Protection-estore.com Removal Report

Protection-estore.com Description

Protection-estore.com is a rogue webpage created to promote the fake anti-spyware program, Personal Security. Protection-estore.com is inserted into a victims hosts file by sneaky Trojans that change the settings to ensure that the victim is continuously redirected to Protection-estore.com. Protection-estore.com advertises Personal Security as the "Best Spyware Protection". Don't be fooled, Personal Security is a useless application and Protection-estore.com cannot be trusted.

Technical Information

File System Details

Protection-estore.com creates the following file(s):

Expand All | Collapse All

#	File Name	Detection Count
1	%WINDOWS%\system32\win32extension.dll	N/A
Name: %WINDOWS%\system32\win32extension.dll Type: Dynamic link library
2	%Program Files%\PSecurity\psecurity.exe	N/A
Name: %Program Files%\PSecurity\psecurity.exe Type: Executable File
3	%Program Files%\Common Files\PSecurityUninstall\Uninstall.lnk	N/A
Name: %Program Files%\Common Files\PSecurityUninstall\Uninstall.lnk Type: Shortcut
4	%Documents and Settings%\All Users\Start Menu\PSecurity\Help.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Help.lnk Type: Shortcut
5	%Documents and Settings%\All Users\Start Menu\PSecurity\Security Center.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Security Center.lnk Type: Shortcut
6	%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\PSecurity.lnk	N/A
Name: %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\PSecurity.lnk Type: Shortcut
7	%Program Files%\Common Files\PSecurityUninstall	N/A
Name: %Program Files%\Common Files\PSecurityUninstall
8	%Documents and Settings%\All Users\Start Menu\PSecurity\Computer Scan.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Computer Scan.lnk Type: Shortcut
9	%Documents and Settings%\All Users\Start Menu\PSecurity\Registration.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Registration.lnk Type: Shortcut
10	%Documents and Settings%\All Users\Start Menu\PSecurity\Update.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Update.lnk Type: Shortcut
11	%Program Files%\PSecurity	N/A
Name: %Program Files%\PSecurity
12	%Documents and Settings%\All Users\Start Menu\PSecurity	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity
13	%Documents and Settings%\All Users\Start Menu\PSecurity\Personal Security.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Personal Security.lnk Type: Shortcut
14	%Documents and Settings%\All Users\Start Menu\PSecurity\Settings.lnk	N/A
Name: %Documents and Settings%\All Users\Start Menu\PSecurity\Settings.lnk Type: Shortcut
15	%UserProfile%\Desktop\Personal Security.lnk	N/A
Name: %UserProfile%\Desktop\Personal Security.lnk Type: Shortcut

Registry Details

Protection-estore.com creates the following registry entry or registry entries:

Registry key

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "PSecurity"

HKEY_LOCAL_MACHINE\SOFTWARE\5FFB10D58FFCF482208906E6A889FD56

HKEY_CLASSES_ROOT\CLSID\{35A5B43B-CB8A-49CA-A9F4-D3B308D2E3CC}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\post platform "WinTSI 01.12.2009"

Protection-estore.com

Protection-estore.com Description

Technical Information

File System Details

Registry Details

Your comment is awaiting moderation.

Please verify that you are not a robot.

Leave a Reply

Popular Malware

Popular Trojans

Popular Ransomware

Popular Issues

Popular How-Tos

Products

Malware Research

Company

Legal