Smart Anti-Malware Protection is a rogue anti-spyware program from the same family as Virus Doctor. This infection is promoted through web sites that show advertisements that pretend to be online anti-malware scanners. These scanners will then pretend to scan your computer, and when finished, will state that your computer is infected and that you need to download and install Smart Anti-Malware Protection to protect yourself. The truth is that these online scanners are all fake and are only an advertisement. They have no way of knowing what is running on your computer.

Once Smart Anti-Malware Protection is installed on your computer it will be configured to start automatically. It will also create numerous files that will be detected by the program as malware. Some of the files that are created are:

%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\CLSV.drv
%UserProfile%\Recent\ddv.exe
%UserProfile%\Recent\eb.dll
%UserProfile%\Recent\kernel32.sys
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\SICKBOY.tmp

When the program scans your computer it will detect the files it created and state that they are infections. It will then prompt you to remove the files, but will not allow you to do so until you first purchase the program. This is a scam as the files are all harmless and are created by the Smart Anti-Malware Protection program in the first place. Therefore, please ignore any of the scan results this program displays.

While Smart Anti-Malware Protection is running it will also display fake security warnings that are designed to make you think that your computer has a severe computer security problem. The text of some of the alerts you will see are:

Warning! Access conflict detected!
An unidentified program is trying to access system process address space.
Process Name: AllowedForm
Location: C:\Windows\...\notepad.exe

Warning! Identity theft attempt detected

Memory access problem
WindowsErrorForm has encountered a problem at address 0x1FC408.
We are sorry for the inconvenience.
If you see this error again, operational information can be irrevocably lost.

Warning! Virus detected
Threat Detected: Trojan-PSW.VBS.Half
Description: This is a VBScript-virus. It steals user's passwords.

As all of these security alerts are fake, they should be ignored.

As you can see, Smart Anti-Malware Protection is a scam and was only created to trick you into purchasing it. You should not purchase it, and if you have, you should contact your credit card company and dispute the charge. To remove Smart Anti-Malware Protection and any related malware, please follow the steps in the removal guide below.

Antivirus Smart Protection is a rogue anti-spyware program from the Rogue.VirusDoctor family. This program is classified as a rogue as it displays false information in order to trick you into purchasing the program. This infection is spread via two methods. The first method is through web sites that state they are an online anti-malware scanner called Windows Web Security. When you visit these sites you will be presented with a page that pretends to scan your computer for infections. When it is done, it will state that your computer has numerous infections and that you need to download a program to clean your computer. It is important to remember that any time you encounter a web page that states that your computer is infected, you should not believe them as the majority of these pages are scams trying to get you to install the actual infection. The second method that can be used to install this rogue is through hacked web sites that install Antivirus Smart Protection on to your computer without your knowledge by exploiting vulnerabilities in your outdated programs.

Once Antivirus Smart Protection is installed on your computer it will be configured to start automatically. It will also create numerous harmless files that will then detected by the program as malware when it scans your computer. The files that are created are:

%UserProfile%\Recent\cb.dll
%UserProfile%\Recent\CLSV.drv
%UserProfile%\Recent\CLSV.sys
%UserProfile%\Recent\eb.exe
%UserProfile%\Recent\exec.drv
%UserProfile%\Recent\FS.tmp
%UserProfile%\Recent\kernel32.tmp
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\PE.tmp
%UserProfile%\Recent\ppal.tmp
%UserProfile%\Recent\runddlkey.exe
%UserProfile%\Recent\runddlkey.sys
%UserProfile%\Recent\snl2w.sys

When the program scans your computer it will detect numerous infections, including the files listed above that it created in the first place, and then prompt you to remove them. When you attempt to remove them, though, it will state you are unable to unless you first purchase the program. As the scan results for this program are false, please do not get scared into purchasing the program.

While Antivirus Smart Protection is running it will also display fake security warnings that are designed to make you think that your computer has a severe computer security problem. These warnings may state that viruses have been found, that your computer is under attack, or that someone is accessing your private information. Some examples of these fake alerts are listed below:

System Alert
Suspicious software which may be malicious has been detected on your PC. Click here to remove this threat immediately using Antivirus Smart Protection.

