1 of 3
Danger level 9
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Installs itself without permissions
  • Connects to the internet without permission
  • Slow internet connection
  • Annoying Pop-up's
  • Slow Computer
Infection Video XP Home Security 2012

XP Home Security 2012

There are many threats facing healthy PCs these days, and the only ways you can protect your PC from XP Home Security 2012 and the like is by investing in a powerful security tool. XP Home Security 2012, a seemingly legitimate security tool is in fact a rubbish rogue antispyware application. It will of course try and convince its victims otherwise, but users are warned against trusting anything XP Home Security 2012 has to say.

XP Home Security 2012 will enter its victims’ PCs by making use of various nefarious tactics, including exploiting system vulnerabilities and susceptibilities and by using established forms of infection including seditious browser hijackers and rubbish online malware scanners. The user will be unaware of the presence of on the system and will find it difficult to get rid of XP Home Security 2012 due to its many subversive ways.

Users infected with XP Home Security 2012 have complained about various annoying symptoms ravaging their PCs. These include being unable to connect to the Internet as well as being unable to launch any type of applications on the system. This is done in an effort by the rogue to prevent the user from downloading or running any application which may be able to detect and remove XP Home Security 2012 from the system. In order to regain complete control of your PC you will need to erase XP Home Security 2012 immediately.

Update:

The rogue removal will be easier if you used these activation codes to “register” the rogue:

9443-077673-5028

This rogue is particularly annoying because right after the installation it blocks every single exe file and you can no longer run your computer. Then there is nothing else left to but to restart your computer. When you do, while it boots press F8 and select to load the Safe Mode with Networking, so that you could download SpyHunter from our website. Then restart again, and load your computer in Normal mode to install SpyHunter. Another way to install the program is to download it on another computer, rename the installer file from installer.exe to installer.com and then transfer the file into a USB flash drive. Plug the drive into the infected computer and use it to install the program.

Once SpyHunter is installed, it will scan your computer and detect the rogue, and kill it.

NOTE: Just because you can no longer see the rogue it does not mean that it doesn’t exist. Perform a full system scan to locate and terminate all of its components, because any file associated with the rogue can leave your computer’s door open for other malware.

Download Spyware Removal Tool to Remove* XP Home Security 2012
  • Quick & tested solution for XP Home Security 2012 removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove XP Home Security 2012

Files associated with infection (XP Home Security 2012):

%AppData%\[random].exe

Processes to kill (XP Home Security 2012):

%AppData%\[random].exe

Remove registry entries (XP Home Security 2012):

HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exe” -a “%1″ %*’
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exe” -a “%1″ %*’
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exe” -a “%1″ %*’
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exe” -a “%Program Files%\Mozilla Firefox\firefox.exe”‘
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exe” -a “%Program Files%\Mozilla Firefox\firefox.exe” -safe-mode’
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = ‘”%Documents and Settings%\[UserName]\Local Settings\Application Data\[random].exee” -a “%Program Files%\Internet Explorer\iexplore.exe”‘
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = ’1′
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallOverride” = ’1′
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\BrowserEmulation “TLDUpdates” = ’1′
Disclaimer

Comments

  1. macca Jun 20, 2011

    This doesn't work at all! The "XP Home Security 2012" prevents the download from opening and accessing the internet so I cannot download your software. Fail!

  2. C.S. Jun 22, 2011

    Download the file onto another PC and then change the name and extension to something like SHinstal.com Then you should be able to run it on the infected PC.

  3. B.A.M Jul 4, 2011

    if you have spyware, you can open that and then get on the internet from the link at the bottom. thats how i did it.

  4. Me Dec 8, 2011

    Do I enter the dashes when entering the security code?

  5. ClaneWest Jan 17, 2012

    For me, SH wasn't even able to download. Luckily, there are other ways of fixing this problem. I got rid of this bogus-scanner by removing a file called "qkm.exe" from a Local Settings folder. Hope this helps...

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.