Should I remove Colour Scheme Hard Drive?
What percent of users and experts removed it?
78% remove it22% keep it
What do people think about it?
(click star to rate)
How common is it?
Reach 0.0001%
Versions
Version | Distribution |
1.0.0.0 |
100.00% |
|
Colour Scheme Hard Drive
What is Colour Scheme Hard Drive?
This is a WinCheck/CMI (variant) adware/browser hijacker variant that injects code into the user's web browser (IE, Chrome and Firefox). It is known as an ad-injector, a malicious process that once inside the web browser will hijack existing advertisements of underlying web sites (not associated with the website itself). It will also inject new ads in white space on the site or images that have standard banner sizes. These ads are typically for promoting shopping discount coupons, ads for PC optimizers or bundled PUP offers, or malvertising since it runs on sketchy ad networks.This runs as a startup process called WinCheck in the user's startup registry (Run key) and will execute each time the computer is restarted and the user logs in.
How do you know if you are infected? First, if you have this program installed then this adware is most likely still running. Next, you see ads in the browser that say something like "Ads by WinCheck".
Overview
Upon installation and setup, it defines an auto-start registry entry which makes this program run on each Windows boot for all user logins. The main program executable is bnsg836F.exe. Typically most users end up uninstalling this just after a few days.
- Starts automatically
- Displays unwanted advertisements
- The experts agree, you should remove it!
Program details
Installation folder: C:\users\user\appdata\Local\4C4C4544-1431049789-3710-8035-C3C04F364631
Uninstaller: "C:\users\user\appdata\Local\4C4C4544-1431049789-3710-8035-C3C04F364631\uninstall.exe"
Files installed by Colour Scheme Hard Drive
Program executable: | bnsg836F.exe |
Path: | C:\users\user\appdata\Local\4C4C4544-1431049789-3710-8035-C3C04F364631\bnsg836F.exe |
MD5: | b5406a6376909c45352492d4191aa8de |
Additional files:
-
Uninstall.exe
-
bnsaE217.exe
Behaviors exhibited
Startup File (All Users Run)
- bnsaE217.exe is loaded in the all users (HKLM) registry as a startup file name 'WinCheck' which loads as C:\users\user\appdata\Local\5F25EF40-1431079157-11E1-A359-047D7BD8487A\bnsaE217.exe.
How do I remove Colour Scheme Hard Drive?
You can uninstall Colour Scheme Hard Drive from your computer by using the Add/Remove Program feature in the Window's Control Panel.
- On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
- Windows Vista/7/8/10: Click Uninstall a Program.
- Windows XP: Click Add or Remove Programs.
- When you find the program Colour Scheme Hard Drive, click it, and then do one of the following:
- Windows Vista/7/8/10: Click Uninstall.
- Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
- Follow the prompts. A progress bar shows you how long it will take to remove Colour Scheme Hard Drive.
- If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.
HOW IT STARTS
Automatically starts? Yes
(Found in the run registry)
|
|
USER ACTIONS
|
Uninstall it 78%
Keep it 22%
|
|
|
MOST USED OS
~99%
Windows 7 (SP1)
|
Geography
80.00% of installs come from the United States
Which countries install it?
United States |
80.00% |
Indonesia |
20.00% |
PC manufacturers
What PC manufacturers (OEMs) have it installed?
Toshiba |
50.00% |
|
Dell |
50.00% |
|