Elise 245 Report post Posted September 26, 2012 The Emsisoft malware research team has discovered an outbreak of the System Progressive Protection rogue. Emsisoft Anti-Malware detects this malware as Rogue.Win32.SystemProtection. System Progressive Protection is a rogue scanner application. A rogue application tries to trick you by displaying false positive or misleading scan results, which say that your computer has a problem, or is infected with viruses or trojans, but you will not be able to fix anything before you purchase the program. Creates new files: %CommonAppData%\[random]\[random].exe %CommonAppData%\[random]\[random].ico %CommonAppDAta%\[random]\[random] %UserProfile%\Desktop\System Progressive Protection.lnk %UserProfile%\Start Menu\Programs\System Progressive Protection\System Progressive Protection.lnk Creates new registry entries: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce [random] = %CommonAppData%\[random]\[random].exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection DisplayIcon = %CommonAppData%\[random]\[random].ico,0 UninstallString = %CommonAppData%\[random]\[random].exe -u ShortcutPath = %CommonAppData%\[random]\[random].exe -u DisplayName = System Progressive Protection Screenshots: How to remove the System Progressive Protection (Rogue.Win32.SystemProtection)? To remove this malware infection, please download and install Emsisoft Anti-Malware. Run a full scan on all drives and move all detected items to quarantine. Quote Share this post Link to post Share on other sites
