe
C:\Program Files\AntivirusPro_2010\pthreadVC2.dll
C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010\Uninstall.lnk
C:\Documents and Settings\user-account-name\Start Menu\Programs\AntivirusPro_2010\AntivirusPro_2010.lnk
C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.cfg
C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.exe
antiviruspro_2010.lnk (md5:a1ba703dd710d1e9df01ae...)
antiviruspro_2010.exe (md5:a4b6177b5bf235a170c36b...)
C:\Program Files\AntivirusPro_2010\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest
C:\Program Files\AntivirusPro_2010\Microsoft.VC80.CRT\msvcm80.dll
C:\Program Files\AntivirusPro_2010\Microsoft.VC80.CRT\msvcr80.dll
C:\Program Files\AntivirusPro_2010\Microsoft.VC80.CRT\msvcp80.dll
C:\Program Files\Common Files\pota.inf
C:\Program Files\Common Files\sepoxexij.scr
C:\Program Files\Common Files\pota.inf

Registry Keys

HKEY_LOCAL_MACHINE\SOFTWARE\AntivirusPro_2010
HKEY_LOCAL_MACHINE\SOFTWARE\Antivirus Pro 2010
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntivirusPro_2010
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antivirus Pro 2010

Registry Values

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Antivirus Pro 2010
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\mserv

- backdoor.dirtjump.aBackDoor.DirtJump.A is a backdoor worm that spreads through network shares and allows attackers to access and gives full control over infected computer.
- trojan.stratork.aTrojan.Stratork.A is a Trojan horse that modifies settings in Internet Explorer. It may also display popup advertisements. It also modifies the startup settings in registry in order to run se.dll automatically each time a user logs in.
- backdoor.bifrose.fBackdoor.Bifrose.F is a chinese Trojan that allows hackers to gain access and full control over the infected computers.
- trojan.jorik.abTrojan.Jorik.AB is a Trojan. It downloads malicious files from web and sends users personal information to predefined address.
- obfuscator.kObfuscator.K is a trojan that allows hackers to access and gives full control over infected computer.
- taterf.daTaterf.DA is a worm that spreads through network shares and allows attackers to access and control over infected computers.
- adware.dualvaccineAdware.DisableKey is an Adware program that displays advertisements on your PC.

antiviruspro2010

ACROSS THE GLOBE

ACROSS THE GLOBE

IN United States

FROM United States