SoftCop – Online Protection

SoftCop – Online Protection is a fake security alert that pretend to be a Blue Screen of Death (BSOD) developed to spread an unwanted program. SoftCop – Online Protection will produce this alert to make victims believe that computer is in under attack and a removal is required to combat the threat. It will ask for the acquisition of rogue program SoftCop using the message:

“Security Alert
Detected security problems on your computer Spyware is software, which can gather information from user’s computer throughout Internet connection an send them to its creater. Gather information…”

TypeRogue
Sub-TypeFakeAV
Aliases 
OS AffectedWindows
Detected ByMalwareBytes

What are the Symptoms of SoftCop – Online Protection Infection?

softcop-online-protection

It will modify Windows Registry and add the following entries:

  • HKEY_CURRENT_USER\Software\Microsoft\Windows\Current Version\Run “mxcq.exe”
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “SoftCop”
  • HKEY_CURRENT_USER\Software\SoftCop
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftCop
  • HKEY_LOCAL_MACHINE\SOFTWARE\SoftCop

The threat will drop the following malicious files:

  • %Program Files%\SoftCop Software\SoftCop\SoftCop.exe
  • %Program Files%\SoftCop Software\SoftCop\uninstall.exe
  • %WINDOWS%\54236spamb9zb95.dll
  • %WINDOWS%\54236zpyware2930.dll
  • %WINDOWS%\54236tzo5931.bin
  • %WINDOWS%\system32\417526acktool3z1.dll
  • %WINDOWS%\system32\417526virus54z.ocx
  • %WINDOWS%\system32\28a6d9wnlzader1957.exe
  • %Documents and Settings%\All Users\Desktop\SoftCop.lnk
  • %Documents and Settings%\All Users\Start Menu\Programs\SoftCop
  • %Documents and Settings%\All Users\Start Menu\Programs\SoftCop\1 SoftCop.lnk
  • %Documents and Settings%\All Users\Start Menu\Programs\SoftCop\2 Homepage.lnk
  • %Documents and Settings%\All Users\Start Menu\Programs\SoftCop\3 Uninstall.lnk
  • %Temp%\br45mxcq.exe

How to Easily Remove SoftCop – Online Protection

1. Print this procedure as we need to close all programs running later.
2. Download AntiMalware Application here and save it to your Desktop.
3. Close all open applications.
4. Double-Click on the downloaded mbam-setup.exe to start the installation. If unable to execute, infections on computer is preventing it from running, rename the file mbam-setup.exe to anything (like myfile.exe)
5. Run the installation on the default settings. No changes are necessary.
6. Just before completing the installation, make sure that the following are marked check.
- Update the program
- Launch the program

7. The tool will run and update itself after installation. Close it after the update.

8. Restart your computer in SafeMode
- After Power-On the computer, just before Windows start, press F8
- From the selections, Select SafeMode

9. Click on the icon and start to Perform Full Scan to begin scanning your computer for SoftCop related files.
10. After scanning, a message will appear stating that the scan is completed successfully. Click OK.
11. Click Show Results and detected threats will be displayed.
12. Make sure that all threats are marked check, then click Remove Selected to begin removal of the malicious files.
13. Exit AntiMalware Apps and restart your computer.

14. SoftCop and all its files are now removed from your computer. To guard your computer from this threat and avoid future infections, you may want real-time protection from a full version of anti-malware program..

4 Responses to“SoftCop – Online Protection”

  1. John Smith
    October 21, 2009 at 3:44 pm #

    I recently got hit with the “softcop” virus, and was one of the unfortunate ones who actually paid for the “softcop” program. I called my credit card company and will be getting a refund on the transaction, and in calling my credit card company they also supplied me with the company name and phone number of the company who ripped me off. The company name is ABDSoftware.com and there phone number is 18005272229. I suggest anyone else who has been a victim of these jerks call and give them a piece of your mind.

  2. Dan
    October 24, 2009 at 5:50 pm #

    This is a scam I also got scam by these jerks. Do not use a rip off.

  3. heather
    October 24, 2009 at 5:53 pm #

    This company rips you off when you think your computer is at risk. Do not buy, it does nothing.

Leave a Reply

Your email address will not be published. Required fields are marked *

(Required)

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>