Home / Spyware Encyclopedia / Fake Anti Spyware.AntiMalware2009 << Back

Recommendation to Automatically remove Fake Anti Spyware.AntiMalware2009


Our products can remove Fake Anti Spyware.AntiMalware2009 and thousands of other Virus and Spyware automatically and instantly.

Fake Anti Spyware.AntiMalware2009 Details


  • Category Fake Anti Spyware
  • Discovered 9/30/2008 11:50:50 AM
  • Modified 4/9/2020 5:43:03 PM
  • Threat Level Critical
  • Category Description
    These are programs which look like any legitimate program but usually download without users permission, entice users into buying them by showing fake results to improve users PC performance. They may also download spyware and other unwanted programs.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
LPHCNV8J0EA8A.EXE 58368  e2950629876714c7b801170907007e26 
MIRCOS.DLL 28672  e20d09c82d15c6410bc3eb486f137fca 
3474A8C2.DLL 216020  c77e40f03836c308d3d1708594526768 
LPHCNV8J0EA8A.EXE 203776  aca8b3bf12af0b652af5997db629bdc5 
PSYCHE.EXE 130560  ab07f34b03ee8f2f08cfd324e5b0c3be 
LPHCNV8J0EA8A.EXE 186368  9d2143c4741b8d054a9e65a31761554c 
MIRCOS.DLL 28672  4ce0dd96cedd9bce0102411c0ca543b6 
rhcjv8j0ea8a.exe 1089536  3293e81bc6125df028deffc800b5ed0e 
D4F876.SYS 5504  3149f8354e37b748ccc217f98808b1d9 
LPHCNV8J0EA8A.EXE 186880  2ce17613369e44fa0d43e0dd24cfd2e2 

The following Registry Entries were created:
..\Software\Microsoft\\"kr_done1"\"1223637702"
..\Software\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"\"%WIN.SYS32%\RINGTTE.DLL"
..\System\CurrentControlSet\Services\8882FA1\(Default)
..\Software\Classes\Clsid\{4EFDDEBE-303C-4D1A-8C9E-E4F215C43651}\(Default)
..\Software\Classes\Clsid\{D91BC61E-7D78-4A2A-A336-7B97E8E52F0B}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"361KARY"\"%WIN.SYS32%\WOAUOLT.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"INRHCJV8J0EA8A"\"%DAS.AU.LS.TEMP-INET-FILES%\CONTENT.IE5\ONPUVJK6\ANTIMALWARE2009INSTALLER[1].EXE /CR=D41D8CD98F00B204E9800998ECF8427E"
..\Software\Microsoft\Windows\CurrentVersion\Explorer\SHELLEXECUTEHOOKS\"{D91BC61E-7D78-4A2A-A336-7B97E8E52F0B}"
..\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\"SVLHSUTM.DLL"\"{2CB77746-8ECC-40CA-8217-10CA8BE5EFC8}"
..\System\CurrentControlSet\Services\D4F876\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.