Win 7 Home Security 2012 is a piece of malware doing the rounds at the moment, being distributed via infected ads across a number of high traffic sites.
Win 7 Home Security 2012 is a piece of malware that hijacks a user’s PC, issues false alerts, and insists it won’t go away unless you pay via a registration that aims to look like it’s coming from Microsoft.
And a nasty piece of work it is, as it attempts to take control of the user’s PC - every time you try and click on a program, Win 7 Home Security 2012 activates itself, displaying a bogus warning.
And it also hijacks popular browsers such as Internet Explorer and Firefox, providing false firewalls warnings.
All in all, the malware attempts to panic the user by locking down normal PC functions so that the user pays up.
While distressing if infected, luckily it’s relatively easy to remove.
BleepingComputer posts an invaluable tutorial on how to do this here: Remove Win 7 Home Security 2012 (Uninstall Guide)
The key steps to remove an infection of Win 7 Home Security 2012 are:
- From an uninfected computer, download the file FIXNCR.reg and save to a USB stick, CD, or similar removable media
- Insert media into the affected computer and double click on FIXNCR.reg
This should help clear your registry enough to allow relatively normal operation of your PC - enough at least to get the Win 7 Home Security 2012 malware removed.
- Download RKill to your infected computer’s desktop
- Now double-click the desktop icon for RKill - this should stop the malware from running.
But do not restart your PC yet!
- Now download the latest version of MalwareBytes and run it on the infected machine - do a full scan
This should allow you to quarrantine the source program for the malware, and remove it.
And now your PC should be clear.
Should you continue to have any problems, ask in the BleepingComputer forums.
In the meantime, should you have actually paid for Win 7 Home Security 2012, contact your credit card provider to have the charges reversed - simply tell them it was a piece of malware that had infected your PC, demanding a payment until you paid up, and the credit card company should be able to reverse the payment.