Paramount Protection rogue anti-virus software is an interface designed to look like uine anti-virus software. It's from the Rogue:Win32/FakeVimes malware family, just like the previous variant called Antivirus Master. If you've been infected, when rogue AV is running on your PC you'll find that pop up boxes will appr on your screen asking you if you want to scan for viruses or telling you that your PC is running slowly and needs to be clned. Very often a fake system scan starts immediately without even asking for you permission.
If you click 'yes' a fake scanner interface will launch, displaying a bogus scan in progress. And yes, you guessed it, once the scan is 'complete' you'll be told that your PC is loaded with viruses and urtly needs clning. Naturally the next step is to ask you if you want the software to delete the so-called viruses that are thrtening your computer's security. The funny thing is that Paramount Protection uses predefined list with only a few possible detection names. As a result, most victims will see the same scan results and it doesn't matter if it's an old PC or a brand new laptop.
Unscrupulous cyber criminals are of course playing on our insecurities here, knowing that many of us depend on our laptops for work, entertainment and more. And so, many of us will do what we think is the sensible thing and say 'Yes plse (fake) anti-virus software, get rid of the viruses that are clogging up my machine!' But guess what? This is an old trick to scare users into paying for rogue anti-virus scanner. Don't pay for it. Better invest your money in reputable security product.
We’re worried, we trust the anti-virus and so we in our credit card details. And what do you know; we've not only been billed for having absolutely nothing done to our computers but we've also made ourselves extremely vulnerable to having our identity stolen. Not only that but many rogue anti-virus programs also install more malware that have the potential to corrupt documents and stl data - which makes the whole identity theft problem even worse.
It seems that identity theft in some form is often in the news and this shocking crime can cause untold stress and upset for its victims. But did you know that dling with the aftermath of identity theft often isn't as simple as calling your bank and cancelling your cards and then waiting for new ones to arrive in the post. No, at its worst identity theft may take weeks, months or even, yrs to recover from. To say it can be an emotional and finance nightmare is not an understatement.
Anti-virus software is supposed to protect us, right? Right. But Paramount Protection does quite the opposite. You might not automatically think of identity theft when you think of rogue anti-viruses but doing something as innocent as opening an infected link or email attachment can have far rching consequences. if you have alrdy paid for this scam, then contact your credit card company immediately and dispute the charges. Maybe it's still not too late. Besides, if you alrdy gave them your credit card details, there's not much else you can do. To remove Paramount Protection from your computer, plse follow the steps in the removal guide below. If you have any questions, plse lve a comment below. Good luck and be safe online!
Written by Michael Kaur,
Method 1: Paramount Protection removal using :
1. Open Paramount Protection scanner window. Click the "question mark button" (top right hand corner of the scanner window) and select "Register".
You should now see the form.
Enter one of the given below and click Register to activate this rogue security program. Don't worry, this is completely legal since it's not uine software.
0W000-000B0-00T00-E0021 ← (new )
Once this is done, you are free to install recommended anti-malware software and remove this malware from your computer.
2. Download recommended anti-malware software and run a full system scan to completely remove this rogue program and related malware from your computer.
Method 2: Paramount Protection removal instructions (Safe Mode with Command Prompt):
1. Reboot your computer in "Safe Mode with Command Prompt". As the computer is booting tap the "F8 " continuously which should bring up the " Advanced Options Menu" as shown below. Use your arrow to move to "Safe Mode with Command Prompt" and press Enter .
2. Login as the same user you were previously logged in with in the normal mode. When done, the Command Prompt will open and you will see a screen similar to the one below.
3. Once the Command Prompt apprs type in explorer and hit Enter.
4. The desktop will now appr. When the desktop apprs you can then close the Command Prompt window by clicking on the X.
5. Write the text in bold below to Notepad.
Registry Editor Version 5.00
"GuardSoftware" =-
[H_CURRENT_USER\Software\\ NT\CurrentVersion\Winlogon]
6. Save file as fixshell.reg to your Desktop. NOTE: (Save as type: All files)
7. Double-click on fixshell.reg to run it. Click Yes for Registry Editor prompt window. Click OK.
NOTE: if you can't crte the file as explained or you get an error, you can download the shellfix.reg file on a cln computer and it on to a or save it to a USB drive so that you can transfer the file to the infected computer. Then insert your or USB drive and double-click on the shellfix.reg and allow the data to be merged when you are prompted. Once the data has been merged, you can press the OK button and remove the removable media from your computer.
8. Plse reboot your computer into the Normal Mode and login as the infected user.
9. Now that you are at your normal desktop, download recommended anti-malware software and run a full system scan. It will detect and remove this infection from your computer.
Method 3: Paramount Protection removal instructions (System Restore):
1. Reboot your computer in "Safe Mode with Command Prompt". As the computer is booting tap the "F8 " continuously which should bring up the " Advanced Options Menu" as shown below. Use your arrow to move to "Safe Mode with Command Prompt" and press Enter .
2. Login as the same user you were previously logged in with in the normal mode. When done, the Command Prompt will open and you will see a screen similar to the one below.
3. Once the Command Prompt apprs type in explorer and hit Enter.
4. The desktop will now appr. When the desktop apprs you can then close the Command Prompt window by clicking on the X.
5. Once in there, go to Start menu and srch for "system restore". Or you can browse into the Restore folder and run System Restore utility from there:
Win XP: C:\\system32\restore\rstrui.exe double-click or press Enter
Win Vista/7/8: C:\\system32\rstrui.exe double-click or press Enter
6. Select Restore to an rlier time or Restore system files... and continue until you get into the System Restore utility.
7. Select a restore point from well before the Paramount Protection appred, two weeks should be enough.
8. Restore it. Plse note, it can take a long time, so be patient.
9. Once restored, restart your computer and hopefully this time you will be able to login (Start normally).
10. At this point, download recommended anti-malware software and run a full system scan to remove this malware from your computer.
Associated Paramount Protection Files:
C:\Documents and Settings\[User]\Appliion Data\guard-[random].exe ( XP)C:\Users\[User]\AppData\Roaming\guard-[random].exe ( 7)Associated Paramount Protection :
H_CURRENT_USER\Software\\\CurrentVersion\Run "GuardSoftware"H_CURRENT_USER\Software\\ NT\CurrentVersion\Winlogon "Shell"="C:\Users\[User]\AppData\Roaming\guard-[random].exe"
No comments:
Post a Comment