Archive for July, 2009

HomeAntivirus2010.exe is main file of Home Antivirus 2010

Sunday, July 19th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: HomeAntivirus2010
Filename: HomeAntivirus2010.exe
Registry key:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | Home Antivirus 2010

Command: C:\Program Files\HomeAntivirus2010\HomeAntivirus2010.exe
Startup Type: HKLM->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKLM\..\Run: [Home Antivirus 2010] “C:\Program Files\HomeAntivirus2010\HomeAntivirus2010.exe” /hide

Description: main file of Home Antivirus 2010 (rogue antispyware program)

How to remove: use these Home Antivirus 2010 removal instructions.

MalwareRemoval.exe is main file of Fake Microsoft Windows Malicious Software Removal Tool

Thursday, July 16th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: MalwareRemoval
Filename: MalwareRemoval.exe
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | MalwareRemoval

Command: C:\Program Files\MalwareRemoval\MalwareRemoval.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [MalwareRemoval] C:\Program Files\MalwareRemoval\MalwareRemoval.exe

Description: main file of Fake Microsoft Windows Malicious Software Removal Tool

How to remove: use Malwarebytes Antimalware

AntiVirus_Pro.exe is main file of AntiVirusPro

Thursday, July 16th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: AntiVirus_Pro
Filename: AntiVirus_Pro.exe
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | AntiVirus_ProNET

Command: C:\Program Files\AntiVirus_Pro\AntiVirus_Pro.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [AntiVirus_ProNET] C:\Program Files\AntiVirus_Pro\AntiVirus_Pro.exe

Description: main file of AntiVirusPro (fake antivirus software)

How to remove: use these AntiVirusPro removal instructions.

PC_Security2009.exe is a main file of PC Security 2009

Sunday, July 12th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: PC_Security2009
Filename: PC_Security2009.exe
Registry key:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | PC Security 2009

Command: C:\Program Files\PC_Security2009\PC_Security2009.exe
Startup Type: HKLM->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKLM\..\Run: [PC Security 2009] “C:\Program Files\PC_Security2009\PC_Security2009.exe” /hide

Description: main file of PC Security 2009 (rogue antispyware program)

How to remove: use these PC Security 2009 removal instructions.

WiniFighterSvc.exe is component of WiniFighter

Friday, July 10th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: WiniFighterSvc
Filename: WiniFighterSvc.exe
Registry key:

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\winifightersvc
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\winifightersvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\winifightersvc

Command: C:\Program Files\WiniFighter Software\WiniFighter\WiniFighterSvc.exe
Startup Type: Service
HijackThis Category: O23
HijackThis Line:

O23 – Service: WiniFighter Security Service (WiniFighterSvc) – Unknown owner – C:\Program Files\WiniFighter Software\WiniFighter\WiniFighterSvc.exe

How to remove: use these WiniFighter removal instructions.

WiniFighter.exe is main file of WiniFighter

Friday, July 10th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: WiniFighter
Filename: WiniFighter.exe
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | WiniFighter

Command: C:\Program Files\WiniFighter Software\WiniFighter\WiniFighter.exe -min
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [WiniFighter] C:\Program Files\WiniFighter Software\WiniFighter\WiniFighter.exe -min

Description: main file of WiniFighter (rogue antispyware program)

How to remove: use these WiniFighter removal instructions.

smrtdefp.exe is main file of Smart Defender PRO

Thursday, July 9th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: smrtdefp
Filename: smrtdefp.exe
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | Smart Defender PRO

Command: %appdata%\Smart Defender PRO\smrtdefp.exe
Startup Type: HKCU
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [Smart Defender PRO] %appdata%\Smart Defender PRO\smrtdefp.exe

Description: main file of Smart Defender PRO (rogue antispyware software)

How to remove: use these Smart Defender PRO removal instructions

systemdb.exe is main file of Barracuda Antivirus

Tuesday, July 7th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: systemdb
Filename: systemdb.exe
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | system

Command: C:\Windows\systemdb.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [system] C:\Windows\systemdb.exe

Description: main file of Barracuda Antivirus (rogue antispyware program)

How to remove: use Malwarebytes Antimalware

WIf5bc.exe – is main file of Windows Security Suite

Tuesday, July 7th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: WIf5bc
Filename: WIf5bc.exe (uses random names)
Registry key:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | Windows Security Suite

Command: C:\Documents and Settings\All Users\Application Data\f5bc4e8\WIf5bc.exe
Startup Type: HKCU->Run
HijackThis Category: O4
HijackThis Line:

O4 – HKCU\..\Run: [Windows Security Suite] “C:\Documents and Settings\All Users\Application Data\f5bc4e8\WIf5bc.exe” /s /d

Description: main file of Windows Security Suite (rogue antispyware program)

How to remove: use these Windows Security Suite removal instructions

ddrawx.dll is component of USAntiSpy

Saturday, July 4th, 2009

This is a harmful program.

remove It is a component of malware or spyware, you should immediately remove it using an antivirus and antispyware program.
If that does not help, then ask us for help in the Spyware removal forum.

Name: ddrawx
Filename: ddrawx.dll
Registry key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0B014B81-4E12-46F9-806F-55867AF8FD3C}

Command: C:\WINDOWS\system32\ddrawx.dll
CLSID: {0B014B81-4E12-46F9-806F-55867AF8FD3C}
Startup Type: BHO
HijackThis Category: O2
HijackThis Line:

O2 – BHO: & – {0B014B81-4E12-46F9-806F-55867AF8FD3C} – C:\WINDOWS\system32\ddrawx.dll

Description: BHO component of USAntiSpy (rogue antispyware program)

How to remove: use Malwarebytes Antimalware