Windows Antivirus Patch
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 100 % (High) |
| Infected Computers: | 1 |
| First Seen: | April 16, 2012 |
| OS(es) Affected: | Windows |
Windows Antivirus Patch Image
ESG malware analysts have detected one more variant of the FakeVimes family of fake security applications: Windows Antivirus Patch. Like most fake security programs, Windows Antivirus Patch will try to convince you that Windows Antivirus Patch is a legitimate security program with the use of error messages, pop-up notifications, and an attractive interface that mimics real security programs. The main goal of Windows Antivirus Patch is to carry out a scam which involves getting your money and personal information in exchange for a "full version" of Windows Antivirus Patch.
Other problems with the Windows Antivirus Patch include the fact that Windows Antivirus Patch can cause browser redirects, make your computer system more vulnerable by disabling your security software, and changing your computer system's basic security settings. Because of this, removing Windows Antivirus Patch from an infected computer system should be a top priority. While many computer users may consider its constant error messages a mere annoyance, the overall effect of Windows Antivirus Patch on an infected computer system can make Windows Antivirus Patch a severe threat to a computer's security.
Table of Contents
An Overview of the Windows Antivirus Patch Scam
Inexperienced computer users may be lulled into thinking that Windows Antivirus Patch is a genuine upgrade for their computer system's security. However, Windows Antivirus Patch has no connection to Microsoft and has absolutely no real anti-virus capabilities. Windows Antivirus Patch is very similar to numerous other fake security programs in the FakeVimes family, which enjoyed a resurgence in 2012. Some clones of Windows Antivirus Patch include Virus Melt, Presto TuneUp, Fast Antivirus 2009, Extra Antivirus, Windows Security Suite, Smart Virus Eliminator, Packed.Generic.245, Volcano Security Suite, Windows Enterprise Suite, Enterprise Suite, Additional Guard, PC Live Guard, Live PC Care, Live Enterprise Suite, Security Antivirus, My Security Wall, CleanUp Antivirus, Smart Security, Windows Protection Suite, Windows Work Catalyst. Do not be fooled by Windows Antivirus Patch's main interface, which includes various convincing features like a supposed "advanced process control" and even a support button. These are all there to enhance the Windows Antivirus Patch scam and the illusion of this being a real security program.
Trying to fix any of the supposed virus infections that Windows Antivirus Patch detects will invariably result in error messages claiming that you need to "register" Windows Antivirus Patch and obtain its "full version" which, of course, is not free. To remove Windows Antivirus Patch, ESG malware analysts recommend using a real, fully-updated anti-malware program. You can stop many of its most annoying features with the registration code '0W000-000B0-00T00-E0020', but this will not remove Windows Antivirus Patch, only stop some of its error messages and redirects. Windows Antivirus Patch should still be removed immediately after entering the registration code.
SpyHunter Detects & Remove Windows Antivirus Patch
Windows Antivirus Patch Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | Protector-tjlu.exe | 4d0f1b82bf17efb39157b72c850a2157 | 1 |
| 2. | %AppData%\NPSWF32.dll | ||
| 3. | %AppData%\Protector-[RANDOM CHARACTERS].exe | ||
| 4. | %AppData%\result.db | ||
| 5. | %CommonStartMenu%\Programs\Windows Antivirus Patch.lnk | ||
| 6. | %Desktop%\Windows Antivirus Patch.lnk |
Registry Details
Messages
The following messages associated with Windows Antivirus Patch were found:
|
Error
Trojan activity detected. System data security is at risk. It is recommended to activate protection and run a full system scan. |
|
Warning
Firewall has blocked a program from accessing the Internet C:\program files\internet explorer\iexplore.exe is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server. |
|
Warning! Identity theft attempt Detected
Hidden connection IP: 58.82.12.124 Target: Your passwords for sites |
