14 DAY TRIAL // The latest rogue antivirus, called Windows Basic Antivirus, spreads with the aid of fake codecs that are allegedly requested to see the phony videos users are presented with almost daily on Facebook and other social media sites.
GFI informs that the malicious software is installed on computers along with a fake Flash Player update that’s served when the codec is presumably required.
Once it infects a system, Windows Basic Antivirus starts warning the victim that a large number of threats are present on his (or her) device.
As in most similar cases, for the infected files to be cleaned up the product must be purchased, but in reality there’s no guarantee that, once the crooks are handed over the money, they’ll bother to remove the so-called threats.
This is why it’s recommended that you never transfer money to anyone after being presented with an antivirus that fits the description.
The malicious file can be removed manually from the folders <Drive>:\DOCUMENTS AND SETTINGS\<USER>\APPLICATION DATA\Protector-<random Names>.exe, or Drive>:\USERS\<USER>\AppData\ROAMING\Protector-<Random Names>.exe (depending on the operating system).
However, experts recommend its removal using a special software provided by security solutions providers, especially since it may come with other malware attached.