Home Malware Programs Rogue Anti-Spyware Programs Antivirus Security Pro 2014

Antivirus Security Pro 2014

Posted: November 27, 2013

Threat Metric

Ranking: 5,538
Threat Level: 2/10
Infected PCs: 885
First Seen: December 2, 2013
Last Seen: October 10, 2023
OS(es) Affected: Windows

Antivirus Security Pro 2014 is a rogue anti-malware product that serves as one of the latest 'updates' for WinWeb Security, a scamware family that uses fake system pop-ups, system scans and various other misleading attacks to make their victims purchase nonfunctional programs. As with all members of this family, Antivirus Security Pro 2014 does have the capacity to block your use of unrelated applications that are essential to your computer's safety. Malware experts suggest deleting Antivirus Security Pro 2014 with legitimate anti-malware tools whenever Antivirus Security Pro 2014 is detected – since anything less than that harsh response may place your computer in danger of other compromises.

An Anti-Security Professional at Work

Antivirus Security Pro 2014 is typically distributed through the attacks of various Trojans, although other means also are viable and frequently-exploited methods of distributing scamware. Despite the new year appended to its brand name, Antivirus Security Pro 2014 is a straight clone of Antivirus Security Pro 2013, another recent effort from Winwebsec's programmers.

With the looks of a generic anti-malware and security utility, Antivirus Security Pro 2014 will attempt to keep up an appearance of assisting your PC by scanning files and monitoring ongoing memory processes. Anyone familiar with Winwebsec will not be very surprised to discover that Antivirus Security Pro 2014's pop-up alerts and system scans both are fraudulent, and deliver deliberately inaccurate information about threats on your PC. These attacks are intended to make you buy Antivirus Security Pro 2014 in a premium registration request, which compromises both your money and associated financial information.

The Ultimatum of Fraudulent Software that's Desperate for Your Money

Pop-up warnings without any substance and system scans with bad results are the hallmark characteristics of Antivirus Security Pro 2014, but malware researchers are more interested in its capacity for assaulting an infected PC's security. Significant security-impeding functions linked to Antivirus Security Pro 2014 include:

  • Changing Windows settings to deny your access to basic features like the User Account Control, the default Firewall program and Windows update management.
  • Monitoring your use of other programs and automatically closing ones that Antivirus Security Pro 2014 doesn't want to be launched. Security-oriented products, such as real anti-malware scanners, are particularly high on Antivirus Security Pro 2014's hit list, but by no means are the exclusive targets.

Considering the problems that may be caused by an unleashed Antivirus Security Pro 2014, malware researchers consider disabling Antivirus Security Pro 2014 with basic security techniques to be an essential task to be performed immediately. Actual anti-malware products can delete Antivirus Security Pro 2014 and any fellow PC threats, which shouldn't be trusted to uninstall themselves through any form of normal methods.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%UserProfile%\Start Menu\Programs\Antivirus Security Pro 2014\Uninstall Antivirus Security Pro 2014 File name: %UserProfile%\Start Menu\Programs\Antivirus Security Pro 2014\Uninstall Antivirus Security Pro 2014
Group: Malware file
%DesktopDir%\Antivirus Security Pro 2014.lnk File name: %DesktopDir%\Antivirus Security Pro 2014.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%CommonPrograms%\Antivirus Security Pro 2014.lnk File name: %CommonPrograms%\Antivirus Security Pro 2014.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\ File name: %CommonAppData%\[RANDOM CHARACTERS]\
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS] File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS]
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe.manifest File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe.manifest
Mime Type: unknown/manifest
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].in File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].in
Mime Type: unknown/in
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].ico File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].ico
Mime Type: unknown/ico
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].lg File name: %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].lg
Mime Type: unknown/lg
Group: Malware file

Registry Modifications

The following newly produced Registry Values are:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AA2014" = "%CommonAppData%\WaDprnV7\WaDprnV7.exe"

Additional Information

The following URL's were detected:
https://best-datingplace.com
The following messages's were detected:
# Message
1Warning! Infected file detected.
We strongly recommend activating full edition of your antivirus software for repairing threats.
2Warning! Network attack attempt detected.
To keep the computer safe, the threat must be blocked.

Loading...