Removing Backdoor.11.Win32.xnco trojan is easy

Malware Description:
We recently let you all know of a series of rogue security products that trade off the names of reputable antivirus clients such as Avira (read the story here), Avast (get details) and some others. One must admit it was a ‘nice’ try by the scammers as they attempted getting as close to the legitimacy fringe as possible, calling their products after the world’s leading utilities, only adding the ‘Enhanced Protection Mode’ extension. This entry is about a slightly different thing though. What is Backdoor.11.Win32.xnco and how is it related to the above-mentioned scareware applications? Here is what you need to be aware of in this context. This virus is only an alleged problem if it is reported by the pseudo AV tools listed at the beginning of this post. They tend to trigger alerts that aim at giving you some scary experience, stating that your PC has been compromised by a hazardous parasite. This ‘Virus detected!’ notification says you got Backdoor.11.Win32.xnco which is a trojan horse, i.e. a potentially harmful piece of software that ought to be driven away as fast as possible. In the long run, the badware claims there’s but one way to actually treat this infection. It consists in activating your version of the phony antivirus solution (without saying it’s actually fake of course). The trap will fully work only if you buy the commercial version of the malware whose influence you are undergoing, such as Avast Enhanced Protection Mode etc. The section right below this threat description will guide you through the virus removal, so don’t miss your chance to free your PC of the dangerous activity on it.

Malware Type: Trojan Horses

Threat Level: Critical

Advice: Immediately remove and scan for additional malware

Backdoor.11.Win32.xnco Free Scanner and Remover: Download Now

Related Fake Alert Screenshot:

Backdoor.11.Win32.xnco alert

How to remove Backdoor.11.Win32.xnco manually:
Manual removal of Backdoor.11.Win32.xnco is feasible if you have sufficient expertise in dealing with program files, system processes, .dll files and registry entries.

The associated files to be deleted are listed below:

  • %Users%\[UserName]\Downloads\OTS.exe
  • %Windows%\l1rezerv.exe
  • %Windows%\systemup.exe
  • %Windows%\sysdriver32.exe

The related registry entries to be removed are as follows:

  • HKEY_LOCAL_MACHINE\Software\[random] Enhanced Protection Mode
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random] Enhanced Protection Mode”

Please, be aware that manual removal of Backdoor.11.Win32.xnco malware is a cumbersome procedure and does not ensure complete deletion of the malware, due to the fact that some files might be hidden or may automatically reanimate themselves afterwards. Moreover, manual interference of this kind may cause damage to the system. That’s why we strongly recommend automatic removal of Backdoor.11.Win32.xnco, which will save your time and enable avoiding any system malfunctions and guarantee the needed result.

Download Backdoor.11.Win32.xnco Automatic Remover

Like This Article? Let Others Know!

Post a Comment: