Live Security Professional

Live Security Professional Description

Live Security Professional is a rogue security program. This means that Live Security Professional is designed to look and act like a real anti-malware application but, rather than actually being able to remove malware, Live Security Professional is designed to scam inexperienced computer users. The Live Security Professional fake anti-virus application is a severe threat to your computer's security which should be removed immediately with the help of a reliable anti-malware program. It is also important to remember that Live Security Professional has no way of detecting or removing malware from a computer. Because of this, ignore all of Live Security Professional's instructions or warnings in order to prevent further malware attacks or loss of your money and private information.

Live Security Professional Doesn't Provide Any Kind of Security to Your PC

Live Security Professional belongs to the WinWeb Security and is used to steal money from inexperienced computer users by making them believe that their computer was infected with numerous Trojans and viruses. Live Security Professional will usually enter a computer through social engineering tactics or through typical malware delivery avenues (such as attack websites or malicious email attachments). Once Live Security Professional is installed on the infected computer, Live Security Professional makes changes to the infected computer's settings that allow Live Security Professional to display fake warning messages and system alerts. The Live Security Professional infection is designed to scare the computer user into believing that there is a severe virus infection on the affected machine. Live Security Professional pretends to be a real security program and displays numerous fake error messages and alerts claiming to have found severe infections. When the computer user tries to use Live Security Professional to fix these supposed malware threats, this fake security program claims that it is necessary to pay for a 'full version' of this rogue security application.

Do Not Waste Your Money Buying the Live Security Professional Useless Program

Live Security Professional's 'full version' is just as useless as its supposed free version, so the best advise ESG security researchers have to offer is to avoid purchasing this bogus security application as well as any of its various clones that include System Security, Total Security, Antivirus Security, Total Security 2009, Security Tool, Trojan.RogueAV.a.gen, System Adware Scanner 2010, FakeAlert-KW.e, Advanced Security Tool 2010, System Tool 2011, Security Shield, MS Removal Tool, Antivirus Center, Antivirus Center, Essential Cleaner, Security Shield Pro 2011, Personal Shield Pro, Security Shield 2011, Advanced PC Shield 2012, Security Sphere 2012. If Live Security Professional has been installed on your PC, Live Security Professional should be removed immediately with the help of a reliable anti-malware application. ESG security researchers strongly recommend that computer users avoid paying for this fake security application.

Do You Suspect Your PC May Be Infected with Live Security Professional & Other Threats? Scan Your PC with SpyHunter

SpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like Live Security Professional as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Note: SpyHunter's scanner is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware removal tool to remove the malware threats. Read more on SpyHunter. Free Remover allows you to run a one-off scan and receive, subject to a 48-hour waiting period, one remediation and removal. Free Remover subject to promotional details and Special Promotion Terms. To understand our policies, please also review our EULA, Privacy Policy and Threat Assessment Criteria. If you no longer wish to have SpyHunter installed on your computer, follow these steps to uninstall SpyHunter.

Security Doesn't Let You Download SpyHunter or Access the Internet?

Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
  • Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
  • Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
  • Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
  • IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.
If you still can't install SpyHunter? View other possible causes of installation issues.

Technical Information

File System Details

Live Security Professional creates the following file(s):
# File Name Size MD5
1 %AllUsersProfile%\Application Data\rundll32.exe
2 %AllUsersProfile%\Application Data\[RANDOM NUMBERS AND CHARACTERS].js
3 %AllUsersProfile%\Application Data\[RANDOM NUMBERS AND CHARACTERS].pad
4 %Temp%\tratra.lnk
5 %AllUsersProfile%\Application Data\[RANDOM NUMBERS AND CHARACTERS].dat
6 %StartMenu%\Programs\Startup\regmonstd.lnk
7 %AllUsersProfile%\Application Data\[RANDOM NUMBERS AND CHARACTERS].txt
8 %AllUsersProfile%\Application Data\sdaksda.txt
9 file.exe 122,368 72e4b6f95e45c578874fc67034fc4e89
10 ej1rw.js 2,655 242e7a56b8841a23f5dcbad8b74f4087
11 ej1rw.pad 95,023,320 323c6483f2f9ec9b26e38f4fd0053f95
More files

