In my travels around the WEB I have noticed that people seem to not make use of the information that is there. I have been asked to make a list of software that is known to be a problem. So here goes:
Antivirus 2008 XP DO NOT DOWNLOAD This is spyware! Antivirus XP 2008 usually comes up after you have installed a video codec or software patch that came with Trojan, malware and virus. All of these variants are from the same virus family and they are created to make our life miserable. In short, Antivirus XP 2008 normally generates fake and misleading system popup error messages so end-users will be tricked into buying XP Antivirus 2008, Antivirus 2008 or Vista Antivirus 2008. The form of the trick is a client program that establishes a connection to a system on the web to get your money.
It is very important to remove all the components of of the XP Antivirus 2008 and all the malware and trojans that might have come bundle with (such as zlob.trojan, trojan.vundo an.d Trojan.Downloader). To effectively remove XP Antivirus 2008.
If you are faint of heart or have difficulty following step by step instructions. Do not try this. Print a copy of it and take it to your local shop and have them do the procedure for you.
Unregister the .dll files in Windows XP or Vista.
- From Start –> Run, type “cmd” then click on Open.
- Type “regsvr32 /u filename.dll” where “filename” is the name of the file that you like to unregister.
Please keep in mind that this involves system modification and can be highly risky. It’s always recommended to keep a system backup handy, in case things go wrong.
Unregister XP Antivirus 2008 DLL Files:
MFC71.dll
MFC71ENU.DLL
msvcp71.dll
msvcr71.dll
shlwapi.dll
wininet.dll
Stop XP Antivirus 2008 Processes
The easiest yet most efficient way to accomplish this is to use the built-in Task Manager in Windows XP or Vista. Here’s how you do it:
- Press “Alt+Ctrl+Delete“, then click on “Task Manager“. You can also launch the Task Manager instantly if you press Ctrl + Shift + ESC simultaneously. This is much easier than accessing it from Ctrl + Alt + Delete or the taskbar. It works for both Windows XP or Windows Vista.
- Select the process that you want to stop, then click on “End Process“.
It’s advised not to stop a system process. Stopping a system process can cause the computer to hang or freeze up.
These are the processes to stop:
vav.exe
XPAntivirus.exe
XPAntivirusUpdate.exe
xpa.exe
xpa2008.exe
braviax.exe
Next find and delete the following files:
xpa.exe
vav.exe
xpa2008.exe
xpa_2008.exe
XPAntivirus.exe
braviax.exe
XPAntivirusUpdate.exe
XPAntivirus.lnk
Uninstall XPAntivirus.lnk
XPAntivirus on the Web.lnk
XP Antivirus 2008.lnk
Uninstall XP Antivirus 2008.lnk
MFC71.dll
MFC71ENU.DLL
msvcp71.dll
msvcr71.dll
shlwapi.dll
wininet.dll
mfc71.dll
mfc71enu.dll
msvcp71.dll
antivirusxp2008installer.exe
rhc7nsj0e57c.exe
%common_desktopdirectory%\antivirus xp 2008.lnk
%common_programs%\antivirus xp 2008.lnk
%common_programs%\antivirus xp 2008\antivirus xp 2008.lnk
%common_programs%\antivirus xp 2008\how to register antivirus xp 2008.lnk
%common_programs%\antivirus xp 2008\license agreement.lnk
%common_programs%\antivirus xp 2008\register antivirus xp 2008.lnk
%common_programs%\antivirus xp 2008\uninstall.lnk
%profile%\application data\microsoft\internet explorer\quick launch\antivirus xp 2008.lnk
%program_files%\rhc7nsj0e57c\database.dat
%program_files%\rhc7nsj0e57c\license.txt
%program_files%\rhc7nsj0e57c\uninstall.exe
%program_files%\rhc7nsj0e57c\msvcr71.dll
%program_files%\rhc7nsj0e57c\rhc7nsj0e57c.exe
%program_files%\rhc7nsj0e57c\rhc7nsj0e57c.exe.local
antivirusxp2008installer.exe
%program_files%\rhc7nsj0e57c\uninstall.exe
%program_files%\rhc7nsj0e57c\rhc7nsj0e57c.exe
%program_files%\rhc7nsj0e57c\mfc71.dll
%program_files%\rhc7nsj0e57c\msvcr71.dll
%program_files%\rhc7nsj0e57c\msvcp71.dll
%program_files%\rhc7nsj0e57c\mfc71enu.dll
Last Step is the most dangerous! WARNING!
Editing registry keys can be very complicated and highly risky. Please do NOT try this unless you are absolutely positive that you will not mess up the system, and as always, it’s highly recommended that you do a backup of the registry (or whole system) before making any modifications.
Since it would take hours to talk about the registry, I am just going through the very basic steps. You can always refer to the Microsoft website or books for full details. These are the most common steps you might need to know for basic troubleshooting:
For Windows XP:
- In Windows XP, from Start, and then click on Run.
- Type “regedit“, then click on OK.
- Now it opens the Registry Editor.
- You can easily navigate through the subkey if you know what you are looking for. Or, you can press “Ctrl + F” to locate the subkey that contains the value you want to edit. (F3 to Find Next)
For Windows Vista:
- From Start, then type “regedit“.
- Click on “regedit” on the search result to open the registry editor in Windows Vista.
- Step 3 & 4 are the same as Windows XP (see above).
That’s all you need to know for basic editing such as removing spyware or troubleshooting a basic Windows problem.
Remove XP Antivirus 2008 Registry Values:
HKEY_USERS\Software\XP antivirus
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run smrhc7nsj0e57c
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\rhc7nsj0e57c
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\rhc7nsj0e57c displayname
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\rhc7nsj0e57c uninstallstring
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c advid
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c automaticallyupdates
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c backgroundscan
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c backgroundscantimeout
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c databaseversion
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c daysinterval
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c domain
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c engineversion
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c guiversion
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c installdir
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c minimizeonstart
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c programversion
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c proxyname
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c proxyport
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c registrationdiscurl
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run smrhc7nsj0e57c
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c registrationurl
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c scandepth
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c scanpriority
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c scansystemonstartup
HKEY_LOCAL_MACHINE\software\rhc7nsj0e57c softid
No comments yet
Comments feed for this article