Gm-system-scan.com
Gm-system-scan.com is a rogue website that promotes the rogue anti-spyware program System Protector. Gm-system-scan.com deploys misleading and fraudulent tactics such as running a fake online scanner which reports imaginary malware. Like other rogue websites, it will produce false pop ups and warning alerts to persuade you into buying System Protector. It is vital to be aware that all errors and malware reported are for the purpose of scaring you into purchasing a useless program. Don't let these unethical techniques fool you into buying the hoax System Protector program. It is strongly advised that you remove System Protector infection without hesitation.
File System Modifications
- The following files were created in the system:
# File Name 1 %Program Files%\System Protector 2 %UserProfile%\Application Data\install.exe 3 %UserProfile%\Application Data\lsascs.exe 4 %UserProfile%\Application Data\Microsoft\windll32.exe 5 %UserProfile%\Application Data\shellex.dll 6 %UserProfile%\Application Data\SpyProtectorSC_Base_new.dat 7 %UserProfile%\Application Data\SpyProtectorSC_Config.ini 8 %UserProfile%\Desktop\System Protector.lnk 9 %UserProfile%\Start Menu\Programs\System Protector\Purchase License.url 10 %UserProfile%\Start Menu\Programs\System Protector\Support Page.url 11 %UserProfile%\Start Menu\Programs\System Protector\System Protector.lnk 12 %WINDOWS%\system32\spyprotector.cpl
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" => 1HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\System ProtectorHKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\System ProtectorHKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{107A1D63-2EAA-4694-8ABA-EC209C630D83}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\System ProtectorHKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellexHKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\System ProtectorHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\lsascs.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "System Protector"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.