Home Malware Programs Rogue Anti-Spyware Programs Palladium Pro

Palladium Pro

Posted: January 3, 2011

Threat Metric

Threat Level: 10/10
Infected PCs: 155
First Seen: January 3, 2011
Last Seen: August 17, 2022
OS(es) Affected: Windows

ScreenshotPalladium Pro is the successor to the Palladium Antivirus rogue scanner, with only a minor name change and other tweaks to differentiate Palladium Pro from that recent malware. Palladium Pro uses traditional rogue software tricks like running non-authentic scans and creating lying error messages to use fear as a tool to grab your money. Palladium Pro also shares another trait with most rogue software; in that Palladium Pro is also distributed by the fake Microsoft Security Essentials AlertMalware. This malware will infect your computer on the sly and make you install Palladium Pro or another rogue scanner. Both these infections should be thoroughly exterminated when found, since they have no upsides and bring serious disadvantages to any machine they lurk within.

Sidestepping the Palladium Pro Contagion

As a newer piece of malware, the Palladium Pro rogue scanner is best thwarted by equally freshly-updated anti-malware tools. Since the infection rates indicate that Palladium Pro comes from Russia, being especially careful around sources from that region may also help you in keeping Palladium Pro from infecting you.

Although it might have other means of getting around, Palladium Pro's main transportation is without a doubt the fake Microsoft Security Essentials Alert Trojan. This Trojan malware will slip onto your system quietly through various subversive methods, and trick you into downloading Palladium Pro rogue scanner payload with an error message similar in format to one from Microsoft. Ignoring that initial install prompt, and quickly destroying the Trojan with a fast scan will keep Palladium Pro out of your hard drive with little effort on your part.

Have Palladium Pro's Claws Sunk Into Your Hard Drive?

In contrast to Trojans, rogue program like Palladium Pro aren't capable of hiding themselves and still fulfilling their goal of taking your money. The first thing Palladium Pro does is muss up your registry so that it starts along with Windows if normal startup options are used. Palladium Pro will use this startup position to great advantage by taking over your desktop and forcing you to start a 'scan' every time your computer starts. In reality, Palladium Pro isn't scanning anything, but instead it is going through a predetermined graphical display to fake a modicum of usefulness.

After a scan, Palladium Pro will always report that most but not all infections were cleaned. Although the rogue scanner didn't actually do anything, Palladium Pro wants you to think it's a valuable product, as well as one that you still need urgently. Palladium Pro will then try to redirect you towards a purchase form for a registered version of Palladium Pro software. Buying Palladium Pro is buying a scam, and a hazardous one at that. You're giving your information and money away to hackers!

The Other Crosses Palladium Pro Forces You to Bear

Palladium Pro isn't content to stop with just an occasional scan, which would make Palladium Pro a pleasantly ignorable rogue scanner. No, Palladium Pro prefers to badger the user constantly with false system alerts, desktop error messages and a number of different variations of the Palladium Pro that take visual precedence over proper system functions. Besides all its thieving rogue scanner and adware traits, Palladium Pro is pretty likely to shut down parts of your system's security, allowing other kinds of malware inside. For all these reasons, Palladium Pro is only 'pro' at damaging your machine, so wiping the rogue scanner out with an anti-malware scanner should be the obvious recourse.



Heuristic.BehavesLike.Win32.ModifiedUPX.C!87 [McAfee-GW-Edition]

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:

%APPDATA%\palladium.exe File name: palladium.exe
Size: 442.36 KB (442368 bytes)
MD5: a2a837153ebb7b02caa9b05b069eaa88
Detection count: 143
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: August 17, 2022
file.exe File name: file.exe
Size: 439.8 KB (439808 bytes)
MD5: 09b21fda058134f70b7094ddc483579f
Detection count: 55
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: June 17, 2016


  • BobSmirnoff says:

    This is nearly right. You will find it very difficult to use the accout of an infected user because it sets up a shell in the registry
    You MUST remove this key:
    HKCU\software\microsoft\windowsNT\currentversion\winlogon\Shell = [path]\palladium.exe
    (Note if you log in as a different user the reg hive will be the Hkey_users\{sid of infected user account)\software\etc.... )

    The occurance we had here places the executables in appdata\roaming
    The CLSID number varies so you are unlikely to find that number in registry

    Search the temp int files folder for EXE files and delete them. We found 2 that had the same time and date stamp as when the infection started. These could be random names but you don't want eny exe files in this location so splat them.