System Alert
Antivirus Smart Protection has detected potentially harmful software in your system. It is strongly recommended that you register Antivirus Smart Protection to remove all found threats immediately.

System Alert
Potentially harmful programs have been detected in your system and need to be dealt with immediately. Click here to remove them using Antivirus Smart Protection.

Warning! Spambot detected!
Attention! A spambot sending viruses to your e-mail contacts has been detected on your PC.

Warning! Identity theft attempt detected
Recommended: Please click "Remove All" button to erase all infected files and protect your PC.

Address space conflict
Warning! Access conflict detected
An unidentified program is trying to access system process address space.

System Message
Your PC may still be infected with dangerous viruses. Antivirus Smart Protection protection is needed to prevent data loss and avoid theft of your personal data and credit card details. Click here to activate protection.

Warning! Virus Detected
Threat Detected: Trojan-Spy.HTML.BankFraud.ra
Recommended: Please click "Remove All" button to erase all infected files and protect your PC.

Just like the scan results, all of these security alerts are fake and should be ignored.

As you can see, Antivirus Smart Protection was created to scare you into thinking computer is infected so that you will be scammed into purchasing the program. For no reason should you purchase this program, and if you have, you should contact your credit card company and dispute the charge. To remove Antivirus Smart Protection and related malware, please follow the steps in the removal guide below.

Malware Protection Center is a rogue anti-spyware program from the Rogue.VirusDoctor family. This program is classified as a rogue as it displays false information in order to trick you into purchasing the program. This infection is spread via two methods. The first method is through web sites that state they are an online anti-malware scanner called Windows Web Security. When you visit these sites you will be presented with a page that pretends to scan your computer for infections. When it is done, it will state that your computer has numerous infections and that you need to download a program to clean your computer. It is important to remember that any time you encounter a web page that states that your computer is infected, you should not believe them as the majority of these pages are scams trying to get you to install the actual infection. The second method that can be used to install this rogue is through hacked web sites that install Malware Protection Center on to your computer without your knowledge by exploiting vulnerabilities in your outdated programs.

Once Malware Protection Center is installed on your computer it will be configured to start automatically. It will also create numerous harmless files that will then detected by the program as malware when it scans your computer. The files that are created are:

%UserProfile%\Recent\cb.drv
%UserProfile%\Recent\eb.exe
%UserProfile%\Recent\eb.sys
%UserProfile%\Recent\energy.dll
%UserProfile%\Recent\energy.drv
%UserProfile%\Recent\kernel32.exe
%UserProfile%\Recent\kernel32.tmp
%UserProfile%\Recent\PE.dll
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\PE.tmp
%UserProfile%\Recent\runddlkey.exe
%UserProfile%\Recent\SM.tmp
%UserProfile%\Recent\snl2w.sys
%UserProfile%\Recent\std.dll
%UserProfile%\Recent\std.drv
%UserProfile%\Recent\tjd.exe

When the program scans your computer it will detect numerous infections, including the files listed above that it created in the first place, and then prompt you to remove them. When you attempt to remove them, though, it will state you are unable to unless you first purchase the program. As the scan results for this program are false, please do not get scared into purchasing the program.

While Malware Protection Center is running it will also display fake security warnings that are designed to make you think that your computer has a severe computer security problem. These warnings may state that viruses have been found, that your computer is under attack, or that someone is accessing your private information. Some examples of these fake alerts are listed below:

System Alert
Suspicious software which may be malicious has been detected on your PC. Click here to remove this threat immediately using Malware Protection Center.

Address space conflict
Warning! Access conflict detected
An unidentified program is trying to access system process address space.

System Message
Your PC may still be infected with dangerous viruses. Malware Protection Center protection is needed to prevent data loss and avoid theft of your personal data and credit card details. Click here to activate protection.

Warning! Virus Detected
Threat Detected: Trojan-Spy.HTML.BankFraud.ra
Recommended: Please click "Remove All" button to erase all infected files and protect your PC.

