AVASoft Antivirus Professional
Posted: March 19, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 10/10 |
|---|---|
| Infected PCs: | 136 |
| First Seen: | March 19, 2013 |
|---|---|
| Last Seen: | May 1, 2023 |
| OS(es) Affected: | Windows |
AVASoft Antivirus Professional is a rogue anti-malware scanner that claims to be able to remove various PC threats from your computer while its real ability to detect any kind of malicious software is, at best, nonfunctional. As a recognizable member of the WinWeb Security family of scamware, AVASoft Antivirus Professional never should be trusted to disinfect your PC and, certainly, never purchased. Because AVASoft Antivirus Professional may cause issues that can include browser hijacks and unfairly-blocked applications, SpywareRemove.com malware research team recommends removing AVASoft Antivirus Professional for free by employing a legitimate anti-malware scanner against your AVASoft Antivirus Professional infection.
Why AVASoft Antivirus Professional is Neither 'Professional' Nor 'Antivirus'
With a brand name that's crafted to resemble legitimate names in the anti-malware industry, AVASoft Antivirus Professional tries to pass itself off as a useful tool for removing harmful software such as viruses and Trojans. However, AVASoft Antivirus Professional's system scans always return results that detect nonexistent infections – much like its pop-up warnings, which, in many cases, are designed to resemble normal Windows messages. Even though AVASoft Antivirus Professional isn't capable of enacting any of the security features AVASoft Antivirus Professional claims to have, AVASoft Antivirus Professional requests money for a registration process that, supposedly, will allow AVASoft Antivirus Professional to fix any persistent problems on your computer.
Similar to other members of the diverse Winwebsec family, AVASoft Antivirus Professional also may engage in direct attacks against your computer's security. These attacks make it more difficult than usual to remove AVASoft Antivirus Professional under normal circumstances, and make it appear as though your computer is suffering through more malware-related attacks than it actually is enduring. SpywareRemove.com malware researchers have outlined some of AVASoft Antivirus Professional's major hostile functions with the following list:
- AVASoft Antivirus Professional may attempt to block all but a small list of white-listed applications; the white-list primarily consists of programs that are essential for running Windows. Its program-blocking attacks may be accompanied by pop-up warnings indicating false information about the blocked program, such as its being infected.
- AVASoft Antivirus Professional also will try to disable many basic security features, such as the Windows update manager and the Windows Firewall.
- Finally, you also may experience unusual web-browsing events that redirect you away from safe websites or display erroneous warning screens.
Taking a Hard Stand Against AVASoft Antivirus Professional
AVASoft Antivirus Professional doesn't need to be purchased or registered, and SpywareRemove.com malware experts explicitly warn against treating AVASoft Antivirus Professional as anything other than a danger to your PC. Like many similar types of rogue anti-malware programs, AVASoft Antivirus Professional should be disabled before you use anti-malware products to remove AVASoft Antivirus Professional safely. Doing so will prevent AVASoft Antivirus Professional from blocking the applications that can help you disinfect your computer.
SpywareRemove.com malware researchers also extend similar warnings to close relatives of AVASoft Antivirus Professional within the Winwebsec family of fake anti-malware scanners. AVASoft Antivirus Professional's relatives include such examples as Antivirus Security, System Security, AntiSpyware Pro 2009, Total Security, Total Security 2009, Security Tool, Trojan.RogueAV.a.gen, System Adware Scanner 2010, FakeAlert-KW.e, Advanced Security Tool 2010, System Tool 2011, MS Removal Tool, Antivirus Center, Security Shield, Personal Shield Pro, Advanced PC Shield 2012, Security Sphere 2012 and Futurro Antivirus.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%ALLUSERSPROFILE%\12D973C4A70F481A000012D960EF4C20\12D973C4A70F481A000012D960EF4C20.exe
File name: 12D973C4A70F481A000012D960EF4C20.exeSize: 382.46 KB (382464 bytes)
MD5: ae21c2538241941374047ae10b7d2ca8
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\12D973C4A70F481A000012D960EF4C20
Group: Malware file
Last Updated: August 17, 2022
%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe
File name: %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
%Desktopdir%\AVASoft Antivirus Professional.lnk
File name: %Desktopdir%\AVASoft Antivirus Professional.lnkFile type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%Programs%\AVASoft Antivirus Professional\AVASoft Antivirus Professional.lnk
File name: %Programs%\AVASoft Antivirus Professional\AVASoft Antivirus Professional.lnkFile type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]
File name: %CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS]
File name: %CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS]Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS].exe
File name: %CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS].exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
%CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS].ico
File name: %CommonAppData%\[RANDOM CHARACTERS AND NUMBERS]\[RANDOM CHARACTERS AND NUMBERS].icoMime Type: unknown/ico
Group: Malware file
Registry Modifications
File name without pathAVASoft Professional Antivirus.lnkHKEY..\..\{Value}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVASoft Antivirus ProfessionalHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVASoft Antivirus Professional\DisplayIcon = "%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe,0"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVASoft Antivirus Professional\DisplayName = "AVASoft Antivirus Professional"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVASoft Antivirus Professional\ShortcutPath = "%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe" -u"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVASoft Antivirus Professional\UninstallString = "%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe" -u"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_CURRENT_USER \Software\Microsoft\Windows\CurrentVersion\RunOnce\[RANDOM] = "%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce = "[RANDOM CHARACTERS AND NUMBERS]"
Additional Information
| # | Message |
|---|---|
| 1 | AVASoft Professional Antivirus Firewall Aler |
| 2 | AVASoft Professional Antivirus Firewall Alert AVASoft Professional Antivirus Firewall has blocked a program from accessing the Internet. Internet Explorer Internet Browser is infected with worm SVCHOST.Stealth.Keyloger. This worm is trying to send your credit card details using Internet Explorer Internet Browser to connect to remote host. |
| 3 | AVASoft Professional Antivirus Warnin |
| 4 | AVASoft Professional Antivirus Warning Intercepting programs that may compromise your privacy and harm your system have been detected on your PC. Click here to remove them immediately with AVASoft Professional Antivirus. |
| 5 | AVASoft Professional Antivirus Warning Some critical system files of your computer were modified by malicious program. It may cause system instability and data loss. Click here to block unauthorised modification by removing threats (Recommended) |
| 6 | AVASoft Professional Antivirus Warning Your PC is still infected with dangerous viruses. Activate antivirus protection to prevent data loss and avoid the theft of your credit card details. |
| 7 | Security Monitor: WARNING |
| 8 | Security Monitor: WARNING! Attention! System detected a potential hazard (TrojanSPM/LX) on your computer that may infect executable files. Your private information and PC safety is at risk. To get rid of unwanted spyware and keep your computer safe your need to update your current security software. Click Yes to download official intrusion detection system (IDS software). |
| 9 | Spyware.IEMonster activity detected. This is spyware that attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other programs |
| 10 | Spyware.IEMonster activity detected. This is spyware that attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other programs. Click here to remove it immediately with AVASoft Professional Antivirus. |
| 11 | Warning!
Application cannot be executed. The file cmd.exe infected. Please activate your antivirus software. Warning! The site you are trying visit may harm your computer! Your security setting level puts your computer at risk! Activate AVASoft Professional Antivirus, and enable safe web surfing (recommended). Ignore warnings and visit that site in the current stat (not recommended). |
| 12 | Warning: Your computer is infecte |
| 13 | Warning: Your computer is infected Detected spyware infection! Click this message to install the last update of security software... |
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.