Home Malware Programs Rogue Anti-Spyware Programs Windows Process Director

Windows Process Director

Posted: March 21, 2012

Threat Metric

Ranking: 14,631
Threat Level: 2/10
Infected PCs: 12,165
First Seen: March 21, 2012
Last Seen: August 8, 2023
OS(es) Affected: Windows

Windows Process Director Screenshot 1Windows Process Director is a fake anti-malware and security program that deceives you about your computer's health to swindle you out of your money. While Windows Process Director will claim to offer advanced control over memory processes, anti-phishing protection, live threat detection and other benign features, SpywareRemove.com malware researchers have verified Windows Process Director's total inadequacy at performing any type of security function. Windows Process Director may also be guilty of redirecting your web browser, blocking PC security sites or blocking legitimate security programs. Since Windows Process Director is both worthless as a security product and an active danger to your PC, you should strongly consider disabling and removing Windows Process Director with appropriate anti-malware tactics and software.

Windows Process Director – Expertly Directing the Cues to Your Computer Problems

Windows Process Director may act like a security program on the inside, but internally, Windows Process Director is busy orchestrating a detailed hoax to convince you that imaginary PC threats are assailing your computer. This finely-crafted illusion includes fake system scans, fraudulent alert messages, hijack attacks against your web browser and a selective application barricade to prevent you from using real anti-malware programs to delete Windows Process Director. Although Windows Process Director is limited to attacking Windows, from Windows it will launch automatically and display its varied types of fraudulent system information without any obvious way for you to turn Windows Process Director off.

Although not its most patently detectable attack, SpywareRemove.com malware experts consider Windows Process Director's ability to block security programs (such as Task Manager and popular brands of anti-virus scanners) to be Windows Process Director's most dangerous attribute. You may need to use Safe Mode or another alternative in system boot options to shut Windows Process Director down and access your other applications to remove Windows Process Director safely. Prolonged lack of access to programs that Windows Process Director blocks will leave your PC more vulnerable than normal to attacks by other PC threats, and due haste in Windows Process Director's deletion is strongly advised.

Sorting Windows Process Director's Fake Warnings Out from the Real Thing

Windows Process Director is also known for displaying fraudulent warning messages and fake system errors in a variety of formats, including via browser pages, taskbar balloons and other types of pop-ups. These messages never contain accurate security-related information, and SpywareRemove.com malware researchers suggest that you ignore any alert coming from Windows Process Director.

Windows Process Director can be removed by any anti-malware product that's capable of dealing with FakeVimes PC threats. Other members of the FakeVimes family include Privacy Guard Pro, PrivacyGuard Pro 2.0, Extra Antivirus, Fast Antivirus 2009, Presto TuneUp, Windows Security Suite, Smart Virus Eliminator, Packed.Generic.245, Volcano Security Suite, Windows Enterprise Suite, Enterprise Suite, Additional Guard, Live PC Care, PC Live Guard, Live Enterprise Suite, Security Antivirus, My Security Wall, CleanUp Antivirus and Smart Security. However, you may need to update your software before it can detect all components in a Windows Process Director attack, since Windows Process Director is a recent addition to this old family of rogue anti-virus programs and may include changes to obfuscate its code.

Windows Process Director Screenshot 2Windows Process Director Screenshot 3Windows Process Director Screenshot 4Windows Process Director Screenshot 5Windows Process Director Screenshot 6Windows Process Director Screenshot 7Windows Process Director Screenshot 8Windows Process Director Screenshot 9Windows Process Director Screenshot 10Windows Process Director Screenshot 11Windows Process Director Screenshot 12

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%appdata% pswf32.dll File name: %appdata% pswf32.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
%appdata%Inspector-[rnd].exe File name: %appdata%Inspector-[rnd].exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%commonprograms%Windows Process Director.lnk File name: %commonprograms%Windows Process Director.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%desktopdir%Windows Process Director.lnk File name: %desktopdir%Windows Process Director.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file

Registry Modifications

The following newly produced Registry Values are:

HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun!Inspector

Additional Information

The following URL's were detected:
installcurrentoverlythefile.vip
Loading...