Just like the scan results, all of these security alerts are fake and should be ignored.

As you can see, Malware Protection Center was created to scare you into thinking computer is infected so that you will be scammed into purchasing the program. For no reason should you purchase this program, and if you have, you should contact your credit card company and dispute the charge. To remove Malware Protection Center and related malware, please follow the steps in the removal guide below.

Smart Protection 2012 is a rogue anti-spyware program from the same family as Security Sphere 2012. This program is categorized as a rogue anti-spyware program because it pretends to be a legitimate security program, but is actually a program that purposely display false scan results, fake security alerts, and hijacks your computer so that you are not able to run your normal applications. Smart Protection 2012 is installed onto a computer through other viruses, hacked websites that exploit vulnerable programs on your computer, or through fake online anti-malware scanners that prompt you to install the program. When Smart Protection is installed it will create a random named folder in c:\Documents and Settings\All Users\Application Data\, in XP, or C:\ProgramData, in Windows Vista and Windows 7. It will then be configured to start automatically when you login to your computer.

Once this rogue is started it will automatically pretend to scan your computer for viruses. When it has finished it will state that there are numerous infections on your computer, but will not allow you to remove any of them until you first purchase the program. The scan results for this program will not include any actual file names of the supposed infections, but rather just descriptions of the threat. It is important to understand that Smart Protection 2012 was created for one reason; to scare you into thinking that your computer is severely infected so that you will then purchase the program. With that said, you should not be alarmed by any of the scan results that this program displays.

As protection mechanism, Smart Protection 2012 will terminate any executables that you attempt to run on your computer. It does this to prevent you from running legitimate security programs that may detect and remove this infection. When you attempt to start an executable you will instead be greeted with the following false message:

Warning!
Application cannot be executed. The file notepad.exe is infected.
Please activate your antivirus software.

While Smart Protection 2012 is running it will also display fake security alerts and warnings from your Windows taskbar. These alerts are designed to scare you into thinking that your computer is infected and that you should purchase the program to protect yourself. The text of these messages include:

Warning: Your computer is infected
Detected spyware infection!
Click this message to install the last update of security software...

Smart Protection 2012 Warning
Your computer is still infected with dangerous viruses. Activate antivirus protection to prevent data loss and avoid theft of your credit card details.
Click here to activate protection.

Smart Protection 2012 Warning
Intercepting programs that may compromise your privacy and harm your system have been detected on your PC.
Click here to remove them immediately with Smart Protection 2012

Just like the fake scan results, these security alerts are all false and should be ignored.

As you can see, this program was created for the sole purpose of scaring you into thinking your computer has a problem and that you should purchase Smart Protection 2012 in order to fix it. It goes without saying that you should definitely not buy Smart Protection 2012, and if you already have, please contact your credit card company and dispute the charges stating that the program is a scam and a computer virus. To remove Smart Protection 2012 and other related malware, please use the free removal guide below.

Internet Security 2012 or Internet Security are rogue anti-spyware programs from the same family as Privacy Protection. This rogue will display false scan results in order to trick you into thinking that your computer is infected so that you will then purchase the program. When this infection is installed on your computer it will be configured to start automatically when you login to Windows. Once started it will scan your computer and then state that there are numerous infections on your computer. If you attempt to remove any of these so-called infections, though, it will state that you first need to purchase the program in order to remove anything. As many of these files are actually legitimate files, please do not manually delete any of the files that this rogue states are infections as it may affect the operation of your legitimate programs and Windows.

While running, Internet Security 2012 will also display fake security alerts on your computer. These security alerts are used to make you think that there are various security problems on your computer. The text of one of these alerts is:

Security Warning
Malicious program has been detected. Click here to protect your computer.

Firewall Warning
Hidden file transfers to remote host has been detected.
has detected a leak of your files through the Internet. We strongly recommend that you block the attack immediately.

In order to protect itself, Internet Security 2012 will also not allow you to run most executables on your computer. When you attempt to run an executable you will instead be greeted with a message that states that the program is infected. The text of this message is:

notepad.exe can not start
File notepad.exe is infected by W32/Blaster.worm. Please activate Internet Security 2012 to protect your computer.

