Windows Shield Center is a virus that will disguise itself as another computer security application necessary in removing Trojan, virus and other sort of infection.
Windows Shield Center was found to be a part of a fake Microsoft Security Essentials and is spreading fast with the help of a Trojan. Infected computer will experience several malfunction not only on browsing the Internet but also when running applications locally installed. This is because Windows Shield Center will modify system settings and registry to avoid its own removal. This rogue program was designed to lure computer users so that they will commit to buy the registered version of this useless product.
This malware will continuously display a barrage of fake warning messages stating that computer is invaded by virus and must be resolve instantly with the registered version of Windows Shield Center. It was found out by security experts that Windows Shield Center has no capability to remove virus. It was not also designed to protect computer as how it was promoted. For this reason, Windows Shield Center was added to the lists of rogue antivirus program that must be avoided.
Removal:
Infected Location:
%AppData%\[random].exe
Registry Entries to be removed. (Take a backup of registry, before editing it)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\egui.exe "Debugger" = 'svchost.exe'
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ekrn.exe "Debugger" = 'svchost.exe'
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" = '[random].exe
After removing all these files, restart your computer and the issue will be fixed. And don’t forget to do update your Security Software, check the Firewall Settings and the Operating System and finally do a full system scan with the Security Software.
0 comments:
Post a Comment