ZentomSystemGuard

Lavasoft Malware Lab's Rogue Gallery
What's a Rogue?
Latest - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z - Submit a Rogue

ZentomSystemGuard

Found: 
2011-07-20
Description: 

Win32.FraudTool.ZentomSystemGuard is a rogue anti-spyware application. It may give exaggerated threat reports on the compromised computer then ask the user to purchase a registered version to remove those reported threats.

Known system changes: 

Files

%local user%\random\<random>.exe


Folders

RegistryEntries
Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zentom System Guard
Key: HKEY_CURRENT_USER\Software\ZentomSystemGuard
Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
Value: libstaf5cd0.exe
Data: "C:\Documents and Settings\VPCTest\Application Data\2E23C32608288CFD80A95B5DA1D2184C\libstaf5cd0.exe"
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Value: *KB5800200.exe
Data: "C:\Documents and Settings\VPCTest\Application Data\Adobe\plugs\KB5800200.exe"


Lavasoft is the maker of Ad-Aware, the world's most popular anti-malware software with over 450 million downloads.
© 2024 Lavasoft. All rights reserved.
Terms Of Use |   Privacy Policy


x

Our best antivirus yet!

Fresh new look. Faster scanning. Better protection.

Enjoy unique new features, lightning fast scans and a simple yet beautiful new look in our best antivirus yet!

For a quicker, lighter and more secure experience, download the all new adaware antivirus 12 now!

Download adaware antivirus 12
No thanks, continue to lavasoft.com
close x

Discover the new adaware antivirus 12

Our best antivirus yet

Download Now