I want to remove the fake program called Windows Protection suite for free of charge.
- I have this program called Windows protection Suite that has just appeared on my computer.I don't know how I got this program but it is causing proplems for my computer.It has slowed down speed wise ,and is interupting anything I do online.I need to remove this program.I have AVg but it hasn't helped remove this program.
All Replies
- uh oh! you got hit!!
but not to worry, i deal with this almost every day
follow these instructions to clear off any viruses you have
first, you're already having a bad day - make life as easy on yourself as possible...
print this page out, you'll be turning your computer on and off
(also... i provide some links with directinos - you should print those out too)
if you haven't already, you'll need to download a program called "malwarebytes anti-malware" (MBAM for short!)
- http://malwarebytes.org
(or use the "filehippo" link if you can't get to the MBAM website)
- http://filehippo.com/download_malwarebyt…
(or here - http://dl.getdropbox.com/u/555036/mbam-s… )
install MBAM, update it (third tab from left - make *sure* the date is "today's" date when its done - keep updating it until you get "todays" date!)
then, run the quick scan (first tab on the left)
follow the directions from there - it will tell you the "scan is complete" - then select "show results" - then "remove selected"
it will prompt you to restart after that - do it
now, in case you've got a *really* sticky situation, and this virus is blocking your attempts to follow my directions...
turn off something called "system restore" - the bad guys will use that to RE-INFECT your computer, even if you were able to successfully remove the virus!!
(if you are using Vista, you'll have to turn off UAC first)
- http://www.howtogeek.com/howto/windows-v…
see the links below to get to "system restore"
(depends if you're using XP or Vista)
- http://support.microsoft.com/kb/306084
- http://windowshelp.microsoft.com/Windows…
next, you'll need to reboot your computer in to "safe mode with networking" mode
- http://www.computerhope.com/issues/chsaf…
- reboot your comptuer
- once you see that it has fully shut down, and then started coming back up again, start tapping the F8 key
- you'll see what's called the "boot options menu" - a black screen with a lot of white text
- cursor to "safe mode with networking" and hit enter (and enter again at the next screen)
again, attempt to download MBAM (see links below)
install, update, and run a "quick scan"
if its really really REALLY bad...
well, you may need to literally take the HD out of your computer, put it into another computer ("slaving" your HD to another computer), run MBAM against your infected HD (you would have to select "full scan" this time, MBAM will then permit you to select your HD from a list - note: the "full scan" will take longer, but you have no choice at this point)
this method will will WILL work, but... requires some technical expertise
viruses this bad give even seasoned techs a run for their money and "sometimes" its actaully easier to save all your data and just repartition/reformat your HD and reinstall your operating system (you have your original CDs right? RIGHT??)
; )
regard : flashring
When something ends‚ something else begins... Found the issue with taskmgr and any spybot/adaware/AV software not running…..
Regedit for key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options. Browse for any stuff that is not working. (The key path may not be 100% correct, but the last bit is ‘Image File Execution Options’. This allows to attach a debugger to a program to trouble shoot by redirecting the execution to a ‘debugger’ before the process starts.). I found my Taskmgr.ext being redirected to svchost.exe. This would cause it not to launch at all. EXPORT YOUR KEYS BEFORE DOING THE FOLLOWING!!!! Remove the key then test to see if it works. If it does not work, import (or merge) the key back to the registry!I removed the taskmgr key from the Image File Execution Options (which pointed taskmgr to svchost.exe) and task manager came up with no issues!