Just like the fake scan results, these fake alerts are just another tactic to have you purchase the program and should be ignored.

As you can see, this program was created for the sole purpose of scaring you into thinking your computer is severely infected so that you will then purchase it. Therefore, do not purchase Internet Security 2012 for any reason, and if you already have, please contact your credit card company and state that the program is a computer infection and a scam and that you would like to dispute the charge. To remove this infection and related malware, please follow the steps in the guide below.

Internet Security Guard is a rogue anti-spyware program from the Rogue.VirusDoctor family. This program is classified as a rogue as it displays false information in order to trick you into purchasing the program. This infection is spread via two methods. The first method is through web sites that state they are an online anti-malware scanner called Windows Web Security. When you visit these sites you will be presented with a page that pretends to scan your computer for infections. When it is done, it will state that your computer has numerous infections and that you need to download a program to clean your computer. It is important to remember that any time you encounter a web page that states that your computer is infected, you should not believe them as the majority of these pages are scams trying to get you to install the actual infection. The second method that can be used to install this rogue is through hacked web sites that install Internet Security Guard on to your computer without your knowledge by exploiting vulnerabilities in your outdated programs.

Once Internet Security Guard is installed on your computer it will be configured to start automatically. It will also create numerous harmless files that will then detected by the program as malware when it scans your computer. The files that are created are:

%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\cb.drv
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\eb.dll
%UserProfile%\Recent\energy.exe
%UserProfile%\Recent\energy.tmp
%UserProfile%\Recent\fan.sys
%UserProfile%\Recent\fix.sys
%UserProfile%\Recent\FW.drv
%UserProfile%\Recent\gid.dll
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\ppal.sys
%UserProfile%\Recent\SICKBOY.tmp
%UserProfile%\Recent\sld.sys
%UserProfile%\Recent\SM.dll
%UserProfile%\Recent\SM.exe
%UserProfile%\Recent\snl2w.drv
%UserProfile%\Recent\tjd.tmp

When the program scans your computer it will detect numerous infections, including the files listed above that it created in the first place, and then prompt you to remove them. When you attempt to remove them, though, it will state you are unable to unless you first purchase the program. As the scan results for this program are false, please do not get scared into purchasing the program.

While Internet Security Guard is running it will also display fake security warnings that are designed to make you think that your computer has a severe computer security problem. These warnings may state that viruses have been found, that your computer is under attack, or that someone is accessing your private information. Some examples of these fake alerts are listed below:

Address space conflict
Warning! Access conflict detected
An unidentified program is trying to access system process address space.

System Message
Your PC may still be infected with dangerous viruses. Internet Security Guard protection is needed to prevent data loss and avoid theft of your personal data and credit card details. Click here to activate protection.

Memory access problem
WindowsErrorForm has encountered a problem at address 0x1FC408.
We are sorry for the inconvenience.

Just like the scan results, all of these security alerts are fake and should be ignored.

Without a doubt, Internet Security Guard is a scam that was created to trick you into thinking your computer was severely infected so that you will then purchase it. For no reason should you purchase this program, and if you have, you should contact your credit card company and dispute the charge. To remove Internet Security Guard and related malware, please follow the steps in the removal guide below.

System Check is a fake computer analysis and optimization program from the FakeHDD family of rogues. This rogue displays false alerts that are designed to make you think that your computer has hard disk problems that have lead to corrupt and missing data. It displays these alerts in order to scare you into purchasing the program so that you can fix these issues. In reality, though, there is nothing wrong with your hardware or data, so please ignore any error messages that this program displays. System Check is installed through hacked sites that exploit vulnerabilities in software that may be installed on your computer or through fake online scanner pages. Once installed, System Check will display false error messages and security warnings on the infected computer. These messages will state that there is something wrong with your computer's hard drive and then suggests that you download and install a program that can fix the problem. When you click on of these alerts, System Check will automatically be started.

