According to S!Ri
Antivirus Protection is a fake security software (rogue). It is from the same family as: Security Monitor 2012, Security Solution 2011, Antivirus Antispyware 2011, AntiVirus System 2011, Security Inspector 2010, AntiVirus Studio 2010, Desktop Security 2010, Total PC Defender 2010, Desktop Defender 2010, Contraviro, UnVirex.
Fake BSoD
Unpack
Anti
Serial
To register (and help removal), copy paste this code: LIC-99D0-1239-KJAS-354S-SQD4-CJKF-KF67-GJ78-FGHK-ZDU6
Kaspersky Lab Technical Support fail by giving a old serial (did they even debugged the FakeAV?)
The following urls were found:
• dns: 1 » ip: 85.17.58.199 - adresse: PRO-BESTMUSIC.US
http://pro-bestmusic.us/ea.php?p=12&aid=
• dns: 1 » ip: 85.17.58.199 - adresse: FINELABOZP.IN
http://finelabozp.in/ea.php?p=1&aid=1
• dns: 1 » ip: 195.226.218.138 - adresse: ANTIVIRUSPROTECTION2012.COM
http://www.antivirusprotection2012.com/buy/index/1/9B11F1579114D8F08FE8069672F71172
• dns: 1 » ip: 184.22.135.174 - adresse: SAFEBILLINGSERVICE.COM
http://safebillingservice.com/buy/?affiliate_id=1&machine_id=&product_domain=antivirusprotection2012.com
http://pro-bestmusic.us/ea.php?p=12&aid=
• dns: 1 » ip: 85.17.58.199 - adresse: FINELABOZP.IN
http://finelabozp.in/ea.php?p=1&aid=1
• dns: 1 » ip: 195.226.218.138 - adresse: ANTIVIRUSPROTECTION2012.COM
http://www.antivirusprotection2012.com/buy/index/1/9B11F1579114D8F08FE8069672F71172
• dns: 1 » ip: 184.22.135.174 - adresse: SAFEBILLINGSERVICE.COM
http://safebillingservice.com/buy/?affiliate_id=1&machine_id=&product_domain=antivirusprotection2012.com
Thanks to kyREcon :)
How does it throw the BSOD?Using a batch file as it's the easiest way?
ReplyDeletesad, the BSoD is a fake one
ReplyDelete