Internet Security 2011 Description
Internet Security 2011 is a rogue security application created by cyber-criminals to trick victims into giving their hard earned money by charging to remove non-existent threats. Once inside a computer, Internet Security 2011 will launch a bogus online system scan alleging that the system is infested with malware. Internet Security 2011 is a variant of Antivirus 2010 and generates alarming warning alerts that advise the victim to purchase its “full” version in order to remove the “detected” threats.
Internet Security 2011 comes bundled with a rootkit that prevents you from opening any programs. Any attempt to open a program on your PC will give you the following message: “Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item.” or “Access Denied.” Internet users might unknowingly download the rootkit, which comes with a rogue anti-spyware application like Internet Security 2011, from freeware or fake video codecs downloaded from torrent websites. The rootkit is able to block programs, even legitimate anti-virus/anti-spyware programs, from executing by changing the security permissions on the executable.
Because Internet Security 2011 will not allow access to various other programs installed on the infected computer, it could be said that Internet Security 2011 may render the affected computer virtually useless. Other malware parasites have been known to populate PCs that have Internet Security 2011 installed on them. These malware parasites could range from rootkits to other rogue anti-spyware programs that are somewhat similar to Internet Security 2011 in their blocking abilities.
To modify the permissions and be able to open your programs, use the command line tool cacls.exe from Windows. Just open your Command Prompt and type the following command:
cacls [complete path to the program] /G Everyone:F
To open anti-malware program SpyHunter so it’s able to detect Internet Security 2011 on your PC, type the following command:
cacls “C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter.exe” /G Everyone:F
The [complete path to the program] variable means to add the path of the program file you want to open. Internet Security 2011 is unable to detect or remove malware, therefore do not trust any alert messages displayed by it and have it removed from your PC immediately.
Type: Rogue AntiSpyware Programs
How Can You Detect Internet Security 2011?
How to Install SpyHunter on a PC Infected with Internet Security 2011
Internet Security 2011 blocks the installation of trusted security applications. To install SpyHunter on a PC infected with Internet Security 2011, follow the instructions below:
- When Internet Security 2011 prompts a fake alert similar to the windows listed in Figure 1, 2 , 3, or 4, select the option ‘Dismiss’. Clicking on the ‘Dismiss’ button will ensure Internet Security 2011 does not stop the installation of SpyHunter.
- After selecting ‘Dismiss’, select ‘YES’ when the Internet Security 2011 message appears saying ‘It is strongly recommended to remove threat before use of application’ as shown in Figure 5 or Figure 6.
- Once you’ve installed SpyHunter, you will be prompted from the SpyHunter rootkit scanner to reboot your computer. Select ‘Reboot Now’ as shown in Figure 7.
- After reboot of your computer has completed, SpyHunter will automatically launch and scan your system. Once the system scan has finished, select the ‘REMOVE ALL THREATS’ option.
- After all threats have been removed, you will be asked to reboot your computer once more. Select ‘Restart PC’ as shown in Figure 8.
- After the second reboot of your computer all threats should have been removed and your system should be clean and free from Internet Security 2011.
Internet Security 2011 Technical Report
As new Internet Security 2011 details are reported by our customers and findings from our Threat Research Center, we will update this section.
Fake message for Internet Security 2011:
The following fake error message(s) appears for Internet Security 2011:
Attention! Threat detected!
NOTEPAD.EXE is infected with Trojan-BNK.Keylogger.gen
Private data can be stolen by third parties including card details and passwords.
It is strongly recommended to perform threat removal on your system.
Attention! Network attack detected!
Your computer is being attacked from remote host. Attack has been classified as Remote code execution attempt.
Windows Security Alert
Your computer is making unauthorized copies of your system and Internet files.
You should immediately run full scanning of your system to prevent any unauthorized access to your data.
Click YES to run Antivirus scanner right now.
Internet Security 2011 has typically the following processes in memory:
Internet Security 2011 creates the following registry entries:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiSpywareOverride” = ‘1′