System Progressive Protection

By Domesticus in Rogue Anti-Spyware Program | 2,301 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (2 votes, average: 5.00 out of 5)
Loading ... Loading ...
 More... More

System Progressive Protection Description

Image Screenshot

[+] Click Image to Enlarge

The WinWebSec family of rogue security software is quite large and features numerous fake security programs that carry out what is essentially the same scam. System Progressive Protection is one of the many fake security applications that belong to this extensive family of malware. Like most rogue security programs, System Progressive Protection, like other members of the WinWebSec family of malware is designed to trick inexperienced computer users into buying a useless, fake anti-virus, spending money on a program that has absolutely no anti-malware capabilities. If your computer is displaying alerts and error messages coming from System Progressive Protection, then ESG security researchers strongly advise ignoring these fake warnings and using a reliable anti-malware program to remove System Progressive Protection and any of its associated components from your computer completely. Failure to do so can result in additional malware infecting your computer as well as severe stability and performance problems on the infected computer.

Basically, System Progressive Protection is designed to convince computer users to spend money on a fake upgrade for this already useless application. To do this, System Progressive Protection will pretend that the victim’s computer has been invaded with a variety of viruses and Trojans. This fake security program harasses the victim with numerous fake error messages and alarming system pop-up notifications, all meant to make inexperienced computer users panic into paying for this useless ‘full version’ of System Progressive Protection.

System Progressive Protection will typically spread in three ways:

  • Criminals can set up websites that use exploit kits such as the infamous Black Hole Exploit Kit, to attack the computers of visitors automatically. These websites simultaneously exploit various known vulnerabilities in order to install System Progressive Protection and other malware on the victim’s computer. Other websites can be hacked so that they will direct visitors to these kinds of malicious web pages.
  • System Progressive Protection can also be installed on your machine by a fake, malicious advertisement for a ‘free online malware scan.’ These kinds of advertisements exploit vulnerabilities in Java or Flash in order to sneak System Progressive Protection and other malware on the victim’s computer. Even if the direct attack doesn’t work, these fake online malware scanners will often claim that the victim’s computer is infected with malware and recommend that the victim download and install System Progressive Protection directly.
  • System Progressive Protection will also be disguised as other benign software and placed on unsafe websites such as third-party downloading websites and file sharing networks. Common ways to disguise System Progressive Protection is as a fake media player or video codec.

Type: Rogue AntiSpyware Programs

How Can You Detect System Progressive Protection?

Download SpyHunter’s Detection Scanner
to Detect System Progressive Protection.

Can’t install SpyHunter? Click here to view possible causes of installation issues.

System Progressive Protection Technical Report

As new System Progressive Protection details are reported by our customers and findings from our Threat Research Center, we will update this section.

Fake message for System Progressive Protection:

The following fake error message(s) appears for System Progressive Protection:

Spyware.IEMonster activity detected. This is spyware that attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other programs.
Click here to remove it immediately with System Progressive Protection.

Warning: Your computer is infected
Detected spyware infection!
Click this message to install the last update of security software…

Warning!
Application cannot be executed. The file GoogleUpdate.exe infected.
Please activate your antivirus software.

Warning! The site you are trying visit may harm your computer!
Your security setting level puts your computer at risk!
Activate System Progressive Protection, and enable safe web surfing (recommended).
Ignore warnings and visit that site in the current stat (not recommended).

System Progressive Protection Warning
Your PC is still infected with dangerous viruses. Activate antivirus protection to prevent data loss and avoid the theft of your credit card details.

Warning! The site you are trying to visit may harm your computer.
Your security setting level puts your computer at risk!
Activate System Progressive Protection and enable safe web surfing (recommended).
Ignore warnings and visit that site in the current state (not recommended).

System Progressive Protection Firewall Alert
This is spyware that attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other programs.
Click here to remove it immediately with System Progressive Protection.

‘How System Progressive Protection Infects Your Computer’ Video

System Progressive Protection Removal Details

System Progressive Protection has typically the following processes in memory:

  • %CommonAppData%\[RANDOM NUMBERS AND CHARACTERS]\[RANDOM NUMBERS AND CHARACTERS].exe

System Progressive Protection creates the following files in the system:

  • %Desktopdir%\System Progressive Protection.lnk
  • %CommonAppData%\[RANDOM NUMBERS AND CHARACTERS]\[RANDOM NUMBERS AND CHARACTERS].ico
  • %CommonAppData%\[RANDOM NUMBERS AND CHARACTERS]\[RANDOM NUMBERS AND CHARACTERS]
  • %Programs%\System Progressive Protection\System Progressive Protection.lnk

System Progressive Protection creates the following registry entries:

  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\[RANDOM CHARACTERS] %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection\DisplayName System Progressive Protection
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection\UninstallString “%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe” -u
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection\DisplayIcon %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe,0
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection\ShortcutPath “%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe” -u
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Progressive Protection

Important Article Disclaimer

ESG Support Center

This entry was last updated on 03/9/13 and posted on 09/22/12. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
« NSIS:Bundlore-B
Microsoft’s Legal Gamble to Obliterate Piracy Reveals Massive 3322.org Malware Distribution »

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Popular Malware

Popular Trojans

Recent Malware

Home | SpyHunter Risk Assessment Model | Privacy Policy | End User License Agreement | Additional Terms and Conditions
Copyright 2003-2012. Enigma Software Group USA, LLC. All Rights Reserved.