Windows Efficiency Accelerator

Windows Efficiency Accelerator Description

Although Windows Efficiency Accelerator pretends to guard your PC against such threats as phishing attacks, keyloggers and other security risks, as a member of FakeVimes, Windows Efficiency Accelerator doesn’t carry even a single one of the many security features that Windows Efficiency Accelerator boasts of possessing. In lieu of giving you real security information, Windows Efficiency Accelerator will display fake system scans, inaccurate pop-up alerts and fraudulent threat warnings to make it appear as though nonexistent attackers are endangering your computer. In addition to its worthless nature as an anti-virus product, Windows Efficiency Accelerator may also make attacks that can actively reduce your computer’s security, including hijacking your browser searches or blocking unrelated applications. Hence, SpywareRemove.com malware experts recommend that you expel Windows Efficiency Accelerator from your PC with genuine anti-malware software, which will also resolve all related symptoms of a Windows Efficiency Accelerator infection when undertaken properly.

Why the Only Thing That Windows Efficiency Accelerator Speeds Up is Its Access to Your Wallet

Like most other types of rogue anti-virus programs, Windows Efficiency Accelerator doesn’t have any legitimate ability to find or remove PC threats from your computer, but displays fraudulent security information as a replacement for the real thing. Typical pop-up alerts from Windows Efficiency Accelerator can involve nonexistent data transmission activity, digital signature issues, Trojans or even identity theft-related attacks, all of which should be ignored as fake.

SpywareRemove.com malware researchers note that following Windows Efficiency Accelerator’s advice and trying to delete ‘infected’ files is even likely to damage your PC, and that any unusual side effects are most likely caused by Windows Efficiency Accelerator itself (or a related PC threat).

Windows Efficiency Accelerator’s main goal is to force you to buy its ‘full’ version with a purchasable registration key. This should never be done under any circumstances, although SpywareRemove.com malware analysts have found some cases where faking Windows Efficiency Accelerator’s registration via the free key ’0W000-000B0-00T00-E0020′ can be helpful while trying to delete Windows Efficiency Accelerator.

What to Do When Windows Efficiency Accelerator Kicks Its Attacks Into High Gear

SpywareRemove.com malware analysts have also noticed that Windows Efficiency Accelerator can indulge in direct attacks against the security software and settings of an infected PC, as well as other scamware from its family such as Windows Pro Web Helper, Windows Multi Control System, Windows Privacy Counsel, Windows Privacy Extension, Windows Anti-Malware Patch, Windows Personal Doctor, Windows Premium Console, Windows Custodian Utility, Windows Guard Solutions, Windows Pro Safety Release, Windows Software Saver, Virus Doctor, Windows Debug Center, Windows Activity Debugger, Windows Trouble Taker, Windows Virtual Security, Windows Guardian Angel, Windows Maintenance Guard, Windows Expert Series, Smart Internet Protection 2012, Smart Virus Eliminator, Windows Smart Partner, Windows Safety Manager, Windows Private Shield, Windows PRO Scanner, Windows Enterprise Defender, Volcano Security Suite, Windows Software Keeper, Windows Protection Unit, Windows Daily Adviser, Windows Shield Tool, Windows Malware Sleuth, Windows Safety Toolkit, Windows Control Series, Windows Secure Web Patch, Windows Basic Antivirus, Windows Active Defender, Windows Antivirus Release, Home Malware Cleaner, Windows ProSecure Scanner, Windows Safeguard Upgrade, Windows Maintenance Suite, XP Smart Security, Windows Guard Tools, Windows Safety Wizard, Windows Security Suite, My Security Wall, Best Antivirus Software, Keep Center Keeper, Windows Secure Workshop, Personal Internet Security 2011, Windows Managing System, Windows Process Director, Windows Instant Scanner, Windows Custom Management, Windows Interactive Safety, Windows Enterprise Suite, Windows High-End Protection, Windows Privacy Module, Windows Security Renewal, Windows Smart Warden, Windows Shielding Utility, Windows Turnkey Console, Windows AntiHazard Helper, Windows Safety Maintenance, Windows Custom Safety, CleanUp Antivirus, VirusSecurity, Windows Secure Surfer, Windows Advanced Toolkit, Windows Proprietary Advisor, Windows Safety Series, PrivacyGuard PRO, Security Master AV, Smart Internet Protection 2011, Windows Safety Module, Windows Protection Master, Fast Antivirus 2009, Windows Telemetry Center, Live PC Care, Windows Proactive Safety, Windows Interactive Security, Live Enterprise Suite, Windows Web Combat, Windows No-Risk Center, Home Safety Essentials, Windows Antivirus Care, Windows First-Class Protector, Windows Security System, Windows Virtual Firewall, Personal Security Sentinel, Windows Active Guard, System Protection Tools, Windows Virtual Angel, My Security Shield, Windows Care Taker, Windows Safety Checkpoint, Windows Stability Guard, Windows Antivirus Machine, Windows Protection Maintenance, Smart Security, Windows Risk Minimizer, Additional Guard, Antivirus Smart Protection, Windows Crucial Scanner, Windows Sleek Performance, Windows Secure Workstation, Windows PC Aid, Activate Ultimate Protection, Windows Functionality Checker, Windows Advanced Security Center, Windows Virus Hunter, Best Malware Protection, Windows Be-on-Guard Edition, Windows Ultimate Security Patch, Enterprise Suite, Windows Tools Patch, Windows Profound Security, Strong Malware Defender, Internet Security Essentials, Windows Performance Catalyst, Total Anti Malware Protection, Windows Antivirus Patch, Windows Antivirus Rampart, PC Live Guard, Internet Security Suite, Windows No-Risk Agent, Windows Abnormality Checker, Windows Pro Rescuer, Windows ProSecurity Scanner, Windows Pro Safety, Windows Premium Defender, Windows AntiHazard Center, Extra Antivirus, Windows Performance Adviser, Windows Advanced User Patch, Windows System Defender, Windows Threats Destroyer, Windows Ultimate Safeguard, Windows Problems Stopper, Windows Web Commander, Smart Engine, Anti-Malware Lab, Windows Health Keeper, Security Antivirus, My Security Engine, Windows Internet Booster, Windows Pro Solutions, Windows Defence Counsel, Windows Defending Center, Windows Home Patron, Smart Anti-Malware Protection, Windows Firewall Constructor, Windows Antihazard Solution, Windows Warding System, Windows Premium Guard and Windows Pro Defence. Standard dangers that you should anticipate from Windows Efficiency Accelerator or any other Win32/FakeVimes-based PC threat include:

Search engine hijacks that force your browser to load unfamiliar websites. Since these hijacks use Hosts file modifications, they can function in all types of web browsers.
Blocked security software, such as Task Manager, popular brands of anti-virus scanners and general system diagnostic utilities. Windows Efficiency Accelerator may also block some competing types of rogue anti-virus products although, obviously, the latter isn’t any cause for worry.
Changes to your Windows settings that allow you to download files with invalid signature identification without corresponding warning messages.
Disabled UAC features.

These attacks cause SpywareRemove.com malware experts to recommend Windows Efficiency Accelerator’s immediate deletion once you have access to any good anti-malware scanner, since they place your computer in a heightened state of vulnerability against other PC threats.

Windows Efficiency Accelerator Automatic Detection Tool (Recommended)

Is your PC infected with Windows Efficiency Accelerator? To safely & quickly detect Windows Efficiency Accelerator, we highly recommend you run the malware scanner listed below.

Download SpyHunter's* Malware Scanner to detect Windows Efficiency Accelerator What happens if Windows Efficiency Accelerator does not let you open SpyHunter or blocks the Internet?

Visual & GUI Characteristics

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:

#	File Name	Detection Count
1	%APPDATA%\ Protector-aydv.exe	607
2	Windows Efficiency Accelerator.lnk	169
3	%APPDATA%\ Protector-pyqj.exe	12
4	%AppData%\NPSWF32.dll	N/A
5	%AppData%\result.db	N/A
6	%AppData%\Protector-[RANDOM CHARACTERS].exe	N/A
7	%CommonStartMenu%\Programs\Windows Efficiency Accelerator.lnk	N/A
8	%Desktop%\Windows Efficiency Accelerator.lnk	N/A

Registry Modifications

Tutorial: To edit and delete registry entries manually, read the tutorial on how to remove malicious registry entries.

Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.

The following newly produced Registry Values are:
HKEY..\..\{Value}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnOnHTTPSToHTTPRedirect" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegedit" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegistryTools" = 0HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = 0HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Inspector"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "netHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avp32.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashLogV.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\beagle.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jedi.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msa.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ntvdm.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rav7.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spoler.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vir-help.exeHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wupdt.exe

Additional Information

The following messages's were detected:

#	Message
1	Warning Firewall has blocked a program from accessing the Internet C:\program files\internet explorer\iexplore.exe is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server.
2	Warning! Spambot detected! Attention! A spambot sending viruses from your e-mail has been detected on your PC.
3	Error Keylogger activity detected. System information security is at risk. It is recommended to activate protection and run a full system scan.
4	Error Software without a digital signature detected. Your system files are at risk. We strongly advise you to activate your protection.
5	Torrent Alert Recomended: Please use secure encrypted protocol for torrent links. Torrent link detected! Receiving this notification means that you have violated the copyright laws. Using Torrent for downloading movies and licensed software shall be prosecuted and you may be sued for cybercrime and breach of law under the SOPA legislation. Please register your copy of the AV to activate anonymous data transfer protocol through the torrent link.
6	Warning Firewall has blocked a program from accessing the Internet. Windows Media Player Resources C:\Windows\system32\dllcache\wmploc.dll C:\Windows\system32\dllcache\wmploc.dll is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server.