Windows Antivirus Care
Windows Antivirus Care Description
Windows Antivirus Care boasts a surprisingly wide range of security features, but as a rogue anti-virus application, Windows Antivirus Care’s features are included easily only because all of them fail to perform their self-described functions. Like its scamware ancestors that are also descendants of FakeVimes, Windows Antivirus Care offers fake system information, alerts and infection warnings to stir up fear over PC threats that really aren’t on your computer, all in hopes of encouraging you to dole out a little money for its registration fee. SpywareRemove.com malware experts suggest that you remove Windows Antivirus Care with real anti-malware software instead of buying Windows Antivirus Care, particularly given that Windows Antivirus Care may include functions that can harm your security. Besides its attempts at faking security features, Windows Antivirus Care may also be responsible for browser hijacks, blocked security programs (including Microsoft tools such as Task Manager) and a variety of changed system settings that can make your PC vulnerable to other attacks.
What Makes Windows Antivirus Care More of a Killer Nurse Than a Caretaker
Windows Antivirus Care is built off of the same interface template that’s been used for other Win32/FakeVimes-based rogue AV programs such as XP Smart Security, Windows Crucial Scanner, Windows PRO Scanner, Windows Warding System, Windows Internet Booster, Windows Daily Adviser, Windows Protection Master, Windows Safety Module, Windows Security Suite, Windows Enterprise Defender, Windows Functionality Checker, Windows Software Saver, Windows Care Taker, Smart Anti-Malware Protection, Home Malware Cleaner, Windows Abnormality Checker, Windows Pro Rescuer, Windows Security Renewal, Windows System Defender, Windows Antivirus Patch, Windows Privacy Counsel, Windows Advanced Toolkit, Windows Safety Series, Windows Pro Defence, Live Enterprise Suite, VirusSecurity, Windows Proprietary Advisor, Windows Firewall Constructor, Windows Debug Center, Windows Safety Maintenance, Windows Health Keeper, Windows Activity Debugger, Windows Ultimate Security Patch, Windows Interactive Safety, Windows High-End Protection, Smart Engine, Personal Security Sentinel, Windows Guardian Angel, CleanUp Antivirus, Windows ProSecurity Scanner, Activate Ultimate Protection, Additional Guard, Windows Telemetry Center, Windows Proactive Safety, Windows Performance Adviser, Windows Antivirus Machine, Windows Control Series, Windows Risk Minimizer, Windows Smart Warden, Windows AntiHazard Center, Windows Anti-Malware Patch, Windows Secure Workstation, Windows Custodian Utility, Windows Ultimate Safeguard, Security Antivirus, Windows Advanced Security Center, Windows Virus Hunter, PrivacyGuard PRO, Smart Internet Protection 2011, Windows Virtual Angel, Windows Basic Antivirus, Windows Tools Patch, Windows Guard Solutions, Windows Virtual Security, Windows Performance Catalyst, My Security Wall, Windows Malware Sleuth, Windows Problems Stopper, Windows Safety Toolkit, Windows Security System, Windows Sleek Performance, Windows Premium Console, Windows Profound Security, Windows Expert Series, Personal Internet Security 2011, Windows Web Combat, Windows Home Patron, Internet Security Essentials, Windows Pro Safety Release, Windows Privacy Module, Windows Defence Counsel, Windows Maintenance Suite, Best Malware Protection, Total Anti Malware Protection, Windows Secure Web Patch, Enterprise Suite, Virus Doctor, Extra Antivirus, Smart Virus Eliminator, Windows Threats Destroyer, Home Safety Essentials, Windows Shielding Utility, Windows Private Shield, Windows First-Class Protector, Windows Multi Control System, Windows Antivirus Rampart, Windows Custom Management, PC Live Guard, Windows Process Director, Windows Turnkey Console, Windows Active Guard, Smart Internet Protection 2012, Internet Security Suite, System Protection Tools, Windows Premium Guard, Windows Custom Safety, Windows No-Risk Agent, Windows ProSecure Scanner, Windows Software Keeper, Windows Pro Safety, Windows Protection Maintenance, My Security Engine, Windows Smart Partner, Windows Defending Center, Windows Safety Checkpoint, Best Antivirus Software, Windows Efficiency Accelerator, Windows Pro Web Helper, Windows Managing System, Windows Safeguard Upgrade, Windows Web Commander, Windows No-Risk Center, Windows AntiHazard Helper, Windows Active Defender, Smart Security, Volcano Security Suite, Windows Interactive Security, Windows Antivirus Release, Windows Shield Tool, Windows Secure Surfer, Windows Maintenance Guard, Windows Advanced User Patch, Windows Enterprise Suite, Fast Antivirus 2009, Strong Malware Defender, Anti-Malware Lab, Windows Pro Solutions, Windows Premium Defender, Live PC Care, Windows Stability Guard, Windows PC Aid, Security Master AV, Windows Trouble Taker, Windows Be-on-Guard Edition, Windows Guard Tools, Windows Instant Scanner, Windows Secure Workshop, Windows Protection Unit, Antivirus Smart Protection, Windows Personal Doctor, Windows Safety Wizard, Keep Center Keeper, My Security Shield, Windows Safety Manager, Windows Privacy Extension, Windows Antihazard Solution and Windows Virtual Firewall. Windows Antivirus Care and its clones all act as if they’re able to detect and remove PC threats that other types of anti-malware programs will fail to uncover, but all warning messages, scanner results and other security information from Win32/FakeVimes-based PC threats like Windows Antivirus Care should be considered fraudulent.
