Sign in to follow this  
Christian Mairoll

Protection Center Adware Removal Instructions

Recommended Posts

The Emsisoft malware research team has discoverd a new outbreak of the Protection Center adware. Emsisoft Anti-Malware detects this malware as Adware.Win32.ProtectionCenter.

Protection Center is a rogue security program. This is a new variant from Data Protection, Digital Protection, Your Protection, User ProtectionDr. Guard , and PaladinAntivirus. This rogue application tries to trick you by displaying false positive/misleading scan results report, which says that your computer is infected with viruses or trojan, but you will not be able to delete them before you purchase. This rogue also found bundled with TDSS rootkit.

Create new files:

  • %ProgramFiles%Protection Centercntprot.exe
  • %ProgramFiles%Protection Centerhelp.ico
  • %ProgramFiles%Protection Centerscan.ico
  • %ProgramFiles%Protection Centersettings.ico
  • %ProgramFiles%Protection Centersplash.mp3
  • %ProgramFiles%Protection CenterUninstall.exe
  • %ProgramFiles%Protection Centerupdate.ico
  • %ProgramFiles%Protection Centervirus.mp3
  • %ProgramFiles%Protection Centerabout.ico
  • %ProgramFiles%Protection Centeractivate.ico
  • %ProgramFiles%Protection Centerbuy.ico
  • %ProgramFiles%Protection Centercnt.db
  • %ProgramFiles%Protection Centercntext.dll
  • %ProgramFiles%Protection Centercnthook.dll
  • %UserProfile%Application DataMicrosoftInternet ExplorerQuick LaunchProtection Center.lnk
  • %UserProfile%DesktopProtection Center.lnk
  • %UserProfile%DesktopProtection Center Support.lnk
  • %UserProfile%Local SettingsTemp4otjesjty.mof
  • %UserProfile%Local SettingsTemp451d.tmp
  • %UserProfile%Local SettingsTemp3722.tmp
  • %UserProfile%Local SettingsTemp7461.tmp
  • %UserProfile%Local SettingsTempcnt.dat
  • %UserProfile%Local SettingsTempcntr.dat
  • %UserProfile%Local SettingsTempdhdhtrdhdrtr5y
  • %UserProfile%Local SettingsTemp2bf7.tmp
  • %UserProfile%Local SettingsTemp4f4e.tmp
  • %UserProfile%Start MenuProgramsProtection CenterProtection Center Support.lnk
  • %UserProfile%Start MenuProgramsProtection CenterProtection Center.lnk
  • %UserProfile%Start MenuProgramsProtection CenterScan.lnk
  • %UserProfile%Start MenuProgramsProtection CenterSettings.lnk
  • %UserProfile%Start MenuProgramsProtection CenterUpdate.lnk
  • %UserProfile%Start MenuProgramsProtection CenterAbout.lnk
  • %UserProfile%Start MenuProgramsProtection CenterActivate.lnk
  • %UserProfile%Start MenuProgramsProtection CenterBuy.lnk

Create new registry entries:

  • HKEY_LOCAL_MACHINEsoftwaremicrosoftWindowsCurrentVersionUninstallProtection Center
  • HKEY_LOCAL_MACHINEsoftwareProtection Center
  • HKEY_CURRENT_USERsoftwareMicrosoftWindowsCurrentVersionRun, “Protection Center”

Screenshots:

Adware.Win32.ProtectionCenter_1-400x296.

How to remove the infection of Protection Center (Adware.Win32.ProtectionCenter)?

To delete this malware infection, please download and install Emsisoft Anti-Malware. Run a full scan on all drives and move all detected items to the quarantine.



View the full article

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.