Elise 276 Posted September 26, 2012 Report Share Posted September 26, 2012 The Emsisoft malware research team has discovered an outbreak of the System Progressive Protection rogue. Emsisoft Anti-Malware detects this malware as Rogue.Win32.SystemProtection. System Progressive Protection is a rogue scanner application. A rogue application tries to trick you by displaying false positive or misleading scan results, which say that your computer has a problem, or is infected with viruses or trojans, but you will not be able to fix anything before you purchase the program. Creates new files: %CommonAppData%\[random]\[random].exe %CommonAppData%\[random]\[random].ico %CommonAppDAta%\[random]\[random] %UserProfile%\Desktop\System Progressive Protection.lnk %UserProfile%\Start Menu\Programs\System Progressive Protection\System Progressive Protection.lnk Creates new registry entries: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce [random] = %CommonAppData%\[random]\[random].exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection DisplayIcon = %CommonAppData%\[random]\[random].ico,0 UninstallString = %CommonAppData%\[random]\[random].exe -u ShortcutPath = %CommonAppData%\[random]\[random].exe -u DisplayName = System Progressive Protection Screenshots: How to remove the System Progressive Protection (Rogue.Win32.SystemProtection)? To remove this malware infection, please download and install Emsisoft Anti-Malware. Run a full scan on all drives and move all detected items to quarantine. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.