Pop-ups aren’t the only things that Windows Antivirus Care uses to try to convince you of its supposed security features, however. Windows Antivirus Care is also equipped with a fake system scanner, a memory-monitoring tool (that, incidentally replaces your Task Manager without your consent), fake phishing protection and similar functions to make Windows Antivirus Care look more credible than Windows Antivirus Care really is. SpywareRemove.com malware experts warn against any attempt to purchase Windows Antivirus Care, even if you’re only registering Windows Antivirus Care to try to delete Windows Antivirus Care from your computer, since this can result in your financial information being exploited by Windows Antivirus Care’s hacker partners.
How to Heal Your PC from the Wounds of Windows Antivirus Care’s Causing
Besides its fake security functions that, if ignored, are merely a minor nuisance, Windows Antivirus Care may also directly harm your computer’s security, both with regards to overall system settings and specific application accessibility. SpywareRemove.com malware experts warn against taking lightly default attacks from Windows Antivirus Care like:
- Blocked security and anti-malware programs.
- Online search redirects to unfamiliar websites.
- Changed system settings that disable Windows features like the UAC or valid signature identification for file downloads.
Such security-harming characteristics cause Windows Antivirus Care to be something that you should remove from your computer in rapid order, which SpywareRemove.com malware researchers encourage you to do with some assistance from trustworthy anti-malware products. You may also, if desired or necessary, register Windows Antivirus Care for free with the key ’0W000-000B0-00T00-E0020′ as a means of circumventing the worst of its attacks before you attempt to delete Windows Antivirus Care properly.
Windows Antivirus Care Automatic Detection Tool (Recommended)
Is your PC infected with Windows Antivirus Care? To safely & quickly detect Windows Antivirus Care, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect Windows Antivirus Care
What happens if Windows Antivirus Care does not let you open SpyHunter or blocks the Internet?
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read
the tutorials on how to find malware,
kill unwanted processes,
remove malicious DLLs and
delete other harmful files. Always be
sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name Detection Count 1 %APPDATA%\ Protector-dila.exe 497 2 %APPDATA%\ Protector-oaqg.exe 145 3 %AppData%\Inspector-[RANDOM CHARACTERS].exe N/A 4 %AppData%\Protector-[RANDOM CHARACTERS].exe N/A
Registry Modifications
Tutorial: To edit and delete registry entries manually, read the tutorial on
how to remove malicious registry entries.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
- The following newly produced Registry Values are:
HKEY..\..\{Value}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnOnHTTPSToHTTPRedirect" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegedit" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegistryTools" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "ID" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "net" = "2012-2-17_2"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "UID" = "rudbxijemb"HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Inspector"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ERROR_PAGE_BYPASS_ZONE_CHECK_FOR_HTTPS_KB954312HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avp32.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avpcc.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashDisp.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\divx.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mostat.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\platin.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tapinstall.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zapsetup3001.exe
Additional Information
- The following messages's were detected:
# Message 1 Error
Attempt to modify Registry key entries detected.
Registry entry analysis recommended.2 Warning
Firewall has blocked a program from accessing the Internet
C:\program files\internet explorer\iexplore.exe
is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server.3 Warning! Spambot detected!
Attention! A spambot sending viruses from your e-mail has been detected on your PC.
Posted: April 19, 2012 | By SpywareRemove
MoreThreat Level: 10/10
(1 votes, average: 5.00 out of 5)
Loading ...Rate this article:
Detection Count: 75
