Windows Antivirus Machine
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 100 % (High) |
Infected Computers: | 5 |
First Seen: | August 1, 2012 |
Last Seen: | January 8, 2020 |
OS(es) Affected: | Windows |
The FakeVimes family of rogue security programs has been responsible for numerous infections. Windows Antivirus Machine is one of multiple fake security applications belonging to this family of malware. It is important to remember that Windows Antivirus Machine and its many clones are not real anti-malware programs, despite the fact that they use an interface that seems to indicate that they are. This is because Windows Antivirus Machine carries out a scam that involves convincing its victims to purchase a useless upgrade for this bogus security application. Rather than paying for Windows Antivirus Machine, the recommended course of action is to remove this program with a real anti-virus application.
Table of Contents
Windows Antivirus Machine and Other 2012 FakeVimes Variants Are Particularly Nasty
Although fake security programs in the FakeVimes family have been around since 2009, the variants released in 2012 are particularly difficult to remove. This is because these variants, which include Windows Antivirus Machine, will often be bundled with a rootkit component from the Sirefef family of malware. This rootkit component makes Windows Antivirus Machine and other malware on the victim's computer quite difficult to detect and remove with ordinary anti-malware software, and may require a more specialized anti-rootkit utility in order to be removed effectively. Other FakeVimes variants that tend to include the Sirefef rootkit include Virus Melt, Presto TuneUp, Fast Antivirus 2009, Extra Antivirus, Windows Security Suite, Smart Virus Eliminator, Packed.Generic.245, Volcano Security Suite, Windows Enterprise Suite, Enterprise Suite, Additional Guard, PC Live Guard, Live PC Care, Live Enterprise Suite, Security Antivirus, My Security Wall, CleanUp Antivirus, Smart Security, Windows Protection Suite, Windows Work Catalyst.
Protecting Yourself from the Windows Antivirus Machine Scam
Fake security software scams are not new and have been used to prey on inexperienced computer users for many years. In fact, ESG security researchers note that the rogue security software scam is a simple variation of similar scams that dishonest repairmen and mechanics have been running for generations. Basically, Windows Antivirus Machine will claim that the victim's computer is severely infected through alarming error messages and fake system scans. Windows Antivirus Machine also causes other problems, such as web browser redirects and issues accessing files on the infected machine. Windows Antivirus Machine will suggest that the victim purchase an expensive upgrade for this supposed anti-malware program. However, ESG security analysts have observed that Windows Antivirus Machine has no way of removing or detecting malware. You can stop many of Windows Antivirus Machine's fake security notifications with the registration code 0W000-000B0-00T00-E0020. Although this will 'register' Windows Antivirus Machine, you will still need to annihilate this fraudulent security program from your machine with the help of a strong, fully-updated anti-malware solution.
SpyHunter Detects & Remove Windows Antivirus Machine
Windows Antivirus Machine Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | dfc6b2b8196860f1fdc11722a782b3156ea10f36eb06c54a55e01b6deb00dafd.exe | 82ac6547282df38f53a578ca43a95b5b | 2 |
2. | %AppData%\Protector-[RANDOM CHARACTERS].exe |