Table of contents.
Introduction
I. Find the process and try terminating it
+ Alternative steps for finding and terminating the process
II. Locate the malicious file and try deleting it
III. Using Pocket KillBox for removal of difficult malware
INTRODUCTION
Processes
Each program is a collection of files. To start the program you launch an executable file that runs the entire program or some of its components.
When you launch an executable, part of its code is being loaded into computer’s memory. This code is the process. It allows the system to run the corresponding program. In simple phrase, every running program is represented by its main process (or task). If such process doesn’t exist, the application doesn’t run at the moment.
Parasites are programs and also have processes. However, unlike regular software, their processes run without user knoledge. You cannot terminate a parasite like a common application by simply closing its window. That’s why you have to learn how to kill malicious processes.
Files
Each program consists of files. Even spyware, a virus or a different parasite – all have their own files. Removing a parasite often means deleting all its files. However, some files cannot be easily erased. You cannot delete the file while it’s used by an active application. Furthermore, some files are "invisible".
Imagine the situation: your anti-spyware program keeps detecting a parasite, and you know where its files reside. You open the corresponding folder, but see nothing in there! The parasite continues performing malicious actions and its files remain in that "empty" directory. You wonder how this happens?
Files can really be "invisible". However, it’s not their exceptional feature – the operating system simply hides them from you. Such OS behavior can be a result of recent malware activity. Fortunately, there are several ways to make your system display such files, and thus allow you to delete them.
In this guide manual process termination methods are described. These methods can be applied to all modern Windows operating system versions. The following instructions also explain how to find a file, make it visible (in case it’s hidden) and completely remove it from the system. This information is also fully applicable to folders (directories).
INSTRUCTIONS
I. Find the process and try terminating it
1. Start Windows Task Manager
Use the following key combination: press CTRL+ALT+DEL or CTRL+SHIFT+ESC. This will open the Windows Task Manager.
If that didn’t work, try another way. Press the Start button and click on the Run… option. This will start the Run tool. Type in taskmgr and press OK. This should start the Windows Task Manager.
Image 1. Start the Task Manager
2. Find and terminate the process
Within the Windows Task Manager click on the Processes tab (it is in the red box). This will bring the complete list of all active tasks. Find the process by name. Names are in the first column from the left. Click on the Image Name button (it is designated by the blue box) to sort tasks in alphabetical order. Then scroll the list to find required process. Select it with your mouse or keyboard and click on the End Process button (in the green box). This will kill the process.
Image 2. Terminate the process
+Alternative steps for finding and terminating the process
II. Locate the malicious file and try deleting it
Let’s assume you know the file name or at least a part of it. In such case run Windows default search tool: Start > Search > For Files and Folders. Type in the file name or its part to the search field. Specify search location. For better results select "Look in: Local Hard Drives" or "Look in: My Computer". Now start searching. The file should appear in search results.
Image 6. Search for the file
If you have no idea how to spell a filename, but you know, where it can possibly be, then you should try finding this file manually. Most parasites attempt to hide their tracks, so you will have to enable the displaying of hidden and system protected files. Open Windows Explorer. Click on the Tools menu and select Folder Options.
Image 7. Make hidden files visible
Choose the View tab. In the Advanced Settings list find the option Show hidden files and folders (on Image 8 it is designated by the red box) and select it. Then remove a checkmark next to the line Hide protected operating system files (Recommended) (in the blue box).
Image 8. Change view settings
Some files may still be invisible. To see them, launch the Command Prompt. Press the Start button and then select Run. This should open the Run dialog. Type in cmd and press enter or click on the OK button.
Image 9. Open the Command Prompt
Type in dir /A name_of_the_folder to the console. This will list all the files that reside in that folder. Hidden files will also be displayed.
Image 10. View folder content
Simply delete the file using the Windows Explorer or any other program that you use to browse the file system. Don’t forget to empty the Recycle Bin. If an error message appears saying that file is in use and cannot be removed, try terminating the associated process and then delete the file. To do this you will have to open the Windows Task Manager (press CTRL+ALT+DEL or CTRL+SHIFT+ESCAPE). Then in the Processes tab select the corresponding process and click on the End Process button.
However, some processes will run immediately after you terminate them. In such case you have to reboot your system into Windows Safe Mode (this tutorial article explains how to do this). In this mode many system services are disabled and programs do not run automatically on startup. Practically any file can be easily removed.
The malicious file can also be deleted from the Command Prompt. Open the Command Prompt and navigate to the folder, where the harmful file is. To do this issue the following command: cd name_of_the_folder. Then invoke this command: del name_of_the_file. To delete the folder use another command: rmdir /S name_of_the_folder.
Image 11. Delete the folder from the Command Prompt
III. Using Pocket KillBox for removal of difficult malware
Sometimes malicious files cannot be deleted normally or even after entering into Safe Mode. Sophisticated parasites use integrated rootkits and special techniques in order to lock their files and prevent them from being deleted. Usually, such files run processes that cannot be terminated by the Task Manager. In such cases specially designed third-party tools should be used. One of them is Pocket KillBox, a tiny, but priceless utility designed for terminating harmful processes, deleting malicious files and folders containing malware.
If the above steps did not help you to delete a parasite file or kill its process, please do the following.
1. Download Pocket KillBox
This tool is absolutely free. You can get it either from the official web site, or from one of the trusted distributor sites such as Bleeping Computer.
There is no need to install the tool. Pocket KillBox comes as a single executable file. Just unpack (if you downloaded Pocket KllBox as an archive) and run the downloaded file. This will launch the utility.
2. Delete the file
Type in the full path of file you want to delete as shown on Image 12. Make sure that the Standard File Kill option is selected (it is designated by the blue box). Then click on the Delete file button (it is designated by the green box).
Image 12. Delete the file with KillBox
As parasites becoming more complex and sophisticated, there is always a possibility that even Pocket KillBox or similar powerful tool may fail removing certain files. In such case it is highly recommended to repeat the removal procedure in Windows Safe Mode (this tutorial explains how to do restart your system into it).
If the file cannot be deleted in Safe Mode too, repeat the removal once again, but this time select the Delete on Reboot option instead of Standard File Kill. Then restart your computer. Pocket KillBox will attempt to delete the file on next system startup.
If the process or file is still present, if you do not know how to follow steps above, if you are not sure why you have to do certain tasks, or the above guide is too difficult for you, feel free to try our recommended automatic spyware removers. You can also ask for help in our free spyware removal forum.
|
|
March 16th, 2007 at 11:55 pm
Thank you very much for this information. I am computer illiterate. i just know how to chat and surf. our computer is slow, always shut off and when we download yahoo messenger, it says another program si running but we can’t find the file. we downloaded anti virus software but some programs can’t be deleted.it says it’s an adware but then i can’t find the file.funny that we missed to ride on the ufo going to the world of computers.anyhow, thanks and more power to cnet.
April 29th, 2007 at 9:52 am
I find this site so informative specially to those who’ suffering from maskrider2001.vbs
May 9th, 2007 at 6:17 am
why is printing of text not allowed?
May 25th, 2007 at 9:58 am
Huh………brave sentry make me sick!!!!!!!!!!
May 28th, 2007 at 4:00 pm
This seems to work only if you know the location of the problem
June 12th, 2007 at 12:33 am
hi,
i have a problem with backwork. I deleted the program backwork and its file a long time ago. The problem is that a process keeps coming on that looks for the file and it’s driving me crazy, taking up so many computer resources on my windows 98 system. i don’t know where the file is that’s doing this. what do you suggest?
thanx.
June 16th, 2007 at 11:25 pm
i found spybot worked well for most of it, my avg picked up on it right away but im not sure how much it caught (being a free anti virus and all) and next up is my adware finds all those hkey files, i havent tryed spyware doctor yet thats the next step.
June 17th, 2007 at 12:01 am
other than the fact the spyware doctor costs money, i love the program
solved all my problems in only minutes, Highly recommend it. And thank you to this website for helping me find my way through this horible virus.
July 10th, 2007 at 11:59 pm
hey thanks much! i am now able to access my local disc C:
guyz, always empty your recycle bin
July 11th, 2007 at 9:16 am
Very Savvy. Thanks
July 16th, 2007 at 9:19 am
Guys, as long as you surf the net with IE you will pick up all the garbage around like anaware, spyware and so on. Switch to another browser, there are many for free online. Firefox, Opera, Safari…. Well, all is up to you.
July 17th, 2007 at 6:39 pm
Thank you so much for helping me get rid of this parasite called spyshredder. Thank you! ! ! !
July 20th, 2007 at 7:37 am
I want to to remove you. Can you tell me now
August 4th, 2007 at 7:52 am
my computer is totallly off because of this stupid Spysheriff, now i even can not make power on. please, what can i do for it. thanks
August 4th, 2007 at 4:26 pm
Thanks a lot for Command Prompt deleting process description. It was very useful for me since I had created a folder to store some webpages with cooking recipes from the web. What happened one day was that whenever I would try to open the folder in Windows Explorer, it would cause WE to terminate. I downloaded tools like avast, ccleaner, eraser, SUPERAntiSpyware, Spybot etc., though they were helpful in finding some minor worms, they woul terminate or die with every attempt to delete or check the folder. Safe mode including. I have spent so much time installing, restarting, downloading updates, and vice versa, and my problem was solved in such a simple way by deleting the folder by rmdir command. Thanks!
