English 
Deutsch
Español
Français
Portuguese
Live PC Care Live PC Care
By
Sumo3000 in Rogue Anti-Spyware Program |
0 views
(3 votes, average: 4.00 out of 5)
Loading ...
Live PC Care Description
Live PC Care is a deceptive security application created by the same people responsible for Additional Guard and System Defender. Live PC Care enters a system via stealthy Trojans that are unknowingly downloaded or executed by users. Once inside, the Trojan creates random files on the system, that are later detected as parasites when a fake system scan is conducted. Live PC Care will bombard a system with fake scan reports, pop-ups and virus alerts in order to convince a victim that there are multiple infections present on the system. The user will then be informed that the only solution to the problem is to purchase the full version of Live PC Care. Live PC Care is a useless program that will do more harm than good to your computer system.
Type: Rogue AntiSpyware Programs
How Can You Detect Live PC Care?
Live PC Care Technical Report
As new Live PC Care details are reported by our customers and findings from our Threat Research Center, we will update this section.
The following Live PC Care files with its MD5s were created in the system:
| File Name | File Size | MD5 |
|---|
| LPdccb.exe | 1917440 | 433e223ac0c6f8f376452aabc6a7dcdb |
| xp_5a704[1].exe | 1917440 | 433e223ac0c6f8f376452aabc6a7dcdb |
| LP4603.exe | 2549248 | 6f3f6a62d1754f1b2ce6140916dc13f2 |
| LP1510.exe | 2570240 | 2224b8b7f5b55f9b5af0ab7a41e48e4f |
| LP7761.exe | 2547712 | 020ebc7e7ce8e06cac2f5d9b2981c144 |
| LP6ced.exe | 2549248 | 6b270cb6a04c82f252e694cd5c12dcc8 |
| LPed6d.exe | 2039132 | 1ae89e1f9e084e0c1df8ff31944e533d |
| LP7049.exe | 2548736 | 76b2b081800f9115dfa945aa8fbdbef1 |
| LP5389.exe | 1917952 | 0b260e59aa4dab9917003c40274f6683 |
| LP51b4.exe | 2551296 | 783c3b560207b19fb0d5b41693ea5b0e |
| LP7445.exe | 1917440 | 6122e08b753722bb2ceecf0612f1d3ab |
| LP7f16.exe | 1915392 | df0d62d21de86fa7d9f3d219f1dc5eb9 |
| LP3668.exe | 1999360 | e1e8352c5e6b0fc2f82e341b11e7c800 |
| LP0cd3.exe | 1999872 | 3b554533566528448648695c6f7de835 |
| LP680a.exe | 2000384 | 23fac6599726164953e0be0302bae89c |
| LP2a20.exe | 1999872 | f6b390e1fa745af23624c2089a0fe201 |
| LP7411.exe | 1999872 | 37dccfc437dfacec3930a552e02a672f |
| LPa34c.exe | 1999872 | e81d3345dd1103285542461063624db4 |
| LP84ad.exe | 1999872 | 66c14dedce579e4e731e9899f54a9292 |
| LPe6f4.exe | 2590208 | e10dcaf3a7cb5eea599d38d2f689df16 |
| LPae22.exe | 2000896 | 15a4fde11a797aae9f11bc1f539a6064 |
| LP333c.exe | 2586624 | 0aa7ee183cda1fa906f7519cfded0cbd |
Live PC Care has typically the following processes in memory:
- %UserProfile%\Recent\ppal.dll
- %UserProfile%\Recent\SM.dll
- %UserProfile%\Recent\DBOLE.sys
- %UserProfile%\Recent\FW.dll
- %UserProfile%\Recent\runddl.dll
- %UserProfile%\Recent\DBOLE.exe
- %UserProfile%\Recent\fan.exe
- %UserProfile%\Recent\ppal.sys
- %UserProfile%\Recent\CLSV.sys
- %UserProfile%\Recent\exec.dll
Live PC Care created the following directories, files, paths:
- %AppData%\Live PC Care
Live PC Care creates the following registry entries:
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
- HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “CheckExeSignatures” = “no”
- HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://search-gala.com/?&uid=7&q={searchTerms}”
- HKEY_CLASSES_ROOT\xp_5ea56.DocHostUIHandler
- HKEY_CURRENT_USER\Software\3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Live PC Care”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “[xSP_2:117fc3395e69e29f71abba93a68c4181_7]”
- HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://search-gala.com/?&uid=7&q={searchTerms}”
Important Article Disclaimer
February 10th, 2010 at %I:%M %p
I am not computer literate by any means and I downloaded some virus (I guess) and Live PC told my that they were the only ones who could repair and fix my machine. Like a fool, I paid them the $50.00 and my machine is still down, I am unable to retrive valuable records and the computer is so slow when it does function, it takes 20 minutes just to get to my e-mail. Do yourself a big favor, DON”T DO BUSINESS WITH THESE CROOKED SCAMMERS. The damage they have done to my computer is beyond repair. If anyone wants to use my secret removal ID number, it is
UEPB-H4KA-S2LA-U2FD
When I complained (over the net, they have no land phones) they upped my 6 month membership to a life time membership at no charge, just in case I want another computer ruined in the years to come. If you use these crooks to work on your machine, you deserve exactly what you will surely get, “ripped off”.
It’s your choice. Joel La Rocque