System Care Antivirus virus sample found by Rafael before the new year eve
Fake anti-virus programs are still among the most common types of online scams. Criminals continue to create fake anti-virus programs like System Care Antivirus in order to fool unsuspecting computer users into buying useless security software. These fake anti-virus programs are renamed and repackaged every few weeks, a pattern that has repeated itself consistently since their first appearance nearly a decade ago. Despite its name, System Care Antivirus is not actually an anti-virus program. In fact, it is the complete opposite; System Care Antivirus is a kind of malware infection commonly known as a rogue security program. System Care Antivirus is designed to cause problems on a computer rather than to fix them. System Care Antivirus is part of a widespread wave of Trojan infections that have been associated with attack websites using the Fake codecs and unknown email attachaments in order to distribute malware. If System Care Antivirus is installed on your computer, you should treat it as a malware infection that should be eliminated right away with the assistance of a reliable anti-malware program.
System Care Antivirus is a member of the WinWeb Security family that have among its members System Security, Security Shield, Security Shield 2012, Winweb Security, Antivirus Defence, System Progressive Protection, Live Essential Platinum, Security Monitor 2012, Antivirus Security, Security Scanner 2012, Disk Antivirus Professional, Security Shield Pro 2011, Advanced PC Shield 2012, Smart Protection 2012, Essential Cleaner, Antivirus Security Pro, Antivirus Center, Antiviral Factory 2013, Security Tool, MS Removal Tool, Live Security Professional, Dream Scan Soft, Windows Ultra-Antivirus, Antivirus Security Pro 2014, Total Security, Total Security 2009, System Security 2012, Futurro Antivirus, System Security 2011, Live Security Platinum, Smart Fortress 2012, Smart Guard Protection, Antivirus System, System Tool 2011, Security Sphere 2012, Advanced Security Tool 2010, System Adware Scanner 2010, Antivirus Security Pro 2013, Security Shield 2011, Personal Shield Pro, Antivirus Security 2013, Windows Secure Kit 2012, Rogue.System Doctor 2014, Windows Attacks Preventor, Attentive Antivirus, Microsoft Antivirus 2013, Sinergia Cleaner, Antimalware - Proven Antivirus Protection, Windows Secure Kit 2011, AVASoft Antivirus Professional.
Once System Care Antivirus enters your computer, System Care Antivirus installs its files and injects its code into running memory processes. This makes removal of System Care Antivirus difficult, especially since there is no uninstaller associated with this program. System Care Antivirus makes changes to the infected computer's settings, which cause System Care Antivirus to run automatically as soon as the infected computer starts up. In the moment that the computer user logs into Windows, System Care Antivirus runs a fake scan of the infected computer. This scan will always indicate that the victim's computer is severely infected with malware. It is important to note that these scans are not trustworthy and that they are actually outright lies meant to alarm you so that you will 'upgrade' System Care Antivirus.
Thanks to Malekal for the malware sample.