WinWebSec DescriptionWinWebSec is a well-known group of rogue security applications. Like most rogue security programs, WinWebSec programs are designed to scam computer users by convincing them to purchase fake anti-virus applications. WinWebSec applications are disguised as anti-virus software but are actually designed to display fake error messages and to mislead the victim into thinking that their PCs are severely infected. ESG malware analysts strongly advise against paying for any anti-virus program in the WinWebSec family of malware. WinWebSec programs have no way of protecting your computer system from malware and actually wreak havoc on the victim's computer system.
Malware in the WinWebSec family has been around for a long time, since at least 2009. Typically, these fake applications are delivered by a Trojan infection and are often one component of a multi-component malware attack. Trojans associated with the WinWebSec family will often be distributed through spam email, malicious advertisements for online malware scanners, or attack websites designed to infect your computer system with malware with the help of exploits. Examples of fake anti-virus products in the WinWebSec family of malware include Security Sphere 2012, Security Shield, Smart Fortress 2012, Essential Cleaner, Antispyware Pro 2009 and Winweb Security.
Identifying and Dealing with a WinWebSec-Related Malware Infection
Fake security products in the WinWebSec family tend to include interfaces with a pink hue, layouts that are identical from one program to another, and phrases that are repeated from one WinWebSec clone to another (for example: Get full real-time protection with [NAME]). Malware programs in the WinWebSec family also share their attack pattern, displaying similar bogus error messages, pop-up notifications from the Taskbar and similar fake computer scans from one clone to another. Since all of these are created to frighten you into thinking that you need to purchase a 'full version' of the WinWebSec program, ESG malware analysts strongly recommend against taking action based on the rogue security application's claims. Instead, remove WinWebSec application with a strong anti-malware program immediately.
Malware infections in the WinWebSec family often have the capacity to render inoperative legitimate security tools in order to protect themselves. WinWebSec malware programs can also block access to certain files and cause browser redirects. Because of this, to remove a WinWebSec program, it is often necessary to start up the infected computer system from a removable memory device, from a shared drive or in Safe Mode (often by hitting the F8 key while Windows starts up).
Aliases: Trojan.FakeAV.mm [CAT-QuickHeal], Trojan.Win32.FakeAV [Ikarus], W32/FakeAlert.ML!tr [Fortinet], Trojan.Siggen1.25665 [DrWeb], Trojan.FakeAV.XN [VirusBuster], Trojan.Generic.KD.9916 [BitDefender], FakeAV.BJV [AVG], Trojan/Win32.FakeAV.gen [Antiy-AVL], TR/FakeAV.ML [AntiVir], Trojan.Win32.FakeAV!IK [a-squared], Trojan/Fakeav.kp [Jiangmin], Trojan.Win32.FakeAV.ml [Kaspersky], Generic FakeAlert!hk [McAfee], Trojan.Win32.FakeAV.44544.F [ViRobot] and PAK_Generic.001 [TrendMicro].
Infected with WinWebSec? Scan Your PC for FreeDownload SpyHunter’s Spyware Scanner
to Detect WinWebSec
Security Doesn't Let You Download SpyHunter or Access the Internet?
Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in 'Safe Mode with Networking' and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.
If you still can't install SpyHunter? View other possible causes of installation issues.
Our MalwareTracker shows malware activity across the world. Explore real-time data of WinWebSec outbreaks and other threats from global to local level.
File System Details
WinWebSec creates the following file(s):
|#||File Name||Size||MD5||Detection Count|
|9||%ALLUSERSPROFILE%\Dados de aplicativos\11170313\11170313.exe||1,176,064||1b00a182149c49f05c384f8f805de78d||4|
|14||%USERPROFILE%\Local Settings\Application Data\675497059.exe||1,164,800||fc27d8db3dd1e0e0bdf1c60d77e7ad12||2|