AV Security 2012 is coming from a new rogue family. The same family created Open Cloud Security, Guard Online, AV Protection Online and many other rogue security products in last few months. AV Security 2012 looks exactly same as its previous successors and does the same malicious things to your computer. AV Security 2012 is probably the only rogue software which is more than 2 MB in size. All other rogue products are very small in size ranging form 300KB to 1000KB. It seems like to make better looking fake animations, online crooks are focusing more on software design so that people can be fooled easily. If a software looks professional, It is less likely that you'll suspect its existence.
This rogue software is coming from WinAVPro family and It includes the ZeroAccess rootkit in its installation. This rootkit will terminate any process which will try to scan the items protected by this rootkit in registry or file system. It will also change permissions of that particular program so that you can never run it again.
To overcome this TDSSRootkit, we suggest that you Download TDSSKiller from Kaspersky Lab and scan your computer to remove the said rootkit. After removing the rootkit, you can remove AV Security 2012.
This rogue software is coming from WinAVPro family and It includes the ZeroAccess rootkit in its installation. This rootkit will terminate any process which will try to scan the items protected by this rootkit in registry or file system. It will also change permissions of that particular program so that you can never run it again.
To overcome this TDSSRootkit, we suggest that you Download TDSSKiller from Kaspersky Lab and scan your computer to remove the said rootkit. After removing the rootkit, you can remove AV Security 2012.
AV Security 2012 does a fake virus analysis of your computer and then shows forged scan results. These scan results are completely bogus and does not represent actual state of your computer. This report is manipulated to show bogus results so that you get worried about your computer's security and trust AV Security 2012 to remove all those infections. Here is a screen shot of rogue software doing a bogus scan and then telling that Internet Explorer, Notepad, Calculator and all applications are infected :
   |
Av security 2012 will show fake alerts like :
Security Warning
Your computer continues to be infected with harmful viruses. In order to prevent permanent loss of your information and credit card data theft please activate your antivirus software. Click here to enable protection.
Security Warning
Malicious programs that may steal your private information and prevent your system from working properly are detected on your computer.
Click here to clean your PC immediately.
Security Warning
There are critical system files on your computer that were modified by malicious software.
It may cause permanent data loss.
Click here to remove malicious software.
Warning: Infection is Detected
Windows has found spyware infection on your computer!
Click here to update your Windows antivirus software
Security Warning
Your computer continues to be infected with harmful viruses. In order to prevent permanent loss of your information and credit card data theft please activate your antivirus software. Click here to enable protection.
Security Warning
Malicious programs that may steal your private information and prevent your system from working properly are detected on your computer.
Click here to clean your PC immediately.
Security Warning
There are critical system files on your computer that were modified by malicious software.
It may cause permanent data loss.
Click here to remove malicious software.
Warning: Infection is Detected
Windows has found spyware infection on your computer!
Click here to update your Windows antivirus software
Although It is hard to get rid of AV Security 2012 but It is not impossible. With right steps, you can remove the rogue software very easily and tighten security of your computer so that such things never happen again. One thing is sure that your existing antivirus software is not capable of dealing with such threats and you should seriously consider changing your antivirus software. It might also be possible that you don't update virus database of your antivirus software and thus It can't catch new threats. Read AV Security 2012 removal steps below.
How To Remove AV Security 2012 Virus
AV Security 2012 blocks everything in your computer and protects itself so that you can't do anything. Whenever you'll try to run a software, AV Security 2012 will close it forcefully and literally force you to buy full version of AV Security 2012. Read the removal guide below and you can get rid of fake software without much efforts. Read both removal methods throughly and follow the method which suites you best
A) Automatic Removal - Easiest Method To Remove AV Security 2012
Automatic Removal is the best method to get rid of AV Security 2012. Security companies are working very hard to fight against rogue products and they are releasing new virus definitions everyday so that most newer threats can be caught easily.
To take advantage of this method, you'll need to download Spyware Doctor which is a very powerful Spyware Scanner. Here is what you need to do :
1. Restart your computer and press "F8" key repeatedly to access Windows Startup Menu.
2. From this menu, please select "Safe Mode With Networking" and press Enter.
3. After booting your computer in Safe Mode with Networking mode, download Spyware Doctor by clicking the button below :
To take advantage of this method, you'll need to download Spyware Doctor which is a very powerful Spyware Scanner. Here is what you need to do :
1. Restart your computer and press "F8" key repeatedly to access Windows Startup Menu.
2. From this menu, please select "Safe Mode With Networking" and press Enter.
3. After booting your computer in Safe Mode with Networking mode, download Spyware Doctor by clicking the button below :
This method is the most easiest, safest and advanced method to get rid of AV Security 2012. You can do a scan in Safe Mode because rogue software won't be able to execute itself in safe mode.
B) Manual removal - Complicated and Risky Way To Remove AV Security 2012
Manual Removal is a risky, tedious and complicated way to remove AV Security 2012. On one hand, you may not be able to remove rogue software completely and on the other hand, you run the risk of damaging your computer If you delete a wrong system file mistakenly.
During manual removal process, you also need to remove malicious registry entries and If you don't know how to edit the registry, don't attempt to make any changes in the registry. Registry is a core part of your computer and small mistakes can have bigger impact on your computer.
Follow these manual removal steps at your own risk :
1. AV Security 2012 won't let you do anything in Normal Mode of Windows. Therefore, please reboot your computer in "Safe Mode with Networking" mode.
2. Now you need to find and delete AV Security 2012 files. This rogue software creates file with random names on all computer and hence It is impossible to tell exact filenames on your computer. Look for suspicious files in these locations :
%AppData%\ldr.ini
%AppData%\<random>\
Make sure that you don't delete a file based on your guesswork. Make sure to delete the right file to avoid any hassles later.
3. After removing executable files of AV Security 2012, now you need to edit the registry to remove malicious entries. To run Registry Editor, Click on Start-->Run, type "regedit" and press OK button. Now remove the right registry entry from this tree :
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "<random>"
Now reboot your computer and see If you face any problems. If problem still persists or you don't know how to remove AV Security 2012, simply follow the automatic removal method and that's all you need to do to remove the rogue software. Automatic Removal hardly takes 30 minutes and everything will return to normal once again!
No comments:
Post a Comment