Symptoms

Removal instructions:

Analyzed By

Technical Description:

The malware downloads other badware such as rogue antiviruses that claim to scan your computer, but they only detect false infections in order to trick the user into buying the product. ( Message of confirmation for the install of rogue antivirus : "This program will download and install Total Security on your PC." ). The rogue "Total Security" is a relative of the famous "XP Antivirus" scareware family.

It adds itself on startup using the following registry key : Software\Microsoft\Windows\CurrentVersion\Run. Also it protects against common used tools by researchers, if any are found an error occurs and the file is deleted.