SuperScan by Robert Flowers is a piece of software that installs itself on your computer and pretends to be an actual antivirus program, warning you of potential viruses. It's part of a growing family of fake antivirus programs that are being developed for Windows and Linux by hackers. When executed on your computer, it will send out fake alerts, such as an error message saying your system has reached a dangerous level of infections. Unfortunately, Windows users are not safe from this nasty attack, because many programs installed on your computer can actually cause more harm than any potential virus.
The software comes from a group of hackers who have targeted several companies including Microsoft. Although they have found several ways of infecting Windows computers, the group says that their newest creation, SuperScan, is by far the most effective. The download comes with a 196-kb zip file, which supposedly contains all of the files needed to execute the malware on your PC. Since SuperScan is able to flood a network with fake viruses, the Foundstone website states that some other antivirus programs may identify SuperScan as an infection of interest, leading to the false warning mentioned above.
Upon installation, it will open up a control panel and will allow you to perform "scans". However, one of the most alarming parts of SuperScan is what it can do to your system. In order to gain persistence and continue to abuse your system, the program will register a series of ping attacks, using your main ports for data input. Some of the files it will use are located on the following location: HKEY_CURRENT_USER\Software\Microsoft\Machine ENDPARAM, HKEY_LOCAL_MACHINE\Software\Microsoft, HKEY_LOCAL_ADVS\Software\Microsoft. With all this found on your machine, the only safe way to remove SuperScan from your system is by following the instructions below: