AV Secure 2012

AV Secure 2012 Description

ScreenshotOne of the largest families of rogue security programs is linked to the FakeScanti Trojan, a particularly prevalent malware infection that is designed to install fake anti-virus applications on the victim's computer system.

At first glance, AV Secure 2012 seems to be simply one more version of the many fake anti-virus programs, which include such rogue security programs as Security Guard, Sysinternals Antivirus, Wireshark Antivirus, Milestone Antivirus, BlueFlare Antivirus, WolfRam AntiVirus, OpenCloud Antivirus, OpenCloud Security, Data Restore, OpenCloud AV, Security Guard 2012, AV Guard Online, Guard Online, Cloud Protection, AV Protection Online, System Protection 2012, AV Security 2012, Sphere Security 2012, AV Protection 2011, Super AV 2013.

However, the AV Secure 2012 variant has acquired an interesting twist to its infection process which has caught the attention of ESG security researchers. AV Secure 2012 has the capability to modify the infected computer system's settings, altering the way this computer connects to the Internet and resolves IP addresses. This means that, after carrying out a search on a legitimate search engine (such as Google or Yahoo,), the results will actually link to a website hosted on a German server which will attempt to infect the victim's computer with additional malware from the FakeScanti Trojan family. ESG security researchers consider that the AV Secure 2012 is a dangerous presence on your computer that, if left untreated, can result in severe consequences (such as loss of your bank account, credit card information and online email accounts.)

AV Secure 2012's Redirects and Unusual Behavior

Browser hijackers and infections that target your search engine results are fairly commonplace when it comes to Trojans designed to open up a backdoor on your computer system or with scams involving endless streams of websites containing nothing but advertisements. Most of the time, these kinds of scams can be traced to variants of the Google Redirect Virus, a browser hijacker with many names, versions, variants and possible behaviors. Previously, most rogue security programs would simply block access to the Internet or display an error message whenever the victim attempted to connect to any website that could end up being a threat to the rogue security program in question. The way AV Secure 2012 and its clones manipulate Windows' system settings in order to change your search engine results is not often linked with this kind of rogue security program and may surprise many experienced computer users. Despite its unusual behavior, dealing with AV Secure 2012 is done best with a real anti-virus program while running Windows in Safe Mode.

Technical Information

Registry Details

AV Secure 2012 creates the following registry entry or registry entries:
RegistryKey
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\C0AB6693AB3202B4B9D95716ED5CE4A6\SourceList

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.