The WinSpywareProtect family of rogues was enlarged with the appearance of SystemCleanerPro. Using the common deception strategies for rogues, it tries to scare its victims into buying its fake full version.
SystemCleanerPro uses malicious advertising in order to sneak into a system. The Trojans that carry the infection are hidden in compromised websites. One click is enough to download the Trojans in the computer if vulnerabilities are present in it. The worst part is that this download does not require the user's authorization and in most cases, the victims do not even suspect that malware has slid in their PCs.
When the Trojans are already inside the computer system, they import the rogue – SystemCleanerPro. Its first task is to configure itself to start automatically as soon as Windows starts. Its next step is to start producing a series of bogus alerts and notifications that claim there is a number of viruses running on the PC. This, of course, is a lie, aimed at scaring the user. Then, the deceitful program starts a scan of the machine. The phony results of this scan confirm what the warnings have shown before, and a list of infections is presented. Such infections do not exist, but this is part of the rogue's strategy to frighten the user. After each scan, the victim is prompted to purchase the full version of SystemCleanerPro, promoted as the best possible solution to any computer problems. All the processes this counterfeit application runs and all the alerts and scans it displays are not only annoying, but they also hamper your work on the PC and slow down its overall performance.
To sum up, SystemCleanerPro is a huge scam and in case it has managed to victimize your computer, the best thing you can do is to run a full scan of your computer with a legitimate anti-virus program and remove the villain.
|#||File Name||File Size (Bytes)||File Hash|
|4||sysclpro.exe||931840 bytes||MD5: d1a31fe4edc364410826fed6845c7b7a|
|7||setup.exe||1193836 bytes||MD5: 01cf4d44d842fd1727fee3353e0834a7|
|#||Process Name||Process Filename||Main module size|