KSecurity
KSecurity is an unmistakable piece of malware, because KSecurity is one of a handful of Korean rogue anti-virus applications that infects PC's outside of the Korean market. Generally, the only thing in English in any of Ksecurity's windows or interfaces is the actual name "KSecurity."
Table of Contents
What KSecurity Looks Like
If you do not speak Korean, or your computer does not have support for Korean fonts installed, KSecurity can seem like quite a mystery. Windows will interpret the Korean characters as garbled, meaningless strings of Roman-alphabet special characters. Obviously, this doesn't happen with KSecurity's graphics that contain Korean text, but it will happen with anything that is supposed to be text, like pop-up messages and application shortcuts. (Yes, KSecurity creates shortcuts for itself, and if you have KSecurity on your computer, you can't fail to notice these.)
Ksecurity’s Common Behavior
Reportedly, the content of KSecurity's alerts and interfaces is the same kind of rubbish you would find in any other rogue anti-virus application. In other words, KSecurity will run fake scans and give you fabricated lists of results, and then claim that you have to purchase its software in order to remove these threats. KSecurity also generates pop-up messages and alerts, including one with different payment options and a bogus customer service phone number. KSecurity also is reputedly capable of preventing other programs from running, redirecting the browser, and preventing you from accessing the Internet altogether. So, KSecurity has the same disabling effect on a computer as any other rogue anti-virus program, and KSecurity is just as malicious. Ksecurity is just as much of a scam, too, because paying for KSecurity does not cause KSecurity to go away or to gain any real functionality.
KSecurity infects computers by way of Trojans, in general, although KSecurity may be downloaded directly from a malicious site which claims to be providing actual anti-virus software. The Trojans that support KSecurity tend to be hidden in video codecs and downloads from shady websites, so that you download the Trojan without knowing it. Then, the downloaded Trojan makes sure that KSecurity gets downloaded and set up.
Circunstances of Ksecurity Emergence
Infections of KSecurity in non-Korean-speaking areas of the world began to be reported in September of 2010, with an increase in attention on this particular malware in October 2010. KSecurity may be a mutation of other Korean rogue security applications MegaVaccine and VirusCure.
