Win32/FakeScanti
Win32/FakeScanti is a rogue that claims to scan for malware and displays fake warnings of "malicious programs and viruses". It tells you that you need to pay to register this fake program and remove the non-existent threats. Win32/FakeScanti variants have been observed to use names like:
- AKM Antivirus Pro
- AV Guard Online
- BlueFlare Antivirus
- Guard Online
- Milestone Antivirus
- Open Cloud AV
- OpenCloud Antivirus
- Security Guard 2012
- Sysinternals Antivirus
- Windows Antivirus Pro
- Windows Police Pro
- XJR Antivirus
- Your PC Protector
AV Security 2012
AV Security 2012 is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
AV Guard Online
AV Guard Online is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
BlueFlare Antivirus
BlueFlare Antivirus is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that he needs to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
OpenCloud Security
OpenCloud Security is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
Open Cloud AV
Open Cloud AV is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
OpenCloud Antivirus
OpenCloud Antivirus is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
Security Guard 2012
Security Guard 2012 is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
System Security 2012
System Security 2012 is a variant of Win32/FakeScanti - a family of trojans that claim to scan for malware and display fake warnings of "malicious programs and viruses". It then informs the user that they need to pay money to register the software in order to remove these non-existent threats. The malware may also attempt to terminate processes and block access to websites.
Cloud AV 2012
System Security 2011
Rogue:Win32/FakeScanti
Windows Defender Antivirus detects and removes this threat. See the Win32/FakeScanti description for more information.
SysinternalsAntivirus
WiresharkAntivirus
Behavior:Win32/FakeScanti
TrojanDownloader:Win32/FakeScanti
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.