Click on screenshot to zoom
Danger level 9
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Block exe files from running
  • Installs itself without permissions
  • Connects to the internet without permission
  • Slow internet connection
  • System crashes
  • Annoying Pop-up's
  • Slow Computer

XP Anti-Virus 2013

No matter which country you live in you cannot escape XP Anti-Virus 2013. It is an international threat floundering in the depths of the Internet and once you find yourself in websites related to XP Anti-Virus 2013, you are bound to get infected. In such case the most important thing is not to panic and pull yourself together because you have XP Anti-Virus 2013 to remove.

This rogue copies the interface layout from a whole list of popular antivirus programs and it makes it look like a reliable application that can really delete viruses and Trojans from the infected computer. Thus, when XP Anti-Virus 2013 performs a full system “scan” and presents the user with an extensive list of infections supposedly plaguing his system the logical way to react to these findings is to click the “Remove All” button that XP Anti-Virus 2013 flaunts directly in your face.

Unfortunately, XP Anti-Virus 2013 cannot remove any malware, because it is a malicious infection itself, coveting your money and doing all it can to slow down your computer in order to make look like all these infection it informs you about are real. You have to ignore XP Anti-Virus 2013 point blank and look for ways to remove it. If you cannot do it on your own, you should acquire a computer antimalware program that will terminate XP Anti-Virus 2013 automatically and your system will be protected from other possible attacks.

Download Spyware Removal Tool to Remove* XP Anti-Virus 2013
  • Quick & tested solution for XP Anti-Virus 2013 removal.
  • 100% Free Scan for Windows

How to manually remove XP Anti-Virus 2013

Files associated with XP Anti-Virus 2013 infection:


Remove XP Anti-Virus 2013 registry entries:

HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\ah\shell\open\command "IsolatedCommand"
HKEY_CURRENT_USER\Software\Classes\ "(Default)" = 'Application'
HKEY_CURRENT_USER\Software\Classes\[random].exe "(Default)" = ''
HKEY_CURRENT_USER\Software\Classes\[random].exe\shell\open\command "(Default)" = "%LocalAppData%\[random].exe" -a "%1" %*
HKEY_CURRENT_USER\Software\Classes\\DefaultIcon "(Default)" = '%1'
HKEY_CURRENT_USER\Software\Classes\\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command "(Default)" = ""%LocalAppData%\.exe -a "C:\Program Files\Mozilla Firefox\firefox.exe""
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = ""%LocalAppData%\.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode"
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = ""%LocalAppData%\.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe""

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.