Tuesday, May 22, 2012

Removal of Windows Advanced Security Center adware to eliminate destructive and annoying symptoms related

Windows Advanced Security Center adware is crafted by hackers to remind by its appearance a well-designed computer utility. The hackers impose their nice-looking software on users by setting online traps such as banner links, full-page popups; also, spam is a popular means for the threat dissemination.
The threat is classified as adware, because, as a matter of fact, it advertises itself by creating intentionally misleading reports on threats allegedly lurking in the computer system. Not only that, it could be defined as a severe trojan of destructive type, for it is also designed and instructed to affect various facets of computer performance.
Remove Windows Advanced Security Center as there are two main reasons for that: firstly, to prevent the malware from doing harm; secondly - to get rid of Windows Advanced Security Center annoying popups.
Free scanner is available here as a tested solution for the adware extermination. 




Windows Advanced Security Center manual removal:
Delete infected files:
%appdata%\npswf32.dll
%appdata%\Inspector-[rnd].exe
%desktopdir%\Advanced Security Center.lnk
%commonprograms%\Advanced Security Center.lnk
%CommonStartMenu%\Programs\Fake Advanced Security Center.lnk 

Find and delete the following registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnOnHTTPSToHTTPRedirect" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegedit" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegistryTools" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Inspector"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "net" = 2012-3-1_2
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "UID" = "fneqtdmtpi"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ERROR_PAGE_BYPASS_ZONE_CHECK_FOR_HTTPS_KB954312
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashCnsnt.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avxmonitor9x.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fnrb32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmod.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\oasrv.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\symtray.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\windows Police Pro.exe


No comments: