Windows Pro Rescuer
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 10 % (Normal) |
| Infected Computers: | 11 |
| First Seen: | April 23, 2012 |
| Last Seen: | June 22, 2022 |
| OS(es) Affected: | Windows |
Windows Pro Rescuer Image
The presence of Windows Pro Rescuer in a computer system indicates that computer system has become invaded with malware. Specifically, Windows Pro Rescuer belongs to a 2012 variant of the FakeVimes family of rogue security programs. Fake anti-virus applications such as Windows Pro Rescuer are very common and part of a popular scam that claims numerous victims every day. The FakeVimes family of these kinds of malware infections has been around since 2009, which means that PC security researchers are very well acquainted with Windows Pro Rescuer and its variants. However, the 2012 variant of these fake security programs tends to include an added rootkit complement to the infection (often belonging to the ZeroAccess family.) This can make removal of Windows Pro Rescuer very difficult without the help of a specialized anti-rootkit tool.
Apart from carrying out its scam, Windows Pro Rescuer can also disable legitimate security programs and cause several problems on the infected PC, such as system crashes and browser redirects. Because of this, removing Windows Pro Rescuer should be a priority. There are dozens of clones of Windows Pro Rescuer, including such fake security programs as Virus Melt, Presto TuneUp, Fast Antivirus 2009, Extra Antivirus, Windows Security Suite, Smart Virus Eliminator, Packed.Generic.245, Volcano Security Suite, Windows Enterprise Suite, Enterprise Suite, Additional Guard, PC Live Guard, Live PC Care, Live Enterprise Suite, Security Antivirus, My Security Wall, CleanUp Antivirus, Smart Security, Windows Protection Suite, Windows Work Catalyst. These should be annihilated with a trustworthy anti-malware tool.
Table of Contents
Do Not Fall for the Windows Pro Rescuer Scam
The main Windows Pro Rescuer scam involves making a computer user believe that their computer system is infested with malware. Windows Pro Rescuer passes itself off as a legitimate anti-virus program which does little more than detect numerous fake infections on the victim's computer system. Windows Pro Rescuer uses various tactics in order to carry out its scam, including displaying numerous misleading error messages and causing the infected computer's web browser to display error messages constantly and to visit Windows Pro Rescuer's web page.
However, if the victim attempts to use Windows Pro Rescuer to solve these imaginary problems, this fake security program will claim that it is necessary to register for a "full version" of Windows Pro Rescuer. Of course, registration is not cheap. ESG security analysts have observed that the registration code 0W000-000B0-00T00-E0020 can fool Windows Pro Rescuer, allowing the victim to gain access to their legitimate security software without some of Windows Pro Rescuer's most annoying features. However, it is important to remember that the code mentioned above will not remove Windows Pro Rescuer; to do this, a reliable anti-malware program is still needed.
Windows Pro Rescuer Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | Protector-[rnd].exe | |
| 2. | Inspector-[rnd].exe |
Registry Details
URLs
Windows Pro Rescuer may call the following URLs:
| https://feed.bestadsblock.com/?q= |
Messages
The following messages associated with Windows Pro Rescuer were found:
|
Error
Attempt to modify Registry key entries detected. Registry entry analysis recommended. |
|
Error
Keylogger activity detected. System information security is at risk. It is recommended to activate protection and run a full system scan. |
|
Error
Software without a digital signature detected. Your system files are at risk. We strongly advise you to activate your protection. |
|
Warning
Firewall has blocked a program from accessing the Internet C:\program files\internet explorer\iexplore.exe is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server. |
|
Warning! Spambot detected!
Attention! A spambot sending viruses from your e-mail has been detected on your PC. |
