Security Sphere 2012
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 100 % (High) |
| Infected Computers: | 29 |
| First Seen: | September 29, 2011 |
| Last Seen: | September 9, 2019 |
| OS(es) Affected: | Windows |
Security Sphere 2012 Image
Security Sphere 2012 – Just One More Clone of the Same Old Rogue Security Programs
Security Sphere 2012 is a rogue security application from an extensive family of rogue security programs. Some clones of Security Sphere 2012 include XP Anti-Spyware 2010, Win 7 Smart Security 2010, Desktop Defender 2010, Vista Guardian 2010, XP Internet Security 2011, and Vista Home Security 2011 – the list can go on forever, as there are many versions of these fake programs stretching back to at least 2009. Despite their different names and interface, they are, fundamentally, the same rogue security application, with a core that is reminiscent of older rogue security programs dating from as far back as 2005. According to ESG security researchers, there is no question that Security Sphere 2012 has absolutely no security components, existing mainly to scam computer users through deceptive tactics and alarming error messages. Security Sphere 2012 has been known to disable legitimate security programs and interact with known Trojans and rootkits. This is why ESG malware analysts recommend getting rid of Security Sphere 2012 immediately.
How Security Sphere 2012 Manifests Itself
Most rogue security programs cause the same symptoms on an infected computer: a large number of fake error messages, browser redirects and performance problems. Security Sphere 2012 uses a blue interface that is very similar to the interface for legitimate Windows security components. It also uses a colored shield logo that is meant to mimic the shield used in Microsoft Security Essentials and in Windows Security Center. However, these are only meant to fool inexperienced computer users into thinking that Security Sphere 2012 is actually a real anti-virus program approved by Microsoft. Security Sphere 2012 runs a fake scan automatically and then keeps showing alarming error messages until the victim gives up and decides to pay for a "full version" of Security Sphere 2012, in order to fix these fake problems. Security Sphere 2012 can show error messages as pop-up alerts, as well as notifications from the Windows Taskbar. Below is an example of a typical fake security alert from Security Sphere 2012:
Virus infection!
System security was found to be compromised. Your computer is now infected. Attention, irreversible changes may occur. Private data may be stolen.
Click here now for an instant anti-virus scan.
Taking Security Sphere 2012 to Task for Its Fake Security
Dealing with Security Sphere 2012
To stop most of Security Sphere 2012's symptoms, you can use the registration code '2233-298080-3424.' However, this will not remove Security Sphere 2012; it will only stop Security Sphere 2012 from displaying most of Security Sphere 2012's most annoying features. To get rid of Security Sphere 2012, you will need to start up your computer in Safe Mode (so that Security Sphere 2012 will not block your anti-malware software) and then use a legitimate anti-malware utility to remove Security Sphere 2012 and all of its harmful components.
SpyHunter Detects & Remove Security Sphere 2012
Security Sphere 2012 Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | %Documents and Settings%\[UserName]\Application Data\[RANDOM CHARACTERS].exe | N/A | |
| 2. | %Temp%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe | N/A | |
| 3. | %Documents and Settings%\[UserName]\Desktop\Security Sphere 2012.lnk | N/A | |
| 4. | %Documents and Settings%\[UserName]\Local Settings\Temp\[RANDOM CHARACTERS].tmp | N/A | |
| 5. | %Temp%\[RANDOM CHARACTERS]\ | N/A | |
| 6. | nN02901GfNiF02901.exe | d6365c3365a53b513780bda09c0ba7b2 | 0 |
| 7. | Mn02901GfNiF02901.exe | c5a3cf0e35d42ba557bd7bdbbb883409 | 0 |
| 8. | Lo02901GfNiF02901.exe | 8ade31ea6af2a42c522696eb375e76eb | 0 |
| 9. | eE02901GfNiF02901.exe | 8aa04ec92727f9c527bdab2e88ed5154 | 0 |
| 10. | vL02901GfNiF02901.exe | 88b31496141aede9c1b336a5e7ebe756 | 0 |
Registry Details
Messages
The following messages associated with Security Sphere 2012 were found:
| Security Sphere 2012 Warning<br /> Intercepting programs that may compromise your privacy and harm your system have been detected on your PC.<br /> Click here to remove them immediately with Security Sphere 2012 |
| Security Sphere 2012 Warning<br /> Your computer is still infected with dangerous viruses. Activate antivirus protection to prevent data loss and avoid theft of your credit card details. <br /> Click here to activate protection. |
| Warning message from Internet browser. This page under virus attack. This may crash your system.<br /> <br /> This may be caused by:<br /> <br /> - Virus content founded at this site trying to install its components.<br /> - Malicious & unknown network processes are determined.<br /> - Your system is under virus attack<br /> - Negative references from other citizens concerning this web page.<br /> - Your system ports and backdoors have been checked by visited page for external access.<br /> <br /> Recommendations:<br /> <br /> - Obtain a license of "Security Sphere 2012" to protect your PC for the safest browsing Internet pages (desirable)<br /> - Launch spyware, virus and malware scanning process.<br /> - Keep browsing |
| Warning!<br /> Application cannot be executed. The file notepad.exe is infected.<br /> Please activate your antivirus software. |
| Warning: Your computer is infected<br /> Detected spyware infection!<br /> Click this message to install the last update of security software... |
