Personal Protector
Personal Protector is a fake anti-virus and anti-spyware program that commonly obtained when executing malicious link from a fake online virus scanner. This link will trigger to download and install Personal Protector virus automatically. When installed, Personal Protector virus loads itself on Windows boot-up by creating additional entry to the registry. To ensure that Personal Protector Trojan is concealed from any security programs installed on the compromised computer, it will inject its code on legitimate system process.
Just like any other fake security application, Personal Protector virus will demonstrate an unregistered version with limited functionalities such as virus scanning and pop-up alerts of various security warning messages. Personal Protector also produces fake error web page that blocks user’s access to Internet. This web page presents doubtful warnings asking user to fix the problems by getting the registered version of Personal Protector. The fact is even having the licensed version; the threats will remain on the computer due to Personal Protector’s lack of ability in providing computer protection. It just defrauds you for money.
Legitimate and known anti-malware program is the real and essential solution to get rid of Personal Protector. Never rely on questionable security software that puts your system in harm’s way.
Screen Shot Image:
Technical Details and Additional Information:
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
Malware Behavior
User’s attempt to remove (fake) threats will open up a browser window containing Personal Protector’s payment web page. Unlike the rogue software that does not function, this web site is actively collecting credit card information from victims. It charges your account accordingly base on chosen package.
HKU\.DEFAULT\Printers\DevModePerUser HKU\S-1-5-18\Printers\DevModePerUser HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Personal Protector HKLM\SOFTWARE\Personal Protector HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "personalprotector" HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce "suicide"Associated Files and Folders:
%UserProfile%\Desktop\Personal Protector.lnk %UserProfile%\Start Menu\Programs\Personal Protector %UserProfile%\Start Menu\Programs\Personal Protector\Personal Protector.lnk %UserProfile%\Start Menu\Programs\Personal Protector\Uninstall.lnk C:\Program Files\Personal Protector C:\Program Files\Personal Protector\base.wdb C:\Program Files\Personal Protector\baseadd.wdb C:\Program Files\Personal Protector\conf.wcf C:\Program Files\Personal Protector\personalprotector.exe C:\Program Files\Personal Protector\quarant.wdb C:\Program Files\Personal Protector\queue.wdb C:\Program Files\Personal Protector\un.exe C:\Program Files\Personal Protector\q C:\WINDOWS\tempfile2.bat C:\Documents and Settings\All Users\Microsoft PData C:\Documents and Settings\All Users\Microsoft PData\inetprovider.dll
How to Remove Personal Protector
1. Temporarily Disable System Restore (Windows Me/XP). [how to]
2. Open your antivirus application and update the virus definition file. This method ensures that your antivirus program can detect even newer variants of Personal Protector
3. Start Windows in Safe Mode with Networking.
- From a power-off state, turn on the computer and press F8 on your keyboard repeatedly.
- Your computer will display Windows Advanced Boot Options menu. Please select Safe Mode with Networking.
- The system will now boot Windows and loads only necessary drivers and files.
4. Open your antivirus program and run a full system scan. After the scan, delete all infected items. If unable, better place them in quarantine. Once the scan is complete, please proceed with the next step.
Online Virus Scanner:
Another way to remove Personal Protector without the need to install additional antivirus application is to perform a thorough scan with free online virus scanner that can be found on websites of legitimate anti-virus and security provider.
5. Go to Online Virus Scanner list and run a virus scan. This may require plug-ins, add-on or Activex object, please install if you want to proceed with scan.
6. After completing the necessary download, your system is now ready for online virus scanning.
7. Select an option in which you can thoroughly scan the computer to make sure that it will find and delete entirely all infections not detected on previous scan.
8. Remove or delete all detected items.
9. When scanning is finished you may now restart the computer in normal mode.