August 6th, 2007 at 11:35 pm
Thanks for your help! The last thing I need is a malicious virus. I am grateful for this informative website.
August 11th, 2007 at 8:07 pm
hi my name is alex
i ran spyware doctor and some other programs too
my computer show a messege saying intergrety threats found
and it gives the option to download ultimate cleaner
i read that ultimate cleaner is spyware so when i ran those it still get that mess
intergrety threats found it also says that my hard drive or folder or fiiles are corrupted
i have also ran some registry fixer programs
what do i do
any suggestion?
August 12th, 2007 at 4:19 pm
Hi.
I have tried to remove a program called spy shredder given all the tools provide in this article, but without any success,
August 24th, 2007 at 1:58 pm
it was very helpful. This information is wat i lucking for. Thanch you.
August 30th, 2007 at 5:27 am
the othe day I was looking at an adult site and virus protect pro automaticly downloaded and I cant get rid of the shit I tryed going to add remove programs but no luck I read your steps but I live in japan and hence my computer is all in japanese how else may I get rid of this pest if I met the guy I would rip his jaw out ….so about the language but I need you to email me for your help best regards.
September 25th, 2007 at 10:07 pm
hi! i am not totally a computer expert but you licgtened up my knowledge about this thihgs.
November 13th, 2007 at 4:07 pm
I have a problem with the hotkeys virus on my gateway laptop and am unable to do anything on the computer without it shuting off on me. i would really like to be able to save my harddrive. does anyone have a suggestion on how to fix it? please email overdose_stoner@hotmail.com
November 21st, 2007 at 7:24 pm
It seems a newer version of brave senrty disables task manager and deletes your control panel ! Any ideas on how to remove this sh*t another way?
December 19th, 2007 at 12:55 am
I have a video on my computer that can not be deleted. When I try to open it, it doesn’t open, when I select it and press delete it doesn’t do anything, I selected it and went to the menu: File->Delete and that doesn’t do anything. Also, when I right click on it, the options that come up, only go down to the Send To option. It can’t be copied, cut, or drag and dropped at all. If any help can be given I would appreciate it.
December 21st, 2007 at 9:45 am
Hi, i installed without knowing Storage Protector, i had to format the C partition anmd reinstall Windows, is there any chance to still reziduence this trojan application??
January 1st, 2008 at 7:59 am
I used the spyware doctor, only to learn what was wrong with my system as it has been rather slow lately and my own Antivirus detected a virus but was unable to disinfect it. However, following your tutorials on this page, I managed to get rid of br92.exe [Spy Crush 3.2].
Thanks for being there for us, though.
January 14th, 2008 at 3:56 pm
i am trying to get rid of this seekmo.com but i keep getting the spy software. pls help me get this out of my comp. manny kaplan
January 18th, 2008 at 1:37 pm
thanks a lot very much,you done an excellent job,it provided many solutions for me
February 1st, 2008 at 5:34 am
how to register ?
February 1st, 2008 at 3:29 pm
a bar that appears under my tool bar that says warning you have possible spyware and adware click here for free scan keeps popping up. It is the trusted antivirus page. I have not and will not download it but how can I get the bar to stop popping up
February 12th, 2008 at 3:59 am
Nice thing man
like it
March 1st, 2008 at 7:06 am
Stoked, I have had this rediculous PCMIGHTYMAX on my PC for some time and have not been able to delete. Finally got rid of it. Thankyou.
March 1st, 2008 at 6:55 pm
Unfortunately, I failed to delete Spyburner. This application blocks the Taskmanager pops up as well. smitfraudFix also failed in safe mode. I cannot find any Spyburner related files in my drive, either. I’m helpless. Please help me.
March 17th, 2008 at 8:17 am
Thank you to the kind individuals who provided this information. I am rid of spy burner! all thanks to you.
Kind Regards.
March 27th, 2008 at 4:25 am
I used Pocket Killbox as instructed and it worked perfectly – thanks so much… a very informative and helpful set of instructions. Brilliant!!
March 28th, 2008 at 5:45 pm
what a load of bollocks
but thanks for trying to help
March 29th, 2008 at 5:42 pm
Man, I spent 5 hours today trying to fix this. After coming across this information, it took longer to print it then it did to fix the problem. Solved everything in about 2 minutes! AWESOME!!!!! Thank you!
April 2nd, 2008 at 12:00 am
I have already purchased Spyware Doctor. It has run several times and has not found this parasite.
I had a software package running (Adware removal type) that I didn’t realize was a parasite. I also wasn’t aware Error-Killer was a parasite too. When I tried to remove the Adware package – I started getting these pop-ups trying to get me to by Pc-Antispyware. No thanks not interested. I’m having problems finding the source of problem.
April 5th, 2008 at 8:27 am
hi!
can you please remove this program from my computer!
greetings
kjell ekhage
April 8th, 2008 at 3:13 am
I can’t able to remove Sever.exe trojan from my PC Nor my antivirus(Mcafee 8.5) could able to detect and delete it. Antivirus detect that trojan as a normal exe files. Please help
April 9th, 2008 at 12:03 pm
HELLO SIR
IN PENDRIVE IS IT?(SPYWEREASTMON)
HOW I DELELTE THIS?
April 11th, 2008 at 11:24 am
Hi,
I have a problem to C drive and D Drive not open error is maskrider2001.vbs. pls resloved the problem and be urgent reply me. thnks
Regards
Rajat Goel
April 15th, 2008 at 4:48 pm
I keep having “PC Antispyware popping up” and messing with me. It keeps my threat scanner busy, and I am not NOT NOT going to buy “PC stuff “to get rid of THEM. This should be illegal, but I am sure that wouldn’t make sense, it makes MORE sense to hunt down an individual and fine them $150,000 for downloading a song off the internet from a PROVIDING source, right? This “PC stuff” is interrupting me and shutting down my computer right when I am in the middle of doing term papers and assignments and trying to get ready for final exams. I am so not amused!!!
PC Antispyware has got my task manager shut down, and I can’t get to it that way. I am going to have to take time that I DON”T HAVE and try to find this bitch and get it deleted. I agree with the guy above who wanted to rip the jaw out, but I have a few more lengthy painful ideas for the doom of whomever is responsible for this garbage!
I am soooo mad!
April 17th, 2008 at 12:26 pm
this information is useless. for some reason i cant run Task Manager. this info does not tell me how to. i know the name of the virus, OnlineGuard, but this info is geared towards those that dont know the name of it or are too lazy to check. i can find it in the hard drive but have no idea how to delete it.
Damien
April 24th, 2008 at 4:09 am
I have gotten the Antispyware Review program stuck in my PC I think this is crazy to allow I’m trying to find out the best way to identify the manufacture of this product or add I want to go after them legally abd sue them either on my own or maby a class action suite. Anyone interested or have the will to assist me. This type of add or practices is no differant then being attacked on the street or a home invasion.
April 24th, 2008 at 5:21 pm
Yes, I too would like to take legal action.
May 10th, 2008 at 12:40 am
when i try to kill pc-antispyware process .system get restarted instantly.
In another cases i cannot run cmd regedit taskmanager etc. becaus if i run those exe ‘s the system get restarted automatically. (note. thies cmd, task manager, regedit files are not disabled).May i know what is the reason and remody please. one more I want to know how to disable thies sudden restarts when i try to kill pc-antispyware.exe
May 12th, 2008 at 10:50 pm
I need help deleting spyware master
May 13th, 2008 at 6:08 am
thank you guys praise your name above all earth joke only but thank very for information
May 21st, 2008 at 10:32 pm
i follow the steps and when i get to the task manager i dont know which one should i terminate. here its said that cmdagent.exe should be terminate but i does not appear in my task manager.
please help
May 22nd, 2008 at 5:33 pm
pls help me.
Im infected with “advanced xp fixer. i have already uninstalled it. BUt i need to get it off my desktop and deleted as one of the choices for a desktop. How do I do that? lilkunta at excite fot com. thanks.
May 31st, 2008 at 12:23 am
I’m infected with spygaurder 2.1 I followed steps from other sties but not working. please help!
May 31st, 2008 at 6:18 am
I have the Antivirus2008 virus on my computer. How do I remove it?
June 10th, 2008 at 4:22 pm
thanks for the help!
June 13th, 2008 at 3:54 am
got spymaxx! I can’t even open my task manager, i also tried to enable it in the regedit. Nothing seems to work. I have tried several spy attackers, hopeless
If anyone knows a different way in how to get rid of this horibble malware please let me know, i am just about ready to format……
June 13th, 2008 at 3:55 pm
well please help .. i am useing A DIFFERENT computer that i need help on.. well my computer turns on at then it says the windows thing and when thats over it takes 3 hours to load on to my normal computer and it has no internet connection
and i need help to deleted advanced xp defender because i think that is wat is doing this every time i deleted it it comes back and again and again and my computer is reaaalllllY! SLOW! 30 mins to load msn … please help me!