System Check will be configured to start automatically when you login to Windows. Once started, it will display numerous error messages when you attempt to launch programs or delete files. System Check will then prompt you to scan your computer, which will then find a variety of errors that it states it cannot fix until you purchase the program. It will then prompt you to repair your PC, where it will pretend to fix fake problems on your computer and state that it was unable to repair some of them in order to make you feel there is a problem with your computer.

If you are infected with System Check it is important that you do not delete any files from your Temp folder or use any temp file cleaners. This is because when the infection is installed it will delete shortcuts found in various locations and store backups of them in the %Temp%\smtmp folder. It does this so that you when try to launch a program from your start menu, none of your shortcuts will appear and thus making you think that your computer has a serious problem. Therefore, you do not want to delete any of the files in your Temp folder as it will remove the backups that we will use later in the guide to restore your Windows Start Menu. For a list of folders that shortcuts are deleted and the corresponding directories where they are stored, please see this topic: Unhide.exe - A introduction as to what this program does.

To further make it seem like your computer is not operating correctly, System Check will also make it so that certain folders on your computer display no contents. When opening these folders, such as C:\Windows\System32\ or various drive letters, instead of seeing the normal list of files it will instead display a different folder's contents or make it appear as if the folder is empty. This is done to make it seem like there is corruption on your hard drive that is causing your files to not be displayed. It does this by adding the +H, or hidden, attribute to all of your files, which causes your files to become hidden. It will then change your Windows settings so that you cannot view hidden and system files. Once the rogue's processes are terminated you can enable the setting to view hidden files, and thus be able to see your files and folders again, by following the instructions in this tutorial:

How to see hidden files in Windows

System Check also attempts to make it so you cannot run any programs on your computer. If you attempt to launch a program it may terminate it and state that the program or hard drive is corrupted. It does this to protect itself from anti-virus programs you may attempt to run and to make your computer unusable so that you will be further tempted to purchase the rogue. The messages that will randomly be displayed are:

Hard drive clusters are partly damaged. Segment load failure.
Hard drive clusters are partly damaged. Segment load failure.

Critical Error
Hard drive critical error. Start a system diagnostics application to scan your hard disk for errors and performance problems.

Windows - Delayed Write Failed
Failed to save all the components for the file \System32\00004823. The file is corrupted or unreadable. This error may be caused by a PC hardware problem.

Windows detected a hard disk problem
A potential disk failure may cause loss of files, applications and documents stored on the hard disk. Please try not to use this computer until the hard disk is fixed or replaced.

Windows detected a hard disk problem
A potential disk failure may cause loss of files, applications and documents store on the hard disk. It's highly recommended to scan and solve HDD problems before continue using this PC.

Hard Drive Failure
The system has detected a problem with one or more installed IDE / SATA hard disks. It is recommended that you restart the system.

System Error
An error occurred while reading system files. Run a system diagnostic utility to check your hard disk drive for errors.

Critical Error
Hard drive critical error. Run a system diagnostic utility to check your hard disk drive for errors. Windows can't find hard disk space. Hard drive error.

Critical Error
Hard drive clusters are partly damaged. Segment load failure.

These are just further alerts trying to make you think your computer has a serious hard drive problem. It should be noted that if you attempt to run a program enough times it will eventually work.

When you perform the scan or use the fake System Check it will state that there are numerous problems on your computer, but that you first need to purchase it before it can fix any of them. Some examples of the fake problems it detects on your computer are:

Requested registry access is not allowed. Registry defragmentation required
Hard Drive rotational speed decreased by 20%
Disk drive C:\ is unreadable.
System files are damaged. System is unstable.
The problem may cause errors while loading operating system.
Ram memory speed decreased significantly and may cause system failure.
Read time of hard drive clusters less than 500 ms
32% of HDD space is unreadable
Bad sectors on hard drive or damaged file allocation table
GPU RAM temperature is critically high. Urgent RAM memory optimization is required to prevent system crash
Drive C initializing error
Ram Temperature is 83 C. Optimization is required for normal operation.
Hard drive doesn't respond to system commands
Data Safety Problem. System integrity is at risk.
Registry Error - Critical Error

While System Check is running it will also display fake alerts from your Windows taskbar. These alerts are designed to further scare you into thinking that your computer has an imminent hardware failure. The text of some of the alerts you may see include:

Critical Error!
Damaged hard drive clusters detected. Private data is at risk.

