Whether you believe it or not, viruses can look like legitimate anti-virus programs and Windows Basic Antivirus is just one of the numerous examples for that. Despite the fact that it is nothing more but a scam, it is advertised as a genuine AV tool, which is sold at a solid price.
There are two main strategies that Windows Basic Antivirus exploits in order to sneak into computers. The first one counts on users’ participation because it consists of fake online scanners. When a visitor appears, the bogus scanners perform a pretended scan of the computer system and declare that the PC is flooded with viruses. Then, the visitor is prompted to download a file – Windows Basic Antivirus. The truth is that the counterfeit Windows Basic Antivirus online scanners do not have access to the computer systems of visitors and are therefor incapable of detecting any security threats.
The second method for delivering Windows Basic Antivirus to the targeted machines is even more sneaky. It involves Trojans, which lie in hide in hacked websites. The user activates them by clicking through the website, and they enter his/her PC without asking for permission. They do so by exploiting vulnerabilities in the system, caused by outdated software. Once they get inside, the Trojans immediately bring the rogue.
Upon its installation, Windows Basic Antivirus configures itself to be launched automatically as soon as Windows starts. Then, it starts producing a variety of fake alerts and notifications. They constantly pop-up on the screen, displaying frightening text such as:
Warning! Virus Detected
Threat detected: FTP Server
Infected file: C:\Windows\System32\dllcache\wmpshell.dll
Software without a digital signature detected.
Your system files are at risk. We strongly advise you to activate your protection.
Attempt to run a potentially dangerous script detected.
Full system is highly recommended.
Despite the fact that the pop-ups look threatening, there is nothing legitimate in them. Their main purpose is to scare the victim into believing that the computer system is infected. Even though they are extremely irritating, you should try not to pay any attention to them and only use them as a sign that a rogue has crept in your system. If you are lured into clicking on them, they will only prompt you to purchase Windows Basic Antivirus.
The phony scans, performed by Windows Basic Antivirus are just another part of its mischievous plan. As we mentioned earlier, they are performed automatically every time and again. It seems as though the program is working hard on detecting viruses, but this is a lie. The list, presented at the end, is full of made-up security threats. The scans once again urge the victim to pay for the full version of Windows Basic Antivirus, which is advertised as being capable of removing all the infections, found by the scanning tool. In reality, however, even the full version of Windows Basic Antivirus is a scam, not a genuine anti-virus tool.
In addition to the rest of its deception-strategies, Windows Basic Antivirus also prevents other programs from being launched and ascribes it to the infections, found by its scans. When the victim tries to run an application, the rogue closes it and states that the requested program has been corrupted. Furthermore, Windows Basic Antivirus blocks Registry editor and Task Manager. When it closes them, it displays its Advanced Process Control screen, which resembles the functions of a task manager. Thus,the rogue controls every move that the victim may try to undertake.
To sum up, everything Windows Basic Antivirus does is to scare you into thinking your computer has been infected with a number of viruses and then prompt you to pay for its fake licensed version. Yes, there is a virus in your system, but it is only one and it is called Windows Basic Antivirus – eliminate it immediately via a legitimate anti-virus tool.