June 20th, 2008 at 10:18 am
hi
i love that
thanks
boy
June 22nd, 2008 at 8:09 am
I have the spyguarder 2.1 virus that I cannot get rid of. I have ran windows defender along with AVG and Ad-Aware spybot removal programs. It has blocked my task manager as well as my registry, how do I remove this nasty little virus?
June 24th, 2008 at 2:59 pm
I have this AWFUL, corrupt Anti Spy Check, that I have heard is new. I DID NOT ORDER IT, BUT IT JUST KEEPS POPPING UP ON MY COMPUTER. AND I DO NOT WANT IT. HOW CAN I GET RID OF IT WITHOUT HAVING TO TAKE IT IN. OR HAVE SOMEONE COME TO MY HOUSE TO DO THIS?? THIS IS REDICULIOUS. ALL OUR PRIVACY IS TAKEN AWAY…….I AM CONSTANTLY TRYING TO DELETE IT ALL THE TIME I AM ON MY COMPUTER, THEIR CRAP JUST KEEPS POPPING UP ON MY SCREEN ………….HELP PLEASE, ADVISE.
THANK YOU IN ADVANCE. HOPEFULLY YOU ARE ONE OF THE GOOD GUYS. I AM NEW TO THE COMPUTER WORLD, AND THIS IS NO FUN……
June 25th, 2008 at 4:25 pm
Ha, ha, this nasty virus is just too hard to kill, can’t seem to uproot all traces of it. So nasty, lol. Yes I just realized it somehow affects my MSN as well, damn! The only solution, I think, is to reformat, but I really want to avoid this cuz it’s too much work.
June 25th, 2008 at 4:32 pm
Okay I just installed the free Zone Alarm and noticed a file C:\Windows\system32\IphcnL8j0e17v try to access the net, then I noticed several other files in same folder. It must have dumped a lot of stuff into my computer, all over and everywhere. I will attempt to delete files blphcnl8j0e17v and phcnl8j0e17v…I think this a really sad way to get force people into buying their the Malware Software. Somebody ought to visit this people in person, where are they located?
June 25th, 2008 at 5:22 pm
The most exciting part of this virus, after I finally destroyed, I think, is that I get to choose a new Wallpaper for my desktop, lol.
July 8th, 2008 at 6:03 pm
get superantispyware
July 12th, 2008 at 12:18 pm
yh mahn diis iis ment to help ??
well ii nevah did 1 stupid fing tryiin to con me into usin iiht n all daht yh well ii am gunna tell evrey1 its rubbish !
ooh nd im still tryiin to geht dese stupiid viruses off but iit ent wrkiin so go nd make iht work cos ppl are waistin tym tryiin to geht iit to dam wrk !! my dad iisent gunnah waiste anymore ov hiis tym on dis
July 19th, 2008 at 10:08 am
Hi,
Please take the time to read this note, I’ll be so thankful! I tried to delete the processes manually just like you said and I used my Norton antivirus scanner, which listed the names of the processes, but most of them said “IEXPLORER.exe” or some other stuff that are duplicates to the real thing and eventually I must’ve deleted the wrong thing because my whole desktop won’t show the shortcuts, nor the bar at the bottom of the page (this is my admin account btw)! I had to open up a new log on account in order to use my internet because the virus wouldn’t let me use internet in the other account.
Is there no other way to restore a process? Did I permanently damaged my computer?
July 21st, 2008 at 11:44 am
hi crystal
you know i had the same problem that you and i couldnt use internet ,thers appears to many pop and blocked , because i felt in this virus by google antivirus 2009.
this virus was hidden and nirton didnt detected and i ws figthing with this viorus for 3 days and know i almost finish.
if you have dowload this antivirus 2009 you must to makesure to uninstall all thi files of google and coocckies because the virus is hidden there uninstal everything after that check all the lfiles donwload in this ultimates days and delete everythign after that try again with nor32 if you canot do it yet sent me email
July 23rd, 2008 at 6:34 am
Hi ,
I would like to tell you this much. Your site is very informative. I know very little about computers, but your site helped. I had antivirus 2009 on my computer and your site showed me how to delete it.
I have a question, will you respond to any emails if I have any further questions? Anyways just wanted to say you guys really helped.Thanks
July 24th, 2008 at 7:40 am
THANK YOU VERY MUCH
BUT ALL MY FILES ARE GONE
HOW SAD ….
July 25th, 2008 at 8:02 am
I’m having problems getting rid of that antivirus 2009,which given oroblem every since downloaded it.
July 28th, 2008 at 6:15 am
Thank you. Manual removal is very helpful. Just take a lot of patience to do it.
August 7th, 2008 at 7:39 am
hi everyone..in case anyone is having prob with antivirus 2009, i have something so simple that worked! i know u cant delete the application and probably u would be getting popups every 30 seconds..this is what i did..i went to the search area.. (go to my computer, and on one of those top tabs, u would see the “search” tab.) click on it and make a search. Click on all files/folders option. For better results select “Look in: My Computer”. Then, in your search area, type Antivirus 2009. You would get a few results and there would be one which says “Uninstall Antivirus 2009″. Double click on it . Antivirus 2009 would stop functioning at once! the next thing u would wanna do is locate the location the stupid antivirus is hidden. Open another “my computer” and go to the location using the path ( the path would look something like C: My Documetns/ Start Menu/ etc/ etc) that is provided in the search area. You would come across a folder which says antivirus 2009. Just click on it once and press SHIFT + DEL at the same time. VOILA. Antivirus is gone!
August 7th, 2008 at 7:43 am
thanks..without u, what would i have done? thanks again..
August 9th, 2008 at 8:34 am
Thank you very much.
I had managed to use Spyware Doctor to get rid of the problem related to Antivirus 2009 on my parents computer,which did not get pop ups,and seemed a less severe version,but it had little effect on my own computer.After several days getting angrier and angrier i found this,and fixed it all in half an hour,thanks to your plentiful of options and very simple instructions.Perfect for those like myself who are completely lost when it comes to viruses,and tend to rely on antivirus programmes(AVG did not detect the problem for me,though i scanned on both computers).This is great-i can use my internet again,and i am no longer getting plagued with pop ups telling me to buy Antivirus.Once again,thank you.
August 11th, 2008 at 11:01 am
hi
i never ever thought, this wuld happen bt this blaster sasser variant is currently in extreme threat in my PC. so
i am not able to even open task manager!- it says administrator had disabled the task manager and the disk c is completely formatted and the control panel had vanished… the annoying vista antispyware 2008 and xp antispyware 2008 comes in scan the PC and stucks.. the desktop wallpaper changes automatically and when i tried to change it the tab display had disappeared. no mcafee, spyware doctor is relevant for killing this and it’s getting annoyed as there are 2 harmful files.. i dunno what to do, maybe i shuld go in safe mode?
August 11th, 2008 at 11:11 am
i can’t download anything at all the system is getting unresponsive minute by minute and all the antispywares i had installed has no affect whatsoever, i tried deleting the files and searched for it, bt it;s hidden or i can’t see tried all the recommendations bt nt effective, oh dear this is soo annoying lotsa lotsa pop ups all the way
i can’t see anything, the taskbar becomes inactive and the time changes to “VIRUS ALERT” and a wallpaper appears- SPYWARE DETECTED INSTALL A SPYWARE REMOVAL TOOL..
my PC had never had a virus before and it ws strongly protected by many virus guards, amazing they hav no effect can someone pleeeeeeeeeeese, pleeeeeeeeeeeeeeese help???
thank u..
August 19th, 2008 at 2:04 am
thanks sooo much its people like you that really make a difference.
August 27th, 2008 at 5:32 am
this is so informative.. thanks i have already remove that antivirus2008, that was so annoying…
August 29th, 2008 at 3:13 pm
I uninstalled XPAntiVirus08, and used CCleaner to get rid of it’s DLLs and now explorer doesn’t work. How can I fix my computer?
September 1st, 2008 at 4:20 am
please help
i am douchebag and i download any program that advertises itself via popups i fail to block
because i like microsoft internet explorer instead of browsers that everyone tells me to use
i install program that popups tell me too and then my computer is all phuktarded like me
i dont want to take my computer to a technician i want to bother yoooooouuuuuu with tooooooo
many voooweeeeeeeeels!!!!! and uuuuuneccessary puuuuucntuatiooooooonsssssssss!!!!!!!!!!?#$!
September 4th, 2008 at 11:16 pm
how to recover data that has been hidden by the virus sality?
September 7th, 2008 at 12:06 pm
thank you very much that thing was getting on my nerves it keep on popping up and i was like ‘ughhhh’
October 4th, 2008 at 7:48 am
I’m in the process right now to delete the stupid thing. If this works, I’ll freakin’ love you!!! Stupid virus!
October 5th, 2008 at 6:12 am
Tank you very mutch your help
October 6th, 2008 at 5:48 pm
thanks for the instruction and information.I could delete the file but one active alarm is still running in my notification area on taskbar which lead to a web page for installing VirusResponse Lab 2009!
October 8th, 2008 at 10:48 pm
Well it looks like I,m not the only one that has this problem. Can,t the fine these guys who write these
programs.All they do is mess up peoples computers IIt is not a way to try and sell a product.They
are going to piss a lot of people off. Some day it is going to come back to haunt them bigtime.
