Tuesday, June 26, 2012

What Windows Premium Console? How to deal with it?

Windows Premium Console computer program is the following “surprise” prepared for trustful Internet users. This app threatens the security of your PC. It looks for the vulnerable spots on your computer. It drops malicious codes on your workstation. Upon invisible penetration and installation the virus starts its bogus activity. We recommend you to carefully read this entry to be well-armed not be deceived by its numerous tricks. This article will help you to win the battle with this parasite. Here you will find the basic principles of this fraud deletion from the infected workstation.

Windows Premium Console malware actually enters your PC without being noticed. This is typically for all rogues from this FakeVimes virus tribe. In fact, they are all categorized into the group named “FakeVimes”. Such malwares appear every day, new malware a day. They sometimes have really funny and even silly-sounding names. Smart people would never buy programs like this one, even if it has quite a persuasive name.

As soon as Windows Premium Console rogue gets successfully installed it starts its numerous tricks of scaring users. It begins to run its fake scans and to scare you with a lot of deceitful information. At this point you must be careful not to trust into deceiving statements reported by this junkware. It only wants you to make the payment for its fake license. However, this license is not able to remove real security threats and infections. Removal of Windows Premium Console badware is the only right and logical outcome. So, get rid of this pest using the powerful security software. We recommend you to give preference to GridinSoft Trojan Killer, the powerful anti-malware utility you will easy deal with this issue.

3. Files

In the process of the installation, Windows Premium Console copies the following files to the hard disk.

  • %AppData%\NPSWF32.dll
  • %AppData%\Protector-[rnd].exe
  • %AppData%\result.db

4. System registry

Windows Premium Console creates the following registry entries:

  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Inspector %AppData%\Protector-[rnd].exe
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnHTTPSToHTTPRedirect 0
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\ID 4
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\UID [rnd]
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\net [date of installation]
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorAdmin 0
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorUser 0
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\EnableLUA 0
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe\Debugger svchost.exe
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe\Debugger svchost.exe
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE\Debugger svchost.exe

Windows Premium Console malware remover:

malware removal tool

No comments:

Post a Comment