Home Malware Programs Rogue Anti-Spyware Programs AntiVirXP08

AntiVirXP08

Posted: August 29, 2008

AntiVirXP08, also known as Anti Vir XP 08, AntivirusXP2008 or Antivirus XP 2008, is a rogue anti-spyware program and clone of XP Antivirus and WinAntivirusPro. AntiVirXP08 may install in your computer system by a Trojan Zlob found on a fake video codec installation or you may have downloaded it from a rogue website (thinking it would get rid of your spyware infections). Once Zlob is installed, it may generate fake popups and imaginary notifications "informing" you about supposed spyware infections. These rogue messages will try to trick you into buying AntiVirXP08's "licensed" program to remove the imaginary threats.

If you click on any of the links provided you may be redirected to rogue websites that promotes AntiVirXP08 as a legitimate software. Moreover, AntiVirXP08 may use its fake computer scanner, emulate a system scan and display a list of spyware supposedly found in your computer system.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 AntiVirXP08.exe
    2 AntiVirXP08.lnk
    3 Antvrs.exe
    4 MFC71.dll
    5 MFC71ENU.dll
    6 msvcp71.dll
    7 shlwapi.dll
    8 Uninstall Antivirus.lnk
    9 Uninstall AntiVirXP08.lnk
    10 wininet.dll

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\AntivirusHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"Antivirus" = "%ProgramFiles%\AntiVirXP08\Antvrs.exe"HKEY_LOCAL_MACHINE\SOFTWARE\Antivirus

One Comment

  • Ardith Reveles says:
    February 18, 2012 at 1:53 pm

    Thank you for posting such information. Though I personally purchased a legitimate software, I understand how easy it may be to fall into such a trap, especially for an average computer user. It is a clever way, since Privacy Protection seems just like most professional programs. It even performs a fictitious scan, which makes it even harder for the regular user to suspect that this program is actually a fraud. Besides this particular program, there are also other "security applications" that use the same approach. Therefore, it is vital to google before downloading any "security program", and search for different reviews, which help to make a well-informed decision.

Loading...