How to heal a computer after Windows Advanced Security Center virus attack

Сomputer infections cause a great deal of trouble for PC owners at present time. The cyber criminals “make us glad” with new malicious samples almost every day. Today is not an exception. This entry is devoted to Windows Advanced Security Center. This “invention” is misleading and potentially dangerous for all computers worldwide. This badware is in no way original as compared to some other fake AV programs. If one spends much time browsing on the Internet, chances that he/she falls victim to this scam are very high. Some links you deem safe and even useful at first glimpse, may contain the of the downloader trojan embedded into those links or files. Once the virus slips across the borders of your private territory it starts its malicious activity. This piece of malware creates the favorable environment for Windows Advanced Security Center trialware to start acting. Those are bad files, devastating Registry keys and unwanted browser add-ons. Such amendments will lead to the following symptoms of the virus’ activity: it’s going to keep popping up in the shape of fake scanners, deceitful alert messages etc. All of them tend to make you believe that your PC has some serious security leakages and if not to do away with them the system crash is possible. In order to help you to fix these issues you need to get down to repairing measures immediately. However, if you decide to indulge in this you’ll realize that it won’t do without your making a payment for registering this program.

To cut long story short, you are being tricked into purchasing the scam. To avoid all of this, you need to get rid of Windows Advanced Security Center scareware without postponing.

Windows Advanced Security Center automatic remover:

Windows Advanced Security Center manual remover:

Delete Windows Pro Safety files:
%AppData%\NPSWF32.dll
%AppData%\Protector-[rnd].exe
%AppData%\result.db
Delete Windows Advanced Security Center registry entries:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Inspector %AppData%\Protector-[rnd].exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnHTTPSToHTTPRedirect 0
HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\ID 4
HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\UID [rnd]
HKCU\Software\Microsoft\Windows\CurrentVersion\Settings\net [date of installation]
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorAdmin 0
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorUser 0
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\EnableLUA 0
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe\Debugger svchost.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe\Debugger svchost.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE\Debugger svchost.exe

Leave a Comment

*