    Run a FULL virus scan. We found a trohan downloader renos.r although this may be unconnected with the Palladium Pro nonsense

  • JullesM Rogers says:

    I have the Palladium virus on my laptop and I can't even get into task manager or anything. I tried to start in safe mode and it still comes up. Can you help?

  • Lori says:

    I also cannot get into the task manager. I am frozen out from doing anything except this ridiculous loop

  • Luz says:

    Hi,i got the s ame poblem,i Can not delete the program,so if anybody can help me will be great

  • Trent says:

    Hi, I got the palladium pro virus and i started task manager and i removed all the palladium processes and my windows is just a black screen i can only use my task manager can you guys help me out

  • Roger says:

    Hi I got infected with it last week, and I like you couldnt get rid of it... I have now!! please dont worry.. I went onto the internet and I found the solution from Rogue Doctor. the solution is free and it removed it for me. The video lasts for approx 4mins and guides you through the steps.. It is simple to complete.. if you have a further problem, just advise and I will list the step by step solution.. as mentioned above please dont worry!

  • Syed Rizvi says:

    I have Palladium virus on my laptop. I can\'t get into task Manager or anything. .can you help me?

  • tenzin says:

    HI I got palladium Pro yesterday , I am able start my task mamager and not able to close or delete, want sell what ever product forcefully in order to run my computer

  • Jesse Alexander says:

    Palladium Pro is preventing me from accessing my Task Manager to remove some of the functions. How do I access Task Manager to attempt to follow the manual processes when the virus is preventing me from taking the necessary steps?

  • vagn says:

    Just got rid of this malicious Palladium virus protection program.

    The easiest way is to set your clock over a month ahead then reboot and after restarting simply delete the program....put it in the recycle bin.

    Try it it worked for me.

    p.s Don't forget to set your clock back!

  • RF says:

    if I do that, how do I find the program after I do that? SEARCH?

  • Jtags says:

    take heart. persistence pays off. i had similar problems that others were having.
    go to task manager, click on processes, end palladium exe. process. click yes when prompted, go to file , new task, type in explorer.exe. it takes you back to your homepage. haven't got any further than that, but this at least gives you access to your computer.

  • lorraine says:

    My pc came dowm with palladim I have tried to remove the program and now my screen is black and I cannot even bring my task manager back up Help Help
    Thank you

  • Stephan Geese says:

    My PC is infected with PalladiumPro. Using Task Manager, I replaced 'palladium.exe' with 'explorer.exe'. I need help. How much?

  • bryan butler says:

    i cannot get rid of palladium pro from my other computer

  • Bonnie Lloyd says:

    Just hit this afternoon with Palladium Pro. How do you get into Task Manager or clock when the program will not let you get past the scan screen? Can the clock be accessed by one of the unaffected files that are displayed during the scan?

  • emma says:

    I had the same problem but I managed to get rid of by downloading Process exe on another computer and transferring the file and running it on the infected one. That will allow you to open the task manager and stop the \'palladium.exe\' process. This will enable you to access internet and download an anti-malwarebyte from Cnet and run it to clear the remaining of the virus hopefully! I\'m in the second stage myself (running anti-virus scan) and hopefully by the end of it I\'d have gotten rid of this C**p!


  • craig says:

    I just got palladium pro and tells me to buy the product but I did not want to but it. now I can't get anything showing on my screen. i need instructtion on how to remove palladium pro.

  • Ketih says:

    Bobs Post of Jan 12th has worked perfectly well for me, thanks for that - it isnt difficult to do. the only detail missing is how to get to edit your registry. Simply type Regedit at the Serach Programmes or Files box on the startup menu and you will find it.