What is that old saying what goes around comes around. I hope one of these clowns happens to read this.
October 11th, 2008 at 4:31 am
dude, you are a legend – those lame geeks are going to rot in hell
you on the other hand have a ticket to the pearly gates! big yourself up – I am proper poor with computer stuff but that was so easy a degenertate donkey could do it
praise be to you, that virus was really getting on my tits!
October 14th, 2008 at 7:05 pm
thank you so much!………….you were a big help =]
October 22nd, 2008 at 10:54 pm
Thanks a ton for making this. You just made my day.
October 23rd, 2008 at 12:58 am
What happens if you didn’t download the program, but you just want the pop up thing (it’s an alert balloon) to go away? I tried deleting the msvcr80.dll file, but it won’t let me
. help.
October 25th, 2008 at 7:02 pm
oh well where do i start, i also got this frikin stupid antispywarexp 2009 on my laptop it has stopped me from using the internet ( luckily got daughters to use ) plus it has wiped all my recovery and wiped out all my security. I have tried everything to find the damn thing but with no avail any help would be great, if no one out there can help then looks like i will have to wipe everything and start again.
And why do these idiots do things like this its not as if they are going to get anything from me as i am a normal guy who browses the web and plays games. Would love to come across one of these idiots he wont be typing again lets put it like that
October 27th, 2008 at 4:17 am
Thanks a lot..It was really helpful to me.
October 30th, 2008 at 3:49 am
thanks!!
it help me super a lot!!
thank you!!!
October 30th, 2008 at 12:39 pm
Got “hijacked” today by Internet Antivirus Pro, was so pleased when I found your website and the help it offered. It worked and now hopefully my system is back to normal (early days yet). Thanks so much.
November 2nd, 2008 at 4:00 pm
thank you for for saving my laptop!!
November 3rd, 2008 at 1:06 pm
Thank u sooooo much!!!! u r a lifesaver!!!!
November 13th, 2008 at 9:24 pm
Thanks Guys this info would help me a lot.
November 15th, 2008 at 5:58 am
AntiVirus 2009 has disabled my Task Manager.
How can I reenable it?
November 16th, 2008 at 8:27 pm
Please help erase the antivirus
November 18th, 2008 at 5:15 pm
yaaaaaa, i got the VirusTrigger one and is the run cmd for alternative ways to kill the thing or do you have to do it?
November 24th, 2008 at 8:27 pm
Help me get rid of Antivirus 2009 program, it’s ruin my computer so bad!!!
I dun quite understand how to do this
November 27th, 2008 at 11:07 am
very good article but you should note that tough viruses like win32.sality on most of its kind disable task manager that makes u should search for what folder does it creates and remove them from DOS and i dont mean CMD i mean the primary DOS and also in that case that will be hard becouse the infected files like programms and EXE files will reproduce the virus
December 8th, 2008 at 6:28 am
wee!!thanks for those instructions..it really help a lot..but then, my phone’s game and application folder are still not working..what should i do??was it because of that pictures.exe effects or it is a different thing??..anyway,thanks again!!!
December 9th, 2008 at 7:39 am
Try using “super anti-spyware”. Its a free app that i downloaded and used. Install it and run the updates. Do an entire scan of the PC, delete the theats it finds. Re-boot and run it again. It seems to have done the trick for me…
December 11th, 2008 at 10:42 am
My home computer is now infected with Antivirus 2009. I don’t get the popups people are complaining about here, but it blocks my security programs (AVG, Spybot) from updating, and it blocks my browser from accessing homepages for trusted security sites (AVG, Spybot, Lavasoft, etc) in order to download programs that would help get rid of it. On top of that, I was finally able to get malwarebytes and an updated AVG from CNet, but once they’re installed I’m still blocked from running them. Since I had no idea which files were from the stupid AV09 crap, I was hesitant in touching my registry. Thanks so much for this tutorial, I’ve printed it out and will be trying it as soon as I get home from work today.
Btw, I believe a large number of these are coming out of Russia. For those of you willing to make the trip just to punch the creators in the mouth.
December 12th, 2008 at 2:00 am
pls help me get rid of antivirus 2009. it created lots of problem, while working with my PC.
December 14th, 2008 at 10:06 pm
I had a virus “Antivirus 360″ cause havoc on my notebook. I followed the procedures by going into “my computer”, doing a search for antivirus 360. After findin it I copied the path and opened “my computer” in a new window and pasted the path in the search window. After searching and finding it, I deleted the folder “antivirus 360″ and now it is gone for two days already. Hold thumbs!
December 16th, 2008 at 4:43 am
i downloaded antivirus 360 and i cannot find cmdagent.exe in the task manager
December 16th, 2008 at 5:31 am
i just found that the antivirus 360 in my computer at the taskmanager is called av360.exe
December 17th, 2008 at 11:19 am
Thank you very much, this helped a ton. I got rid off my nasty virus and my computer is fine. This web site is very good for people that do not have alot of knowledge and teaches alot on how you can perform task and clean your computer out. Keep up the good work
December 19th, 2008 at 1:22 pm
well i searched and searched and still couldn’t find it enough to remove that thing in the task bar….so i started fooling around, you need to make sure you search your temp files too….it is under AppData…and delete anything that has a date relevant to when you suspect you downloaded this virus
December 20th, 2008 at 4:28 pm
Ok this is what I got hope it helps, I had a virus called Antivirus plus and i tried the steps that are shown above but im pretty much computer retarded so it didnt work for me. So I was mad because now I thought I had to spend a couple hundred to get it professional fixed. Long story short I was told to click the start button, then all programs, accessories(at the top), system tools(at the bottom), and then click system restore. This allows you to go back before you got the virus and erase it, just follow the system restore instructions its very simple. When my computer came back on the annoying popups were gone, no red x at the bottom and my CPU Usage was back to normal before that it was at 100% all the time and my laptop was always hot. To be honest I dont know if all the virus is gone for some strange reason I feel like theirs still some of it on my computer but everything seems to be back to normal. Hopes this information helps.
December 21st, 2008 at 7:27 am
I just got this virus yesterday. It looks deleted but still shows up on searches. WHat am I missing?
December 22nd, 2008 at 8:24 am
Thanks.
December 25th, 2008 at 6:08 pm
hello the new file name is -tmpb.exe or tmpc.exe i had both …
go to tsk manager and go processes find this and go open file location.
then go end process.
finally delete it from there to the recycle bin and last but most importantly go inside the recycle bin and delete it from your system.
(you may have the old version not the new but you should be able to recognise the malware it only took me 2 minutes.)
December 25th, 2008 at 6:17 pm
p.s having great fun removing the 5 backups the arsehole put on (watch out for the similar files including the ‘inconspicuous’ a
December 25th, 2008 at 6:19 pm
p.p.s
i just noticed b,c and d hidden away at the top (just look under the date u got the malware to find it qik and easy)
dear god i hope there is no more
December 27th, 2008 at 2:04 pm
Thanks for the help.
January 5th, 2009 at 9:09 pm
Any suggestions on finding a file name or any other way to identify Spyware Protect 2009. I’d love to use your product, but it asks for a file and I’ve looked but can’t find it named anywhere, all I do is feel the affects of it quickly killing my computer. I’ve read that I need to delete the DLL files, the registry etc. but cant find it anywhere, Please Help.
January 7th, 2009 at 3:49 pm
Great tool, worked well on AntiviruPro. Thanks very much!!!
January 9th, 2009 at 1:59 pm
[...] Para saber como deletar acesse este LINK [...]
January 9th, 2009 at 8:02 pm
No meu caso, ocorre o mesmo problema. Mas o system security é uma versão anterior, eu creio! Pois a imagem dele é um quadrado só a linha de baixo vira uma ponta; Dentro está no fundo laranja puxando pro amarelo e possui listras pretas!
Se puderem me ajudar.. desde ja agradeço
Pois dessa forma ele nao funcionou!!!!!!
January 13th, 2009 at 1:21 pm
I also have this weird virus that everyone is talking about. I was lucky to have someone to do something about it, since I have NOOO idea on viruses and anti-viruses. If this happens again how should I know the name of the file that I have to destroy or delete???? How do you guys know that???? Please help…Can someone recommend a good and not very expensive anti virus for my computer?
January 20th, 2009 at 9:39 pm
Insecure Internet activity. Threat of virus attack Due to insecure Internet browsing your PC can easily get infected with viruses, worms and trojans without your knowledge, and that can lead to system slowdown, freezes and crashes. Also insecure Internet activity can result in revealing your personal information. To get full advanced real-time protection for PC and Internet activity, register Antivirus 2008.
Does anyone know how to get rid of above message every time I lauch FIrefox brower?
January 24th, 2009 at 4:59 pm
Guyz wud u tell how to remove a yahoo.exe virus
January 25th, 2009 at 9:47 am
u r great …..
January 27th, 2009 at 3:08 am
please I have this antivirus which installed itsef on my PC.Its name is Internet antivirus Pro . please How do I romove this. I need your help.
January 29th, 2009 at 1:49 am
Antivirus 360 entered through Firefox.
