Antivirus Protection 2012
Antivirus Protection 2012 Description
Antivirus Protection 2012 is a variant of Rogue:Win32/Defmid, a category of fake anti-malware programs that recycle their interface with a variety of different names to make each program appear to be an independent product. Antivirus Protection 2012 has changed its name but not its act, and SpywareRemove.com malware research team warns that Antivirus Protection 2012 will provide misleading and completely inaccurate information about malicious software or other PC threats to push computer users into wasting money on its worthless threat-removal software. Since members of Antivirus Protection 2012′s family have also been known to block websites arbitrarily and download other files without permission, Antivirus Protection 2012 should be considered a potentially serious threat to your PC until Antivirus Protection 2012 is removed by appropriate anti-malware software.Antivirus Protection 2012 – 2012′s Version of a PC Security Hoax from 2011
Antivirus Protection 2012 markets itself as a supposedly trustworthy and independent anti-virus scanner, complete with firewall and other security features, but this pretense doesn’t go skin-deep, since Antivirus Protection 2012 was noted to be utilizing the same skin and interface that other fake AV products from its family have used for months now. Examples of similar clones from the ranks of Antivirus Protection 2012′s UnVirex family include Security Inspector 2010, AntiVirus System 2011, AntiVirus AntiSpyware 2011, Desktop Defender 2010, Contraviro, UnVirex, AntiVirus Studio 2010, Total PC Defender 2010 and Desktop Security 2010. Many of these PC threats may also use an optional annual suffix (such as Security Defender 2011 or Security Monitor 2012).
Both Antivirus Protection 2012′s relatives and Antivirus Protection 2012 are capable of creating technical-looking detection alerts for Trojans, viruses and other PC threats, complete with full identification labels and useful descriptions. However, these detections are all fraudulent and should be ignored. SpywareRemove.com malware experts extend the same advice to system scans from Antivirus Protection 2012, which will launch without your permission.
Security Center Alert
To help protect your computer, Security Center has blocked some features of this program.
Name: Screen.Grab.J.exe
Risk: High
System critical warning!
You have been infected by a proxy-relay Trojan server
Your query looks similar to automated requests from a spyware application.
Your system has come under attack of hostile software.
Click here to deactivate it.
Reported Insecure Browsing: Navigation Blocked
Insecure Internet Activity. Threat of virus attack
Due to insecure Internet browsing your PC can easily get infected with viruses, worms, and Trojans without your knowledge, and that can lead to system slowdown, freezes and crashes. Also insecure Internet activity can result in revealing your personal information.
Security Center
Unauthorized remote connection!
Your system is making an unauthorized personal data transfer to a remote computer!
Warning! Unauthorized personal data transfer is detected! It may be your personal credit card details, logins and passwords, browsing habits or information about files you have downloaded.
To protect your private data, please click “Prevent Connection” button below.
Your computer might be at risk
Antivirus detects viruses, worms, and Trojan horses. They can (and do) destroy data, format your hard disk or can destroy the BIOS. By destroying the BIOS many times you end up buying a new motherboard or if the bios chip is removable then that chip would need replacing
Antispyware software warning
Your computer is infected with spyware and malware. Last scan results: 364 infected files found! Click this notification to fix the problem.
The Subtler Side of Antivirus Protection 2012′s Fraudulent Protection
Antivirus Protection 2012 may also insert a self-promoting link for itself in Windows Security Center to encourage you to visit its website. SpywareRemove.com malware experts discourage purchasing Antivirus Protection 2012, of course, even to remove Antivirus Protection 2012 from your PC, since Antivirus Protection 2012 can be deactivated and removed by anti-malware software. However, if you wish to register Antivirus Protection 2012 to simplify deleting Antivirus Protection 2012, the following code has been known to work for its family of scamware: ‘LIC2-00A6-234C-B6A9-38F8-F6E2-0838-F084-E235-6051-18B3.’
Fake error messages from Antivirus Protection 2012 can also extend to your web browser, and Antivirus Protection 2012 may use fake warnings to block certain websites. Finally, Antivirus Protection 2012 may even download and install other malicious files, a function that makes Antivirus Protection 2012 a high-priority PC threat to be removed on sight.
Aliases
FakeAlert-Rena.ci [McAfee]Gen:Variant.Kazy.56883 [BitDefender]Generic27.MSX [AVG]HEUR:Trojan.Win32.Generic [Kaspersky]Mal/FakeAV-OQ [Sophos]Rogue:Win32/FakeRean [Microsoft]Suspicious file [Panda]Win32:FakeAlert-CAK [Trj] [Avast]
Antivirus Protection 2012 Automatic Detection Tool (Recommended)
Is your PC infected with Antivirus Protection 2012? To safely & quickly detect Antivirus Protection 2012, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Antivirus Protection 2012
What happens if Antivirus Protection 2012 does not let you open SpyHunter or blocks the Internet?
Visual & GUI Characteristics
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %APPDATA%\Antivirus Protection 2012 410 2 Antivirus Protection.lnk 248 3 %USERPROFILE%\Start Menu\Programs\Antivirus Protection 241 4 %APPDATA%\ Antivirus Protection\ AntivirusProtection2012.exe 230 5 %APPDATA%\Antivirus Protection 220 6 %APPDATA%\ Antivirus Protection\ securitymanager.exe 54 7 %APPDATA%\ Antivirus Protection\ securityhelper.exe 21 8 %AppData%\Antivirus Protection\securitymanager.exe N/A 9 %AppData%\Antivirus Protection\antivirusprotection2012.exe N/A 10 %Desktop%\Antivirus Protection.lnk N/A 11 %StartMenu%\Programs\Antivirus Protection\antivirus protection.lnk N/A
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}Antivirus Protection 2012 SMHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}Antivirus ProtectionHKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run!Inspector
Additional Information
- The following messages's were detected:
# Message 1 Antispyware software warningYour computer is infected with spyware and malware. Last scan results: 364 infected files found! Click this notification to fix the problem. 2 Reported Insecure Browsing: Navigation Blocked Insecure Internet Activity. Threat of virus attack Due to insecure Internet browsing your PC can easily get infected with viruses, worms, and Trojans without your knowledge, and that can lead to system slowdown, freezes and crashes. Also insecure Internet activity can result in revealing your personal information. 3 Security Center Alert To help protect your computer, Security Center has blocked some features of this program. Name: Screen.Grab.J.exe Risk: High 4 Security Center Unauthorized remote connection! Your system is making an unauthorized personal data transfer to a remote computer! Warning! Unauthorized personal data transfer is detected! It may be your personal credit card details, logins and passwords, browsing habits or information about files you have downloaded. To protect your private data, please click "Prevent Connection" button below. 5 System critical warning! You have been infected by a proxy-relay Trojan server Your query looks similar to automated requests from a spyware application. Your system has come under attack of hostile software. Click here to deactivate it. 6 Your computer might be at risk Antivirus detects viruses, worms, and Trojan horses. They can (and do) destroy data, format your hard disk or can destroy the BIOS. By destroying the BIOS many times you end up buying a new motherboard or if the bios chip is removable then that chip would need replacing
Posted: February 17, 2012 | By SpywareRemove
MoreThreat Level: 10/10
(12 votes, average: 4.33 out of 5)
Loading ...Rate this article:
Detection Count: 13,959
