How to Uninstall and Remove OEM BIOS Emulation Driver Activation Exploit

»»»How to Uninstall and Remove OEM BIOS Emulation Driver Activation Exploit

Microsoft calls Paradox OEM BIOS Emulation OEM Toolkit as OEM driver activation exploit. Whatever is the name, the exploit is a Windows Vista activation crack that bypass product activation. Microsoft said the driver program interferes with standard Windows operation, and thus the exploit has to be removed. In fact, Microsoft has rolled out KB940510 detector via Windows Update that scans the system to catch these exploits.

However, the detector yet to be able to automatically remove the exploits found. However, Microsoft provides removal instructions in KB948253 that is similar to uninstallation guide for Paradox OEM BIOS Emulation Toolkit. The removal instructions of Microsoft also reset the WGAER_W (the WGA exploit detector) status.

To remove the OEM driver activation exploit

  1. Locate the Royal.sys file in the following folder:

    Drive:\Windows\System32\drivers

    Note: Drive represents the drive on which Windows Vista is installed.

  2. Delete the Royal.sys file.
  3. Determine whether the following folder exists on the system:

    Drive:\Windows\System32\DRVSTORE\royal_*<followed by many numbers>

    If it exists, delete the royal_* folder.

  4. Click Start button, type regedit in the Start Search box, and then click regedit in the Programs list. If you are prompted for an administrator password or for confirmation, type your password, or click Continue.
  5. Locate the following registry subkey, and then right-click it:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\OemBiosDevice

  6. Click Delete to delete this subkey.
  7. Locate the following registry subkey, and then right-click it:

    HKEY_LOCAL_MACHINE\Software\Microsoft\Genuine Advantage\WGAER_W\GenuineInfo

  8. Click Delete to delete this subkey.
  9. Exit Registry Editor.
  10. Restart the computer.

Note that you may need to enable the Show hidden files option, and then disable the Hide Protected Operating System Files option in Folder and Layout Options’ Advanced Settings to view the files required to be deleted. However, before removing or deleting the OEM driver exploit, make sure you have already purchased a license for Vista and has valid product key in order to activate Vista, else your Vista system will be deemed not genuine.

By |2017-06-19T14:21:54+00:00June 19th, 2017|Categories: Windows|Tags: |4 Comments

About the Author:

LK is a technology writer for Tech Journey with background of system and network administrator. He has be documenting his experiences in digital and technology world for over 15 years.Connect with LK through Tech Journey on Facebook, Twitter or Google+.