January 29th, 2009 at 5:14 pm
Thanks so very much!
January 31st, 2009 at 3:02 pm
Angel, August 7th., 2008:
Thank you for the information. After following what you wrote, I was able to rid my computer of the MS AntiSpyware 2009 virus that occurred on my computer after visiting an adult web-site. It worked.
February 2nd, 2009 at 7:42 pm
I’m trying to follow your directions, but I don’t know which files you’re talking about when you typed doen insert patch and file name here
February 6th, 2009 at 9:50 pm
Malwarrior was completely dragging down my PC and knowing that they are making money from ignorant saps just makes me angry. Thanks for fighing against those jerks!
February 11th, 2009 at 12:00 pm
Thanks for the help. When it comes to pc’s I dont know my arse from my elbow but what i did find that helps with speeding up the computor is crap cleaner. Free download at file hippo, If there is something that works better please let me know, Thanks again
March 1st, 2009 at 6:25 am
Thank you so much for this valuable information. A had the Antivirus 2009 which is a virus itself driving me nuts. With your inofrmation I was able to remove it successfully from my computer and restore my sanity!
You guys are the best!!
March 2nd, 2009 at 8:56 pm
Guys,
Help me get riid of Spyware Protector 2009/ It is killing my computer
March 4th, 2009 at 4:14 am
hi
its my files and folders is super hidden
plz help
remove autorun.bat????????????????
March 7th, 2009 at 12:15 pm
how do i remove folder.exe virus pls help
March 9th, 2009 at 8:27 am
hallo i cannot get antivirus360 off my computer
my kids click on to it
i need help
tks johannes
March 10th, 2009 at 10:43 am
I’m trying to delete Malware Defender 2009 and it seems like a big merry go round. I so tired
and fustrated with this and these instructions do not help!!!
March 14th, 2009 at 8:17 pm
Antivirus xp installed itself on another computer. Now I have no internet and taskmanager has been disabled. Any ideas?
March 16th, 2009 at 1:23 pm
thank you very much i found this to be very helpful
March 22nd, 2009 at 3:02 am
Hey Unknown Friend,
Your tips and advice are so good.. It worked a lot for me.. I was trying to remove a spyware, your steps were very useful.. Thanks..
And a add on to the steps,
while using “Search” use “More advanced options” it will be helpful to search the hidden files and folders (bcoz after viewing the hidden files/folders, Search will be more effective by the More advanced options..)
Once again Thank you so much..
Happy days..!!
Take care..
“Share the knowledge = Improve your knowledge”
March 25th, 2009 at 6:59 pm
thank you so very very much it was so annoying to have antivirus 360 messing up my computer every few minutes this help is very much appreciated
March 29th, 2009 at 4:52 am
Hi guys, i cannot get rid of malware defender 2009! My computer wont do anything, it is extremely slow! i cant even search the comp for the file to delete! any suggestions? also spyware doctor does not get rid of it unfortunately
any help is very much welcomed
April 7th, 2009 at 8:43 am
I have gotten this “Spyware Protection 2009″ bull shit on 2 of my PC’s. Both are running McAfee. If I could put these guys out of business, it would “make-my-day”. It even screwed McAfee and forced me to re-install. There are some real “low life’s” out there on the web. Some obiviously “don’t have a real life” and just live to make others miserable, but we users adapt and learn how to fight back. Thanks to the “good guys” with itergity and willing to do the ethical right thing. A big thanks to web site’s like this one. and thanks for your knowledge base and help. Long live the “good guys”!
April 7th, 2009 at 9:02 am
Request your advice
its keep on asking me “update available,Win PC defender has detected that new threat database is available.Would like to down load and install and update now?”
Next I ll get a critical warning and information on removal to activate.
Next I am getting its home page.
All these I am getteing in frequency of 50 seconds.
Kindly help me out as its really unbarrable and completly disturbing.
thank you
April 7th, 2009 at 11:15 pm
HI
I cant open taskmgr as i open is a pop up that the system manager has desebeld the taskmgr.
pleas help
April 11th, 2009 at 10:34 am
Thanks for helping me to remove virus sweeper without paying 60 to 80 dollars to do it. With the directions given, I quickly found it and ended the process.
What wonderful help!
April 13th, 2009 at 7:25 am
I have a spyware protect 2009 alert. How do I identify the bad process in the task manager? Help please!! thank you.
dale
April 23rd, 2009 at 11:57 am
Greeting. See things as they are and write about them. Don?t waste your creative energy trying to make things up. Even if you are writing fiction, write the things you see and know.
I am from Andorra and also am speaking English, give true I wrote the following sentence: “Wall clocks, it has never been so easy to shop home furniture.”
Thanks for the help
, Alyson.
May 7th, 2009 at 10:31 am
i do every thing what u write here
but no process
May 8th, 2009 at 1:36 pm
I am lost at this point..”Type in dir /A name_of_the_folder to the console. This will list all the files that reside in that folder. Hidden files will also be displayed.” I think you guys missed a step someplace..I still cannot find out how to find the folders name,there for I cannot delete this virus..
May 8th, 2009 at 8:39 pm
HI There,
i have window xp & I got WINPC ANTIVIRUS,FROM ABOVE METHOD,TASK MANAGER,I DONT KNOW THE NAME OF FILE TO REMOVEWHAT I CAN DO.IS There any other easy way like running a antivirus cd or down load from internet.
Please help me.
THANKS
May 11th, 2009 at 10:56 am
Thank you so much. System Security was on my computer and your site helped me get rid of it by starting up in safe mode…
May 11th, 2009 at 3:17 pm
wow the hardest part is finding the actual virus and for windows users its so easy and it stops immediately
May 18th, 2009 at 10:20 am
I have problem with the next step because i dont have anything in my laptop screen thats why i cant move to the next step
May 26th, 2009 at 2:26 am
you are my hero. seriously.
May 26th, 2009 at 6:31 am
this doesnt make any sense
June 4th, 2009 at 4:51 pm
This page is very useful information, it provided many solutions for us. thanks, mercibeaucot!
June 14th, 2009 at 12:42 am
Please, can you PM me and tell me few more thinks about this, I am really fan of your blog…gets solved properly asap.
June 22nd, 2009 at 12:13 pm
Oh my goodness, this information worked 100%. I manage to get rid off this XP Deluxe protector CRAP/WORM/ PARISITE whatever is call off my computer!!! without buying any of this “SPYWARE PROGRAMS” THANK YOU VERY MUCH!!!!!!!!
July 2nd, 2009 at 2:17 pm
Hi i was cleaning a computer infected with this i have been able to remove almost everything, it was given a false positive i ran malware removal tool and CCleaner and RegCleaner and used Regedit to remove it. The windows Security center was not able to open i fixed that part,,
Now my problem is that when windows vista reboots, after extensive cleaning, and updates. It boots with a blank box,, that opens,, its a tab on the bottom , as if it were a page…and it wont let me close it…Ughhhhh…
)
I looked on task manager to see if something was lingering i didnt see anything peculiar, i looked at old things i had removed to see if something was left behind, the only thing i can think of is when i installed a memory optimizer XFRAM and deleted it. because vista wouldnt allow it to open up.. maybe it didnt uninstall properly..
Could this be the open tab that has no address bar only a dark box in one corner,, WHAT COULD THIS BE?? please help
July 3rd, 2009 at 3:03 pm
please note that it took me a combination of the fixes listed below to fix (I hope) this thing.
I started with http://www.2-spyware.com/news/post226.html
I have XP media edition and it has gpedit.msc included and was a blessing because regedit was rendered inaccessable. gpedit.msc allowed me to go in and DISABLE the administrative access to regedit.
ALSO NOTE: file names installed are not quite the samewith my particular infection.
July 21st, 2009 at 12:40 pm
none of which you posted worked. it wont let me bring up any application at all. wont allow me to do anything.
August 3rd, 2009 at 7:32 pm
i dont get it at all. how am i suppose 2 know which task to end, what files to delete, and so on and so on.
the files you gave for the registry files were correct and i deleted them but none of the other listed ones you named for any other category came up.
i dont know how to get in contact with anyone to help. and not going put my email out to get spammed again. =]
August 8th, 2009 at 12:25 pm
it’s not working, it won’t allow me to delete the file, can’t go into task mgr or command prompt. have to reformat.
August 8th, 2009 at 7:15 pm
THX for your information. However, I found this “advancedvirusremover” has been “upgraded”, and it’s immune to any of the above method. Here’s how it kill your system:
It prohibit you to open “task manager” by any method so you can’t delete the process. Actually, it also denies any comment in “start –>run” button, including cmd & regedit. It also denies the windows “undo” function so you can’t restore to an ealier checkpoint. It can also prohibit you to open any software which might find & delete it. And even worse, It denies me to start in sate mode!!! The only possible way bring my system back is to buy their scam!!! It seems I have no choice but re-install my system….
