August 2, 2011

McAfee Enhanced Protection Mode.

McAfee Enhanced Protection Mode is a title of misleading alert aimed at cheating users.
The trickery abuses not only credit of users as name of renowned and fair product is engaged into the marketing of imaginary update or feature.
That is, concealing the malicious intent under the name of trustworthy product  the hackers literary try to rob users of their money as the alert, on notifying of critical virus detection, is followed by the payment request.
The entire affair is managed by single trojan  which is typically manually installed by users.  It is understandable that a user would not download the trojan, if the content was fairly declared, but, of course, the trojan was introduced as another content. Typical guise used to conceal the trojan is a Flash player update.  
Besides removal of  McAfee Enhanced Protection Mode deceptive alert, there is another popup to get rid of. It is shown at the desktop tray area and reads that system is protected. It pretends to indicate the last date of AV database update.
Kill malicious Processes from Task Manager: 
  • OTS.exe
  • sysdriver32.exe
  • systemup.exe 
 Location of the infection:
  1. %Users%\[UserName]\Downloads\OTS.exe
  2. %Windows%\l1rezerv.exe
  3. %Windows%\systemup.exe
  4. %Windows%\sysdriver32.exe
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “McAfee  Enhanced Protection Mode”
Although it is possible to manually remove fake McAfee Enhanced Protection Mode, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend  malware and spyware removal applications.

After removing all these files, restart your computer and the issue will be fixed. And don’t forget to do update your Security Software, check the Firewall Settings and the Operating System and finally do a full system scan with the Security Software.


Post a Comment

Related Posts Plugin for WordPress, Blogger...

Search This Blog



Twitter Delicious Facebook Digg Stumbleupon Favorites More