Critical Error
Hard Drive not found. Missing hard drive.

Critical Error
RAM memory usage is critically high. RAM memory failure.

Critical Error
Windows can't find hard disk space. Hard drive error

Critical Error
Windows OS can't detect a free hard drive space. hard drive error.

Critical Error!
Windows was unable to save all the data for the file \System32\496A8300. The data has been lost. This error may be caused by a failure of your computer hardware.

Critical Error
A critical error has occurred while indexing data stored on hard drive. System restart required.

System Check
The system has been restored after a critical error. Data integrity and hard drive integrity verification required.

Activation Reminder
System Check Activation
Advanced module activation required to fix detected errors and performance issues. Please purchase Advanced Module license to activate this software and enable all features.

Low Disk Space
You are running very low disk space on Local Disk (C:).

Windows - No Disk
Exception Processing Message 0x0000013

Critical Error
Hard drive clusters are partly damaged. Segment load failure.

Just like the fake corruption messages and fake scan results, these alerts are only designed to scare you into purchasing the program.

To make matters worse, recent variants of this family have been know to install the TDSS or ZeroAccess rootkits as well. These rootkits will attempt to stop you from using security programs that may help you to remove this infection. If you are infected with System Check and are unable to update your Malwarebytes's Anti-Malware definitions then you most likely have this rootkit installed. If this is the case, this guide will not be able to help you and you should instead follow the instructions in this topic in order to receive one-on-one help in removing this infection.

Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help

Without a doubt, the methods used by this program are fraudulent and criminal. Therefore, do not purchase System Check for any reason, and if you already have, please contact your credit card company and state that the program is a computer infection and a scam and that you would like to dispute the charge. To remove this infection and related malware, please follow the steps in the guide below.

Super AV is a rogue anti-spyware program that displays fake alerts and false scan results in order to trick you into thinking that your computer is infected. When this rogue is installed it will be configured it start automatically when you login to Windows. Once started, it will scan your computer and state that numerous legitimate files are computer infections. It will then prompt you to purchase the program before allowing you to remove any of these so-called infections. As none of the scan results are actually real, please ignore them and do not purchase this program.

This infection will also randomly display fake security warnings and alerts that are designed to make you think that your computer is infected, systems are under attack, or that private data is being transferred. The text of one of these alerts is:

Your computer is in danger!
Super AV has detected some serious threats to your computer!
These viruses needed to be eliminated immediately! Please click this icon to remove threats.

These fake alerts are intended to scare you into purchasing the program and should be ignored.

As you can see, this rogue was designed to scare you into thinking there is something wrong with your computer so that you will then be scared into purchasing it. Therefore, do not purchase Super AV for any reason, and if you already have, please contact your credit card company and state that the program is a computer infection and a scam and that you would like to dispute the charge. To remove this infection, please perform the following steps in the removal guide below.

Home Security Solutions is a rogue anti-spyware program from the Rogue.VirusDoctor family. This program is classified as a rogue as it displays false information in order to trick you into purchasing the program. This infection is spread via two methods. The first method is through web sites that state they are an online anti-malware scanner called Windows Web Security. When you visit these sites you will be presented with a page that pretends to scan your computer for infections. When it is done, it will state that your computer has numerous infections and that you need to download a program to clean your computer. It is important to remember that any time you encounter a web page that states that your computer is infected, you should not believe them as the majority of these pages are scams trying to get you to install the actual infection. The second method that can be used to install this rogue is through hacked web sites that install Home Security Solutions on to your computer without your knowledge by exploiting vulnerabilities in your outdated programs.

