Google has detected...
ESG security researchers have received various reports of computer users landing at a clone of the Google search engine. This fake version of Google sports a message under the search box claiming that Google has detected that they are using an unregistered version of System Protector, a typical rogue security program. The 'Google has detected...' web page is one of the many symptoms of a rogue anti-virus infection. These kinds of fake security programs tend to cause pop-up windows, error messages and browser redirects as part of their campaign of misinformation designed to try to cause victims to panic into purchasing useless 'full versions' of System Protector. In reality, the 'Google has detected...' web page has absolutely no relation with the Google corporation or with any legitimate software manufacturer. The 'Google has detected...' web page is a scam which is quite convincing, especially when attacking inexperienced computer users.
Getting Rid of the 'Google has detected...' Web Page
The main way of stopping the 'Google has detected...' web page from appearing is to take care of the cause residing on your hard drive. To do this, ESG security analysts recommend using a reliable anti-malware program just after booting up your computer in Safe Mode in order to ensure that System Protector does not launch automatically. System Protector is a fake security program that will usually be accompanied with a whole army of other Trojans, malicious scripts and assorted malware in order to initiate a coordinated attack designed to scare computer users into purchasing this fake security program.
The 'Google has detected...' web page is a relatively new tactic that these rogue security programs use to convince computer users to waste their money. Since Google does not promote or sell software in this way, there is absolutely no chance of the 'Google has detected...' web page being real. This is important to understand because, taking advantage of the effectiveness of the 'Google has detected...' web page, there is no doubt that computer criminals will start to integrate this tactic into other rogue security programs. In fact, since rogue anti-virus applications tend to have a short window of time before PC security researchers effectively shut down the full extent of their reach and marketing, it is quite likely that clones of System Protector will be released, each with its own version of the 'Google has detected...' web page corresponding to the clone in question.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %UserProfile%\Desktop\System Protector.lnk | |
| 2. | %UserProfile%\Start Menu\Programs\System Protector\System Protector.lnk | |
| 3. | %UserProfile%\Application Data\SpyProtectorSC_Config.ini | |
| 4. | %UserProfile%\Start Menu\Programs\System Protector\Support Page.url | |
| 5. | %UserProfile%\Application Data\SpyProtectorSC_Base_new.dat | |
| 6. | %UserProfile%\Start Menu\Programs\System Protector\Purchase License.url | |
| 7. | C:\WINDOWS\system32\spyprotector.cpl |