August 12th, 2009 at 2:22 am
works great im verry happy this creapy virus is gone:D
August 14th, 2009 at 9:41 am
hi. i found the antivirus remover in my documents and i deleted it but it told me that it was only a shortcut and to actually get rid of it i’d have to uninstall the program, however when viewing the add or remove program it doesn’t show up in there. have i gotten rid of it?
also, my tast manager has been disabled. i’m only able to system restore back to earlier today. I was on safe mode earlier trying to uninstall recent programs and i may have removed a few updates to my windows xp because now everything is blocky slow. i’m also unable to use a picture as my desktop background. i’ve tried customize desktop but i have no ‘web’ option. i’ve also tried running regedit..something like that and that won’t work either. i’m not sure what else to do to get my computer back to normal!
August 14th, 2009 at 10:30 pm
hi..i used windows protection suite…now i want to uninstall it…i tried ur blog…but there is no file like”cmdagent.exe”in my system.can you help me please..
August 15th, 2009 at 9:37 pm
I can’t even get task manager to open. I tried ctrl + shift + esc and ctrl + shift+ delete and start, run, taskmgr. Help me.
August 16th, 2009 at 7:06 am
I have windows system suite virus- I cant find the file in task manager cmdagent.exe to delete. I also tried to down load pocket killbox it will not let me, it says its missing a file. Any help would be greatly
appreciated
August 16th, 2009 at 11:10 am
this shit BLOCK’ED ALL MY PROCESS I CAN’T FOLLOW THIS REMOVAL INSTRUCTION BECAUSE “TASK MANAGER” “CMD” and all DIDNT WORK! HOW CAN I REMOVE IT??? PLS HELP
August 18th, 2009 at 9:56 pm
my computer has total security how can remove it from my computer?
August 18th, 2009 at 9:59 pm
How can remove total security programm from my computer?
August 18th, 2009 at 10:03 pm
please help me
August 29th, 2009 at 10:13 pm
Thank you, thank you, thank you…
I just purchased a mini laptop and my son
was using it when the Green AV installation popped up
he thought is was safe since it said it was Microsoft
Wrong…
I have been trying everything , until I found your information
This progra took over my computer and would not even allow me to search
for solutions, it would only pop up pages with its own info on it
Im soooo happy to get rid of it.
I am concerned about the effects it may have had on my new laptop
any ideas?
August 30th, 2009 at 3:12 pm
nothing will get rid of windows antivirus pro i have tried downloading things and it wont let me run them, I cant use my task manager cause it has been disabled and it wouldnt let me delete the file after i finally found it! Help me!!
September 6th, 2009 at 4:50 pm
hii ppl-s=i had this virus and it i tried like eveything and i dun really noe the cmputer and stuff really well so these instrustions didnt really help me-but i found a free program that helped me delete it its called spybot search and destroy -keep in mind i had to use it 3 times b4 the total security thingy was gone so try it -i mena its free =D
September 9th, 2009 at 6:06 pm
YAHOO! I was able to remove ALL the total security stuff!
September 9th, 2009 at 6:30 pm
Thank you!!! this helped removed the windows police pro!!! i’m so relieved i don’t have to bring this thing in to my IT guy. phew!
September 11th, 2009 at 12:36 am
hey im trying to do eveyting i can to get rid of this total sercurity everytime i try to download a anti virus a pop up window in my corner says tht its infected and cant be executed im trying to delete it to but it wont let me access my task manager or anything really need help badly with this
September 11th, 2009 at 12:36 am
hey im trying to do eveyting i can to get rid of this total sercurity everytime i try to download a anti virus a pop up window in my corner says tht its infected and cant be executed im trying to delete it to but it wont let me access my task manager or anything really need help badly with this
September 15th, 2009 at 10:36 pm
I downloaded the windows defender and it removed the antivirus pro2010 virus the first like two times, but now everytime I come on my computer it pops right back up and I have to keep removing then when I restart my computer it comes back up again. So I dont know what to do I have to have a professional deal with this, beacause I tried to follow the directions of this site but I dont really understand how to do what they tell you. Does anybody else have this problem? Or had this problem? If you solved the problem please tell me what you did? Also I got this virus from going on a bit torrent site, something that never happened to me before when I would download music because my other laptop with windows defender would scan my downloads before uploading them, and ive tried to set this laptop to do that but I dont know how.
September 15th, 2009 at 10:39 pm
Also I had a question does this antivirus pro 2010 virus does it keylogg? Because I am afraid of going on my bank account online for that purpose, but I have gone on my email I dont know do you think it could do some damage if I went on my email? I havent experienced any problems.
September 17th, 2009 at 10:41 pm
you save my life!!!!!!!!
This website is the best
so easy a cave man can do it
September 18th, 2009 at 7:38 pm
I have Total Security on my computer and cant get rid of it. All of the “Helpful Hints” I have found will not work. It will not let me open the task amanger to close the process, my add or remove programs file, my spyware remover, nothing. I have tried down loading things and going through all sort of steps. It seems if it is anything that can help remove this it will not let me into that program. Pleasehelp.
September 19th, 2009 at 5:03 pm
I found files and norton’s stopped the trojan: however, I have a WAN(PPP?SLIP) interface that has the IP address 12.74.44.16 that is no longer protected.
How do I deal with this? I don’t even know or can find this. HELP
September 21st, 2009 at 4:59 pm
Hi, I was trying to get rid of “Windows Police Pro”, and in the process deleted “msvcp80.dll” like your instructions said. However, when I then rebooted my computer I was unable to access the internet. When I try opening a web browser or chat program I get an error message saying that msvcp80.dll won’t load. I tried restoring the file and it didn’t help any. Otherwise I thought I got all the files off my computer… I’m not sure what else to do except something drastic like using the restore disk. Any suggestions?
Cheers,
Megan
September 23rd, 2009 at 6:06 am
Just did the end process on alpha antivirus, seems to have worked, thank you
September 23rd, 2009 at 8:31 am
Hi,
Are there speical instructions for removing a koopface worm from a Mac? I scanned every file with Norton and no virus was found. However, it appears that I have the worm that sends video links to other Facebook friends.
September 24th, 2009 at 8:32 pm
Thank you so much
September 26th, 2009 at 4:10 pm
is there a way you can get total security off my computer?
September 27th, 2009 at 7:52 am
Do a system restore (like 2 weeks previous) to get rid of Securitysoldier virus…it work!!!
October 1st, 2009 at 12:35 am
I am really fed up from Total security, I had been deleting it from C:\Documents and Settings\All Users\Application Data\1109879 (folder). My laptop works fine for another 3 to 4 reboot, but appears again.
I have scanned my system through malwarebytes and it found many infected entried too, but still I am getting same issue.
Please help.
October 7th, 2009 at 11:22 pm
Awesome! Killbox did the trick! Thanks for the step by step instruction!
October 10th, 2009 at 10:45 am
i get this infection this morning and i’ve been worrying for the whole day until i found this guidance. With this instruction, i manage to get rid of this nasty and scary virus in just 2 steps.Thank u so much ^^ U r such a big helper! Hmm..now i couldn’t find the target anymore from searching but i’m not sure whether i’ve removed it completely..how to make sure it’s no longer invading my pc?
October 11th, 2009 at 10:02 am
Its now a “drive-by” & doesnt require ANY operator actions. Unless going to a site about military weapons history qualifies as giving this bastard complete control, following your advise, i tried cntrl alt delete, its been disabled by the admin, except I AM the administrator lol i suspect Im gonna have to scrap & reinstall everything on the hard drive
October 13th, 2009 at 9:24 am
i tried all the process mentioned here to delete the security tool. but i am not able to. it is not even allowing me to down load any anti virus or any soft ware and not even able to open task manager or cmd window. could not even open run window
October 16th, 2009 at 4:58 pm
Thank you, thank you, thank you! I’ve spent the best part of 3 hours trying to remove Security tools from my pc. Putting it into ‘safe’ mode (which i never knew about) enabled me to delete the horrid little bugger. Without your site I was going into panic mode. Now I can go to bed and sleep!
THANK YOU, YOU AWESOME DUDES
October 17th, 2009 at 6:34 pm
Hi, I just deleted all the folders of windows enterpirse defender that I know of. But I still cannot open my windows task manager or any antivirus application. What should I do?
October 18th, 2009 at 9:20 am
Thank you………….so much……..it really helped me………….i am now rid off the cyber secrity alerts
October 24th, 2009 at 3:33 am
Removal method secuirty tool
Please help me
October 29th, 2009 at 7:50 pm
i got this alpha antivirus BS that is infecting my laptop. more annoying than anything. it also disabled my task manager so i cannot follow the instructions above. pls help, these low lifes are creating miserable laptop time for me. thanks!!!
November 4th, 2009 at 2:42 pm
by doing this way it gonna remove for only temporary i wanna remove for permanent without paying. By using ctrl+shift+esc by ending alpha.exe it gonna end process temporarily but when u gonna start up the computer again it appears. I want to delete it permanently without any charge. If I download this software its use as it scans and later at the time of deleting they ask to activate as I pay for it every spyware is like that. useless
November 10th, 2009 at 9:24 am
Thank you, thank you, thank you – Cyber Security gone for good!
November 12th, 2009 at 2:15 am
this message written before using the tips, rest will descsribe after remove my problem
November 29th, 2009 at 4:56 pm
I can’t open any of the programs and applications to remove programs with. Everytime I try to my computer tells me they are infected and won’t open them. \\
Also Spyware Doctor doesn’t work in my computer.
