Protectinternet.com
Protectinternet.com is a misleading website that promotes the rogue security application called Virus Protector. Protectinternet.com utilizes scare tactics that include the displaying of bogus scan reports, security alerts, and pop-up warning messages. This is done to convince victims that their machines are infected with dangerous malware that can only be removed with the purchase of Virus Protector.
Once on Protectinternet.com, users are redirected to "https://www.superbillingsolution.com/buy.php" which is the payment page for Virus Protector. Users that are constantly redirected to Protectinternet.com have usually been infected with rogueware already or they have been infected with Trojans related to the website. Should you encounter Protectinternet.com, use a reliable anti-spyware program to remove it and any other malware on your system.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Documents and Settings%\[UserName]\Local Settings\Temp\[random].exe | |
| 2. | %Program Files%\Internet Explorer\[random].dll | |
| 3. | %WINDOWS%\system32\[random].exe | |
| 4. | %WINDOWS%\system32\drivers\[random].dll | |
| 5. | %Documents and Settings%\[UserName]\Application Data\[random].dll | |
| 6. | %Program Files%\Internet Explorer\[random].exe | |
| 7. | %WINDOWS%\[random].dll | |
| 8. | %WINDOWS%\system32\drivers\[random].exe | |
| 9. | %Documents and Settings%\[UserName]\Application Data\[random].exe | |
| 10. | %Documents and Settings%\[UserName]\Local Settings\Temp\[random].dll | |
| 11. | %WINDOWS%\[random].exe | |
| 12. | %WINDOWS%\system32\[random].dll |
