Palladium Pro
Posted: January 3, 2011
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 10/10 |
|---|---|
| Infected PCs: | 155 |
| First Seen: | January 3, 2011 |
|---|---|
| Last Seen: | August 17, 2022 |
| OS(es) Affected: | Windows |
Palladium Pro is the successor to the Palladium Antivirus rogue scanner, with only a minor name change and other tweaks to differentiate Palladium Pro from that recent malware. Palladium Pro uses traditional rogue software tricks like running non-authentic scans and creating lying error messages to use fear as a tool to grab your money. Palladium Pro also shares another trait with most rogue software; in that Palladium Pro is also distributed by the fake Microsoft Security Essentials AlertMalware. This malware will infect your computer on the sly and make you install Palladium Pro or another rogue scanner. Both these infections should be thoroughly exterminated when found, since they have no upsides and bring serious disadvantages to any machine they lurk within.
Sidestepping the Palladium Pro Contagion
As a newer piece of malware, the Palladium Pro rogue scanner is best thwarted by equally freshly-updated anti-malware tools. Since the infection rates indicate that Palladium Pro comes from Russia, being especially careful around sources from that region may also help you in keeping Palladium Pro from infecting you.
Although it might have other means of getting around, Palladium Pro's main transportation is without a doubt the fake Microsoft Security Essentials Alert Trojan. This Trojan malware will slip onto your system quietly through various subversive methods, and trick you into downloading Palladium Pro rogue scanner payload with an error message similar in format to one from Microsoft. Ignoring that initial install prompt, and quickly destroying the Trojan with a fast scan will keep Palladium Pro out of your hard drive with little effort on your part.
Have Palladium Pro's Claws Sunk Into Your Hard Drive?
In contrast to Trojans, rogue program like Palladium Pro aren't capable of hiding themselves and still fulfilling their goal of taking your money. The first thing Palladium Pro does is muss up your registry so that it starts along with Windows if normal startup options are used. Palladium Pro will use this startup position to great advantage by taking over your desktop and forcing you to start a 'scan' every time your computer starts. In reality, Palladium Pro isn't scanning anything, but instead it is going through a predetermined graphical display to fake a modicum of usefulness.
After a scan, Palladium Pro will always report that most but not all infections were cleaned. Although the rogue scanner didn't actually do anything, Palladium Pro wants you to think it's a valuable product, as well as one that you still need urgently. Palladium Pro will then try to redirect you towards a purchase form for a registered version of Palladium Pro software. Buying Palladium Pro is buying a scam, and a hazardous one at that. You're giving your information and money away to hackers!
The Other Crosses Palladium Pro Forces You to Bear
Palladium Pro isn't content to stop with just an occasional scan, which would make Palladium Pro a pleasantly ignorable rogue scanner. No, Palladium Pro prefers to badger the user constantly with false system alerts, desktop error messages and a number of different variations of the Palladium Pro that take visual precedence over proper system functions. Besides all its thieving rogue scanner and adware traits, Palladium Pro is pretty likely to shut down parts of your system's security, allowing other kinds of malware inside. For all these reasons, Palladium Pro is only 'pro' at damaging your machine, so wiping the rogue scanner out with an anti-malware scanner should be the obvious recourse.
Aliases
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%APPDATA%\palladium.exe
File name: palladium.exeSize: 442.36 KB (442368 bytes)
MD5: a2a837153ebb7b02caa9b05b069eaa88
Detection count: 143
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: August 17, 2022
file.exe
File name: file.exeSize: 439.8 KB (439808 bytes)
MD5: 09b21fda058134f70b7094ddc483579f
Detection count: 55
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: June 17, 2016
This is nearly right. You will find it very difficult to use the accout of an infected user because it sets up a shell in the registry
You MUST remove this key:
HKCU\software\microsoft\windowsNT\currentversion\winlogon\Shell = [path]\palladium.exe
(Note if you log in as a different user the reg hive will be the Hkey_users\{sid of infected user account)\software\etc.... )
The occurance we had here places the executables in appdata\roaming
The CLSID number varies so you are unlikely to find that number in registry
Search the temp int files folder for EXE files and delete them. We found 2 that had the same time and date stamp as when the infection started. These could be random names but you don't want eny exe files in this location so splat them.
Run a FULL virus scan. We found a trohan downloader renos.r although this may be unconnected with the Palladium Pro nonsense
I have the Palladium virus on my laptop and I can't even get into task manager or anything. I tried to start in safe mode and it still comes up. Can you help?
I also cannot get into the task manager. I am frozen out from doing anything except this ridiculous loop
Hi,i got the s ame poblem,i Can not delete the program,so if anybody can help me will be great
Hi, I got the palladium pro virus and i started task manager and i removed all the palladium processes and my windows is just a black screen i can only use my task manager can you guys help me out
Hi I got infected with it last week, and I like you couldnt get rid of it... I have now!! please dont worry.. I went onto the internet and I found the solution from Rogue Doctor. the solution is free and it removed it for me. The video lasts for approx 4mins and guides you through the steps.. It is simple to complete.. if you have a further problem, just advise and I will list the step by step solution.. as mentioned above please dont worry!
I have Palladium virus on my laptop. I can\'t get into task Manager or anything. .can you help me?
HI I got palladium Pro yesterday , I am able start my task mamager and not able to close or delete, want sell what ever product forcefully in order to run my computer
Palladium Pro is preventing me from accessing my Task Manager to remove some of the functions. How do I access Task Manager to attempt to follow the manual processes when the virus is preventing me from taking the necessary steps?
Just got rid of this malicious Palladium virus protection program.
The easiest way is to set your clock over a month ahead then reboot and after restarting simply delete the program....put it in the recycle bin.
Try it it worked for me.
p.s Don't forget to set your clock back!
if I do that, how do I find the program after I do that? SEARCH?
take heart. persistence pays off. i had similar problems that others were having.
go to task manager, click on processes, end palladium exe. process. click yes when prompted, go to file , new task, type in explorer.exe. it takes you back to your homepage. haven't got any further than that, but this at least gives you access to your computer.
My pc came dowm with palladim I have tried to remove the program and now my screen is black and I cannot even bring my task manager back up Help Help
Thank you
My PC is infected with PalladiumPro. Using Task Manager, I replaced 'palladium.exe' with 'explorer.exe'. I need help. How much?
i cannot get rid of palladium pro from my other computer
Just hit this afternoon with Palladium Pro. How do you get into Task Manager or clock when the program will not let you get past the scan screen? Can the clock be accessed by one of the unaffected files that are displayed during the scan?
I had the same problem but I managed to get rid of by downloading Process exe on another computer and transferring the file and running it on the infected one. That will allow you to open the task manager and stop the \'palladium.exe\' process. This will enable you to access internet and download an anti-malwarebyte from Cnet and run it to clear the remaining of the virus hopefully! I\'m in the second stage myself (running anti-virus scan) and hopefully by the end of it I\'d have gotten rid of this C**p!
Goodluck.
I just got palladium pro and tells me to buy the product but I did not want to but it. now I can't get anything showing on my screen. i need instructtion on how to remove palladium pro.
Bobs Post of Jan 12th has worked perfectly well for me, thanks for that - it isnt difficult to do. the only detail missing is how to get to edit your registry. Simply type Regedit at the Serach Programmes or Files box on the startup menu and you will find it.
Keith