What should I do?
November 30th, 2009 at 7:11 pm
Hope you found the answer to your problem. I have one like it and am hoping your’s is solved. Can you point me in the right direction.
Thanks,
Dan F.
December 3rd, 2009 at 2:33 am
I have unfortunately caught on 02.12.09 Security Central.
Sense I am not able to run:
taskmgr
cmd
msconfig (to get in save mode)
Open DOS Prompt by clicking its icon
Running any antivirus or spyware tool.
And deleting any of the files installed by “security central”
I always get the Message form “security central” that the application is infected and “security central” should be activated.
Boot the system in save mood by hitting F8 on the start prompt is not possible because the Keyboard driver in this mod seams to be deactivated. Same happen if I try to boot from the CD to reinstall the system because of the not working Keyboard driver.
All I can do at the moment is replacing the HDD.
I know that this is not allowed to propose but it should be considered sending some bad boys to the people of Security Central.
December 6th, 2009 at 7:28 am
Task manager is disabled.
‘
What now?
December 6th, 2009 at 8:31 pm
Hi,
i am trying to enable the desplaying of hidden and system protected files, but the folder option is automatically deleted (may be because of virus infection). Also i tried to locate this Folder option through control panel setting, but there also file for folder option not found. My computer infected by about.Brontok.A virus.
please help me to remove this virus & for proper working of my operating system.
Is there anyway to see the hidden files & changing their properties.
December 12th, 2009 at 3:55 pm
okay,this doesnt work for me beacuse i cant open task manager it saysapplication cannot be excuted.the file is infected.please activiate your antivirus sofftware.?soo what i doo!?pleaseee reply ASAPPPP!
December 16th, 2009 at 8:35 am
I am trying to manually remove Internet Security 2010 and all of my processes are blocked. I cannot access command or task manager. Any advise that may help with this situation?
December 17th, 2009 at 6:19 pm
I love how this site helps me remove spyware, but the program, Antivirus Live, doesn’t even let me open internet explorer, taskmanager, or anything else. I can’t do any of the steps listed above, it just won’t let me. Any help?
December 20th, 2009 at 6:42 am
Very helpful. I was able to delete all but the desktop background. It will not reset to defaults or allow me to change the desktop background. If I have to live with that to get all my files back then so be it. Thank you.
December 21st, 2009 at 8:19 am
security tool isn’t allowing me to open task manager now. i can’t use the alternate ways of getting rid of this because i do not know the file name and cannot search for it. I did try to find it and i can’t seem to locate it either. i did delete secuiry tool from my programs list and the icons of it on my desktop screen and put them into the recycle bin and deleted but it is still on my computer. sometimes it eventually freezes my mouse and i have to shut down my computer.
can anyone please help me??
thanks SO MUCH
December 23rd, 2009 at 7:50 am
that’s cool i didn’t need this information i was just wondering how to do it manually
thanks though im making this one of my favorite sites
December 29th, 2009 at 2:31 am
i got the antivirus live,
i have tried to do what you have said. but guess what it doesnt work!
the stupid thing wont let me see the task manager and i have absolutley no idea what i am sposed to be looking for in my files. help me now
December 29th, 2009 at 2:33 am
ooh yeah and it wont lett me run comand prompt either! this is alod of crap
December 30th, 2009 at 1:58 am
it wont let me open anything that will let me delete it
and idk how to run a disk check manually
January 3rd, 2010 at 11:44 am
so i finally got the task manager open and i dont know whta processes to end can you help me? this is for the security tool virus
January 10th, 2010 at 7:14 am
Hi there
my PC still hang, cmd prompt still quite no respond, application for delete security tools not running from my PC
any idea for solving this problem
thanks
mochan
January 15th, 2010 at 7:16 pm
I am trying to manually remove Internet Security 2010 and all of my processes are blocked. I cannot access command or task manager. Any advise that may help with this situation?
January 16th, 2010 at 8:17 am
The manual removal was very easy. Note: Itchecks the proxy connection box in your internet options, so you have to go in and uncheck it for the internet to work after the removal.
January 16th, 2010 at 11:54 pm
it doesnt have cmddagent.exe on windows task manager
January 19th, 2010 at 8:17 am
I have Security Tool on my computer. It looked like Microsoft security something at first and I saved it to Documents. I have deleted it from my desktop and from documents, but it doesn’t matter. It blocks the whole screen and prevents me from trying anything else. When I can sneak into IE and get on the internet, ST eventually slows everything down and my computer shuts down with a message from MS that it is shutting down in order to protect the computer. HOW can I get rid of this??
January 22nd, 2010 at 2:42 am
hey mochan, backup and reinstall windows
January 23rd, 2010 at 4:17 pm
Hello All,
I got rid of all the nasty stuff except for a large warning frame in the center of my desktop. Does any one have an idea how to remove it? Thanks, Eric
January 24th, 2010 at 12:42 pm
task manager, and command prompts are blocked. cant access anything beyond control panel. not even add/remove programs!!!
i did a system restore to about a month ago, couldnt access internet, so undid the restore.
i attempted to complete a NEW restore in order to make the restore about 2 weeks ago so i could still access the internet. but it’s now blocked me from accessing the restore program!
is my laptop dead?!?!
January 25th, 2010 at 5:18 pm
I can’t get this to work, virus has taken over Task Manager. I called my cable provider and they recommend a professional service remove the virus once it gets to this point. Once it is fixed, must install Norton Antivirus protection to defend against this happening again.
January 29th, 2010 at 7:00 pm
I can’t get rid of the InternetSecurity2010 sspyware program from my laptom, I found the file but it would not delete, help?
February 1st, 2010 at 3:56 pm
New varients of these malicious programs have become smart and disable ALL known fixes IE Taskmgr, Malwarebytes, security essentials, Combofix, and file search functions. If you have Symantec antivirus 10.x you might as well just take it off it’s worthless now. I don’t think the newer versions are much better. Safe Mode actually is no longer working on some machines I have cleaned. If you search hard enough you can usually remove the problem software, but it is getting harder and harder. I think one trick is to get taskmgr up as soon as possible when you boot regular mode and start killing anything that looks suspicious if you can. Then combofix will usually run and remove the rootkits. There are a few other scanning utilities that work as well, just got to hunt and find them. Suprized MSFT has not made the news with this crap, I’ve seen way too many PC’s infected to know this is a WIDESPREAD PROBLEM, and not just a few unlucky people.
February 2nd, 2010 at 9:01 am
Was able to ‘kill’ program with Norton on XP OS. However, now my startup window requires me to click on Owner icon to type in password. In the past this window never appeared. When I click on Owner icon and get login window I hit return (ie. no password), the computer shows message about loading personal preferences etc then automatically logs itself out. How do I get into safe mode during the boot up process????
Thnaks
February 2nd, 2010 at 9:02 am
Was able to ‘kill’ program with Norton on XP OS. However, now my startup window requires me to click on Owner icon to type in password. In the past this window never appeared. When I click on Owner icon and get login window I hit return (ie. no password), the computer shows message about loading personal preferences etc then automatically logs itself out. How do I get into safe mode during the boot up process????
Thnaks
February 9th, 2010 at 4:06 pm
I have the Antivirus XP 2010 virus, and cannot get rid of it. My MS Security Essentials cant findit, I cant find it using any of these tips, cannot get on the internet because of it, and I cant find it on the Registry. email at mariokart365@yahoo.com Im in a lot of trouble at the moment because of this virus >.<
February 10th, 2010 at 8:25 pm
i found a much simpler way to remove this dumb ass thing. you go into your hd (C: or w.e.) and goto program files.
then look for it. it should say your pc protector or something liek that. but make sure its one u dont recognize but thats what mine was.
then click into the folder there should b an icon that you cant delete it wont let you.
well then right click it,
chose properties
then advanced (under attributes)
ok now your almost done now if you look at the first little check box’s it should say:
“File is ready for archiving”
&
“For fast searching, allow Indexing Service to Index this file”
Chances are those two are checked arent they?
well uncheck them then click ok
and then apply.
wahlah
you can now delete it.
then you can do the registry part.
February 14th, 2010 at 4:52 pm
hey i am a music producer and i have to use my computer for internet access so this shit helped it took an hour cause everything was slow…but now im super protected
February 16th, 2010 at 10:57 am
Task Manager blocked by Security Alert – Solution
Try to restart and log on and asap (i.e before the Security Alert is up and running) open task manager. Now terminate the process and once the Security Alert is not running its no longer blocking permission to delete the files. On order to find what file to delete, right click the icon Security Alert, choose “properties” to find the path. Good Luck with this bastard.
February 21st, 2010 at 8:26 am
the security tool has labeled windows task manager as a threat! i dont know what to do now. help?
March 1st, 2010 at 2:32 pm
Incredibly grateful, THANK YOU, PersonalSecurity had completely hijacked my desktop and you all have helped me kick its butt out. xoxoxoxoxoxoxoxoxox
March 1st, 2010 at 7:09 pm
I was pleged with the pc defender and the information plus killbox got rid of it. thanks
March 1st, 2010 at 10:09 pm
I had tried several times to do a Systems Restore because of a scary “Antimalware Doctor” (phony screen would pop up explaining 33 viruses found, press to remove).
