Windows System Defender Removal HELP! it has fully taken ove

[dallinhawkins]

ok so i was trying to download the new ableton suite 8.0.9 and i got this nasty son of a bitch, Windows System Defender, on my laptop.

at first it slowed things down, now it has completly taken over my computer
- backgroud / desktop is gone and nothing responds hardly, w/ pop ups every min
-redirects anysite i try to go to too some weird site and then a random page.
-then my internet couldnt find a connection
-when i boot in safe mode it crashes
-it has locked me out of :
malware bytes, avg, spybot, advanced system cleaner, and a few other sptware/virus tools
-a2 squared finds all sorts of viruses but says they cant be deleted or quarantined
- it tells me i dont have authorization for regedit or msconfig or cmd to manually delete it
when i try to view hidden files it wont allow the folder option to come up to delete the currupt files
- it has also downloaded antivirus pro
this all happend at 2am last night and evolved to this 4-5 hours later.

any ides to kill this son of a bitch? you would definaatly help me out cuz i really cant afford to reformat this guy.

would a boot utility cd work? if so where can i get a good one?

[rodi]

Hello Dallin,

Your situation is actually very complicated.

1. Download Process Explorer and save it in C:\ folder.
Download link: http://live.sysinternals.com/procexp.exe

2. Rename procexp.exe to explorer.exe and double-click to run it.
3. Select Windows System Defender and Antivirus Pro process from the list. Should be [Random Character].exe like 4946550101.exe or similar and press "Delete" button to end the processes.
4. Close Process Explorer and download MalwareBytes anti-malware:
http://www.2-spyware.com/review-malwarebytes-anti-malware.html

5. Rename mbam-setup.exe to explorer.exe and double-click to run it. Install, update and run MalwareBytes anti-malware. Then perform full computer scan and remove all found infections.

Also you try to repair Windows if you have WIndows CD.
Windows XP repair guide: http://michaelstevenstech.com/XPrepairinstall.htm
Windows Vista repair disk: http://www.howtogeek.com/howto/windows-vista/how-to-make-a-windows-vista-repair-disk-if-you-dont-have-one/

Bootable antivirus rescue CDs
http://www.techmixer.com/free-bootable-antivirus-rescue-cds-download-list/

Good luck!:

[dallinhawkins]

awesome, thank you so much. im working on it now.
 so does this virus cause a lot of damge or is it just as annoying as described?

[rodi]

You are welcome

Windows System Defender and similar misleading applications are usually promoted through the us of Trojans. The misleading application itself is not very dangerous, most of the time it only displays fake security alerts and etc. However, the installed Trojan virus may download additional malware and make your PC very unstable. As you mentioned, the Trojan virus downloaded Antivirus Pro. It may also download for example a computer worm or spying software. Newly downloaded malware can damage your PC, so it is very important to remove Trojans as soon as possible.

[dallinhawkins]

this son of a bitch is a tricky little bastard. i got the task manager to respond finally however it wouldnt let me install malware bytes, well it does but when i click on the shortcut icon it says the shortcut is invalid and even when i click on the actual exe program itself it doesnt respond.
 i have tried reinstalling that and spyware doctor and nothing works. in fact it tells me that spyware doctor is not a valid windows 32 bit file. i did however manage to get a2squared to run and found 163 viruses/traces however when i tried to remove them it told me it could not and to contact a malware specialist. so much for that program.

before i could start backing programs up it authorized a shutdown and now when i try to start it up, before it goes to the login screen it flashes the blue sceen of death and restarts. i am simply amazed how one little peice of shit spyware can do this much damage in such little time, i am certain that it directly reacts to any type of removal and makes itself that much harder to destroy. im sure if i used your meathod wheni first noticed this instead of running antivirus programs for them just to be destroyed by this program things might have worked more effecciently.

so at this point what do i do? i am creating an iso virs boot disk to run with an updated virus definition and hopefully that will at least get me though the login so i can back up some files and reformat it.......hopefully. any ideas at this point??

[rodi]

Sorry for the late reply. Did the virus boot CD helped? Also if you have another PC, you may connect the infected hard drive to it and run a full scan with an anti-virus software.