Once Home Security Solutions is installed on your computer it will be configured to start automatically. It will also create numerous harmless files that will then detected by the program as malware when it scans your computer. The files that are created are:

%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\CLSV.drv
%UserProfile%\Recent\CLSV.sys
%UserProfile%\Recent\ddv.sys
%UserProfile%\Recent\eb.dll
%UserProfile%\Recent\FW.dll
%UserProfile%\Recent\grid.exe
%UserProfile%\Recent\kernel32.exe
%UserProfile%\Recent\kernel32.tmp
%UserProfile%\Recent\pal.exe
%UserProfile%\Recent\snl2w.sys
%UserProfile%\Recent\std.exe
%UserProfile%\Recent\tjd.exe

When the program scans your computer it will detect numerous infections, including the files listed above that it created in the first place, and then prompt you to remove them. When you attempt to remove them, though, it will state you are unable to unless you first purchase the program. As the scan results for this program are false, please do not get scared into purchasing the program.

While Home Security Solutions is running it will also display fake security warnings that are designed to make you think that your computer has a severe computer security problem. These warnings may state that viruses have been found, that your computer is under attack, or that someone is accessing your private information. Just like the scan results, all of these security alerts are fake and should be ignored.

As you can see, Home Security Solutions is a scam that was created to trick you into thinking your computer was severely infected so that you will then purchase it. For no reason should you purchase this program, and if you have, you should contact your credit card company and dispute the charge. To remove Home Security Solutions and related malware, please follow the steps in the removal guide below.

Security Monitor 2012 is a rogue anti-spyware program from the same family as Security Solution 2011. This rogue displays fake scan results and alerts in order to trick you into thinking your computer is infected. This program is installed through Trojans that download and install the program on to your computer without your permission. When installed, the rogue will also create numerous harmless files in your Windows Temp folder that will then be detected as malware when Security Monitor 2012 attempts to scan your computer. If you attempt to use the program to remove any of the files it detects as infections, it will state that you need to purchase the program before you can do so. As all the files it detects as infections are harmless or legitimate Windows files, please disregard the scan results and do not purchase the program.

While running, Security Monitor 2012 will also display fake security alerts on your computer. These alerts are designed to make you think that you have a severe computer infection or that your computer is sending private data to a remote location. The text of these alerts include:

Security Center
Unauthorized remote connection!
Your system is making an unauthorized personal data transfer to a remote computer!
Warning! Unauthorized personal data transfer is detected! It may be your personal credit card details, logins and passwords, browsing habits or information about files you have downloaded.
To protect your private data, please click "Prevent Connection" button below.

You have been infected by a proxy-relay trojan server with new and danger "SpamBots".
You have a computer with a virus that sends spam.
This is a mass-mailing worm with backdoor thus allowing un-authorized access to the infected system.
It spreads by mass-mailing itself to e-mail addresses harvested from the local computer or by querying on-line search engines such as google.com.
The IP address that YOU are getting from Internet Service Provider (ISP) for YOU personal computer is on some major blacklist.
Your computer has been used to send a huge amount of junk e-mail messages during the last days.
You IP will be marked in the Police log file as mass-mailing spam assist.
Upgrading to the full version Security Monitor 2012 it will eliminate the majority of Spam attempts.

Security Center Alert
To help protect your computer, Security Center has blocked some features of this program.
Do you want to block this suspicious software?
Name: Screen.Grab.J.exe
Risk: High

Last, but not least, when you attempt to run the wordpad.exe, mspaint.exe, winword.exe, excel.exe, msaccess.exe, powerpnt.exe, firefox.exe, opera.exe, or wmplayer.exe executables, this infection will close the program and display a fake message stating that the program is infected:

Security Monitor 2012
The application excel.exe was launched successfully but it was forced to shut down due to security reasons. This application infected by a malicious software program which might present damage for the PC. It is highly recommended to make a full scan of your computer to exterminate the malicious programs from it.

Just like the fake scan results, all of these alerts and the browser hijacking are fake and are only being shown to scare you into purchasing the program.

As you can see, this program was developed to scare you into thinking that your computer has a serious computer security problem so that you will then purchase it. Therefore, do not purchase Security Monitor 2012 for any reason, and if you already have, please contact your credit card company and state that the program is a computer virus and a scam and that you would like to dispute the charge. To remove this infection and related malware, please follow the steps in the guide below.