Registry Details

Live Security Professional creates the following registry entry or registry entries:
Regexp file mask
%ALLUSERSPROFILE%\Application Data\ir3iw8.js
%ALLUSERSPROFILE%\Application Data\ir3iw8.pad
%ALLUSERSPROFILE%\Application Data\rundll32.exe
%ALLUSERSPROFILE%\ir3iw8.js
%ALLUSERSPROFILE%\ir3iw8.pad
%ALLUSERSPROFILE%\rundll32.exe
Registry key
Software\Live Security Professional
RegistryKey
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\ShowedCheckBrowser Yes
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\2500 3
HKEY_CURRENT_USER\Software\Microsoft\WindowsCurrentVersion\Internet Settings\Zones\2\2500 3
HKEY_CURRENT_USER\Software\Live Security Professional
HKEY_CURRENT_USER\Software\Microsoft\WindowsCurrentVersion\Internet Settings\Zones\1\2500 3
HKEY_CURRENT_USER\Software\Microsoft\WindowsCurrentVersion\Internet Settings\Zones\3\2500 3
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "ctfmon32.exe" = "C:\DOCUME~1\ALLUSE~1\APPLIC~1\rundll32.exe C:\DOCUME~1\ALLUSE~1\APPLIC~1\[RANDOM NUMBERS AND CHARACTERS].dat,XFG00"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\NoProtectedModeBanner 1
HKEY_CURRENT_USER\Software\Microsoft\WindowsCurrentVersion\Internet Settings\Zones\4\2500 3

More Details on Live Security Professional

The following messages associated with Live Security Professional were found:
Live Security Professional
Live Security Professional has blocked cmd.exe! Threat detected!
Threat detected!
Security Alert! Your computer was found to be infected with privacy-threatening software. Private data may get stolen and system damage may be severe.
Recover your PC from the infection right now, perform a security scan.

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their PC with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your PC. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.

By Domesticus in Rogue Anti-Spyware Program
Translate To: Português
Threat Scorecard
?
The ESL Threat Scorecard is an assessment report that is given to every malware threat that has been collected and analyzed through our Malware Research Center. The ESL Threat Scorecard evaluates and ranks each threat by using several metrics such as trends, incidents and severity over time.

In addition to the effective scoring for each threat, we are able to interpret anonymous geographic data to list the top three countries infected with a particular threat. The data used for the ESL Threat Scorecard is updated daily and displayed based on trends for a 30-day period. The ESL Threat Scorecard is a useful tool for a wide array of computer users from end users seeking a solution to remove a particular threat or security experts pursuing analysis and research data on emerging threats.

Each of the fields listed on the ESL Threat Scorecard, containing a specific value, are as follows:

Ranking: The current ranking of a particular threat among all the other threats found on our malware research database.

Threat Level: The level of threat a particular PC threat could have on an infected computer. The threat level is based on a particular threat's behavior and other risk factors. We rate the threat level as low, medium or high. The different threat levels are discussed in the SpyHunter Risk Assessment Model.

Infected PCs: The number of confirmed and suspected cases of a particular threat detected on infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter's Spyware Scanner.

% Change: The daily percent change in the frequency of infected PCs of a specific threat. The formula for percent changes results from current trends of a specific threat. An increase in the rankings of a specific threat yields a recalculation of the percentage of its recent gain. When a specific threat's ranking decreases, the percentage rate reflects its recent decline. For a specific threat remaining unchanged, the percent change remains in its current state. The % Change data is calculated and displayed in three different date ranges, in the last 24 hours, 7 days and 30 days. Next to the percentage change is the trend movement a specific malware threat does, either upward or downward, in the rankings. Each level of movement is color coded: a green up-arrow (∧) indicates a rise, a red down-arrow (∨) indicates a decline, and a brown equal symbol (=) indicates no change or plateaued.

Top 3 Countries Infected: Lists the top three countries a particular threat has targeted the most over the past month. This data allows PC users to track the geographic distribution of a particular threat throughout the world.
Ranking: 2858
Threat Level: 10
Infected PCs: 59
% Change 30 Days:
1%
7 Days:
3%
1 Day:
0%
Top 3 Countries Infected: Japan