XP Antispyware 2009

XP Antispyware 2009 is a fake antivirus software for Windows system. It will attempt to persuade users into obtaining the registered version by providing fake scan results on victim’s computer. This fake anti-virus software comes from a large group of malicious applications that has created various variants of it.

XP Antispyware 2009 is just a mimic of the other versions and only obvious change is its name. Graphical user interface and method of propagation remains the same. Usually, users can acquire XP Antispyware 2009 from web sites that disguise either online virus scanner or one that offers free videos. As for fake online scanner sites, it will automatically run a scan on visitor’s machine. Several threats will be identified on the said scan and prompt user to download XP Antispyware 2009 as a cleaner. While on bogus video sites, user will receive prompt stating that multimedia player is required to view online movies.

Innocent users may think that the endorsed program will help remove a threat that is why so many have fallen into the trick of XP Antispyware 2009. Right after it is installed; it will carry another local scan on the computer and detects dozens of threats. An advice to remove these infections follows but can only be performed if the licensed version of XP Antispyware 2009 is purchased. Users will be brought to an online payment web site where credit card account is needed to complete the transaction.

Screenshot Image:

XP Antispyware 2009

Signs and Symptoms of XP Antispyware 2009 Infection:

Browser is redirected to XP Antispyware 2009 web sites
Rogue program is coupled with web site that promotes the full version of it. Also, the same web sites are used for online payment if user has fallen into the trap of this malware.

Exhibits fake pop-ups and security alert
In order to deceive computer users, XP Antispyware 2009 will exhibit a bunch of fake security alerts and warning messages. It also intends to promote the malware as the sole remover for identified threats.

XP Antispyware 2009 will detect errors and threats that do not exists
Every rogue programs are made to mislead computer users. Thus, expect that XP Antispyware 2009 will show scan result that is full of errors and threats. This result is fictitious and you should not follow its recommendation.

Other Functions of XP Antispyware 2009:

  • XP Antispyware 2009 may come with another Trojan or virus
  • It can contact a remote server in order to download more malware
  • This threat will drop malicious files and make changes to the system registry
  • XP Antispyware 2009 can steal credit card information when you pay for it online
  • The threat can redirect search result link to a malicious web page

How to Remove XP Antispyware 2009

1. Download Malwarebytes' Anti-Malware from this link and save it on your Desktop.
2. After downloading, double-click on mbam-setup.exe to install the application.
3. Follow the prompts and install as default only.

4. Before the installation completes, check on the following prompts:
- Update Malwarebytes' Anti-Malware
- Launch Malwarebytes' Anti-Malware

5. Click Finish. Program will run automatically and you will be prompt to update the program before doing a scan. Please update.
6. Scan your computer thoroughly.
7. When scanning is finished click on the Show Results button.
8. Make sure that all detected threats are marked, click on Remove Selected.
9. Restart your computer.

Note: Some malware may prevent mbam-setup.exe from downloading and running. You can download and rename this program from a different computer before running it on infected system.

14 Comments

  1. John

    Used Malwarebytes to remove XP Security Center 2008 & 2009 one computer was mildly infected and cleaned two others were so infected that removed over 1100 threats and another with 496 threats crippled them so bad that I had to do a CD Repair & reload all the programs. This is one of the worse programs I have ever seen & would like to see their ba!!s removed, jja

  2. John

    If your system crashes when running Malwarebytes, then boot in safe mode then run. Malwarebytes & Smitfraud are the only two scaner that I know that will rub in safe mode. After cleaning then boot up and run scan to get rid of the rest of it, jja

  3. Diane

    One of the problems I had with this infection was that it had hijacked my browser and was not letting me access any virus/malware sites nor would it let me run any of my installed programmes. I managed to run it from a storage pen on a usb drive and it seems to have rid the machine of it at last.

    Horrible thing.

  4. exel support

    anyone have any issues with malware crashing while trying to remove this xp anitspyware, with mbam.exe, i can’t seem to get all the way through a scan before this decides to give me box not responding and send or don’t send report, either option i take nothing happens, stays in unrepsonsive mode. then preceeds to give me dr.watson postmortem debugger.

  5. RL

    This worked perfectly for me on the first pass.

    AND IT’S FREE START TO FINISH.

    Thx Malwarebytes! (& precisesecurity Webmaster for posting the link here)

  6. Jim

    wow thank you so much malwarebytes’….cleaned my whole computer. Found 60 viruses and deleted them in a second…thanks again.

  7. Rick

    I ran the Malwarebytes Anti-Malware program and caught lots of malware apparently related to “AntivirusPro2009.” I still see AntivirusPro2009 in my system configuration utility box under startup though. I don’t have it checked so it isn’t loading…..or am I wrong?

    Before I ran the Malwarebytes Anti-Malware program I found a related malware called “brastk.” However this has been removed from by startup but I don’t know if it is still active as it seems to be a really bad infection.

    Thanks for any insight.

  8. Xavier Holland

    othing else worked for me but this…….

    I already had Comodo installed so I enabled the Paranoid settings after adding Malware Bytes, F-Secure, and Avira to the trusted section.

    Malware Bytes will only leave behind the Prefetch, Cache, and brastk.exe SO use F-Secure right afterwards instead of letting Malware Bytes try removing it on reboot. Clear your cache, delete everything in the prefetch folder, and disconnect your internet. Use the registry editor to find any reference to karna.dat and braskt.exe and delete those entries. Now, F-Secure will find your rootkit (brastk), and rename it before loading XP. You may see a weird screen blip occur, then XP will load. After it reloads, immediately clear your cache, run MB again and then reboot one last time. You’re clean as a whistle baby!

  9. Heather

    I know MW Bytes would fix this, but I can’t get it to run in normal mode or safe mode, even after changing the name of the .exe file. I’ve manually removed both of the .dat files, but I still have a lot of problems. :(

  10. dino

    thanks for the mw bytes download worked perfect, nothing else worked against anti v 2009 on my system but this was great cheers dino

  11. T. Yin

    I will appreciate anyone who can provides me with XP anti-spyware 2009 company’s telephone number so that I can talk to them foe support. When I bought the service I was told to have telephone support service. Thanks.

  12. T. Yin

    I will appreciate anyone who can provide the XP Anti-spyware 2009 company’s telephone number. When I bought the service, I was told to have telephone support service. Thanks.

  13. Rajendra

    my computer virus remove

  14. hurzwurz

    dear exel support,

    please stop all tasks that are running under your user.

    remove ikowin32.exe from your autostart.

    stop tasks like “9129837.exe” and strange names like that
    in the end you should have no programm running!
    no virus scanner, no game software nothing!°
    just windows itself
    than you can install Malwarebytes and run a full scan!

    if I hadnt killed these taks the scareware program always restartet my computer when it recognized that a antivirus prog was running…

    And Warning these Program changes its Name
    to me its known as “Security Tool”

Comments are closed.