System Restore and Nortons 360 didn’t help.
Using the above directions, I was able to “run” task. . . to bring up Windows Task Manager, and tried “ending” the Antimalware Doctor — while attempting to “end” a screen popped up giving the full name or “title” to look for in the next tab in the Windows Task Manager called “Processes” — otherwise I would have no idea what it was under the Processes section. Thus, I was able to “End Process” by highlighting the code name. I think it worked!
March 2nd, 2010 at 3:45 am
what kind file you delete how do you know which one to delete
March 5th, 2010 at 9:27 am
how will u recognize the file name????
March 26th, 2010 at 10:54 pm
A few weeks ago I had the dreadful Total PC Defender virus on my computer. With your helpful information and instructions I had it deleted in no time at all. Well….. I now have the Antivirus Soft virus on my computer. I have been following all the instructions, but nothing works this time. I have been trying for about 6 hrs. now. I cannot access the task manager, I can download some spywear removal programs as well as programs to put the virus to sleep, but cannot run them. I cannot open my computer in safe mode, none of the steps listed will work. The more I try the more aggressive it gets. This virus is not saved in a file or folder that I can find. I am ready to throw hard drive out the window! but can’t afford a new one! Please HELP.
March 26th, 2010 at 11:26 pm
I was scrolling back thru some other comments. Logged off then logged back on, As fast as I could I connected to the internet and opened STOPzilla. so I could run it before any security boxes popped up, It worked.. THANKS THANKS THANKS.
March 27th, 2010 at 10:24 pm
I got a warning from windows that my computer was infected and to download antivirus 7. I downloaded it then all sorts of stuff starting popping up. But that good I read this post went into task manager and ended the process and seems to have cured the computer. Thanks again.
April 1st, 2010 at 4:25 pm
Hi, I did get rid of the processes, but nowthere are no icons on my desktop and the screen is full on blue. Please help!
April 22nd, 2010 at 8:12 am
I am not able to get into my task manager to select the process tab, not even thru when I go to run and enter tskmgr. It will not allow it to pop up however it does show the icon in my tray but when I go to it it goes away…..HELP!
Signed……. confufflled
May 2nd, 2010 at 12:13 pm
how do i remove security tool it wont let me go on task manager or command prompt
May 7th, 2010 at 8:15 pm
Same problem as Henrietta. What now?
May 19th, 2010 at 7:47 pm
I’ve got a fake Spyware program that is infecting my computer now, called AntiSpyware Soft. I can’t try any of these methods because the POS blocks every important .exe on my computer. I can’t run anything I download, not even the installers. I can’t even run command prompt! What do I do?
May 23rd, 2010 at 12:45 pm
can this site be trusted? i don’t know what it is about it but it screams scam
May 24th, 2010 at 4:29 pm
Hi,
The program does not let you open the Task Manager, no matter which way you try. I’ve worked with this virus a couple times, so here is how I did it:
1. Get the name of the program, which in this case is “Security Tool”
2. Reboot the computer in safe mode, by pressing F8 before Windows Boots.
3. When in safe mode, do a Windows Search for the program, in this case “Security Tool”
4. More than likely, the only thing that pops up the the search is the shortcuts. Right click on the short cut, and click properties.
5. In the properties window figure out the location of the process. In my case, it was under C:\Documents and Settings\ All Users\ Application Data\[some stupid ass number code]
6. In that folder contained one process with the icon, (thats how I knew it was the program), and the stupid number code that came with it. DELETE THAT ENTIRE FOLDER!
7. Close out of all the Windows Explorer Windows, and EMPTY THE TRASH! If the trash isn’t emptied right away, on reboot the program will restore it self and you will be back to square one.
8. Restart the computer. You should be allowed to work with the computer. In my case, AVG was still blocked from being able to update. I wasn’t able to download a new AVG. I will try later to run this program called “Combofix”, which may or maynot take care of the problem.
Thats all I have for now..
May 24th, 2010 at 5:38 pm
Just a note: ENDING THE PROCESS DOES NOT GET RID OF THE VIRUS! Doing what is explained above will get rid of most of the virus, and it will allow you to work with the computer.
May 25th, 2010 at 11:37 pm
In short… only download trusted stuff. I have learnt the hard way. The steps mentioned seemed to have worked for Antispyware soft, although im still certain there are bits and pieces of it lurking on my hard drive somewhere.
June 2nd, 2010 at 12:20 am
i just had this problem…and is ff your instructions but also MT TASK MANAGER won’t open whatever I do. when I browse also/find…system can’t find.
pls help me. will reformatting take it off?
June 10th, 2010 at 2:18 pm
I have av security suite on my home computer.What is the file name specifically that I have to delete? spy doctor, windows defender, mcaffee, and malware guard all said they found it and killed it but on restart it popped back up. please help dont want to spend hundreds of dollars to call someone to come over when i can do it myself.
June 29th, 2010 at 4:16 am
Thank you from a frenchie who is very happy to find your site so i have removed that s**t
July 2nd, 2010 at 12:53 am
Wow thank you for all your help. Had sysinterals antivirus attack and you really helped out. Your information was spot on. Really appreciate the help.
July 10th, 2010 at 1:56 am
i have av security suite ive been onto sites that tell me how to get rid of it i have done every single thing that it says on the website i needed somthing called rkill i downloaded and use it then they told me to download malwarebytes anti malware and use it after using rkill but rkill never seems to work i cannot and do not know what the file for the av security suite is if you know on how to get rid of this please send a email to i_rox_dont_i@hotmail.com no spam please.
July 13th, 2010 at 9:49 pm
i have vista and i have antivir on my computer ive tryed runing task manager but it just exits it out and opens firefox to porno.com ive tryed searching for it but i cant find it anywhere and i cant download pocket killbox because it blocks my web browser im going crazy.
July 17th, 2010 at 1:29 am
Everytime i try to open something this security warning pops up saying application cannot be executed. and says that files infected then says do you want to activate your antivirus software now.
so we=hen i go into task manager that still pops up. so it doesnt lemme use ANYTHNG.. not even virus scans.
July 26th, 2010 at 7:46 pm
wungbvhtssd.exe is the file name of my recent encounter with Antivir
Hope this will help someone out.
Thanks for the info, couldn’t have recovered without you!
July 29th, 2010 at 2:27 am
HAH! When i open the task manager it just closes due to the actions of Security Tool……
CAN ANYONE HERE ACTUALLY HELP ME?!
July 29th, 2010 at 2:29 am
everything always closes…….
July 29th, 2010 at 11:12 am
thank you very much. I appreciate the time and effort spend on this article.
July 31st, 2010 at 1:38 pm
I still have problem in killing security master AV can u help me out. now i am donloading spyware doctor will it work out for me.
waiting for ur reply
August 2nd, 2010 at 3:37 pm
Jason,
Thanks man. That was super easy and that was the ticket.
August 2nd, 2010 at 3:43 pm
How can i can download this shit if i can’t go on the frickin internet!!!
August 16th, 2010 at 2:08 pm
DUDE THX AKLOT!!
August 20th, 2010 at 2:11 am
Killbox worked AMAZINGLY at getting rid of links.exe file. I no longer have the pop-spam
Great guide
August 20th, 2010 at 10:52 am
i did it with spyware doctor and it dosent take the alamaware doctor help out plz
September 8th, 2010 at 5:31 pm
I am really stupid on the computer. My macbook pro was giving me messages through skype about viruses from that registry thing. I go on pornhub sometimes and i think that’s where it came from, but i really don’t have any clue about all of this. I was retarded enough to give them my information and purchase the registry 2008 thing. I have no idea what to do now… Please help me.
September 10th, 2010 at 1:15 pm
Follow the below steps if you still can’t get rid of this malware.
If your system has been meshed up or you can’t do any of the above,
just put a Linux live CD (Ubuntu is easier)
and mount your C: drive.
By booting from Linux you will gain a full control in your files during the whole process of removing the virus without anything to block you.
Then make a search in the whole C: drive looking for the suspicious file.
Just make a search like
*0.exe
*1.exe
…
*9.exe
until you fine this file consisting of digits.
Write down the exact name.
Delete that file.
Make a search of this exact name and delete any other entries.
Then your system is back. You can safely log in to your windows
and be able to run the recommended tools to remove the malware remnants.
September 13th, 2010 at 10:46 am
I have a virus and its name is AntiSpy Safeguard on a dell windows xp computer I have tried killbox and it will not delete it I have also tried from the task manager and nothing happened I am not computer expert so I would need your detailed help
September 13th, 2010 at 11:20 am
I have even tried stopzilla and that did not work against AntiSpy Safeguard
September 16th, 2010 at 4:29 am
Hi,
when i tried to open windows task manager the Antivirus thing said it was infected and didnt let me open it
What do i do?
October 3rd, 2010 at 5:32 am
i got rid of antispy safeguard by deleeting a file called hotfix that had a windows icon. it was under users/application data/hotfix.
it woun’t delete, so i ran advanced system care to make hijacked systems report and deleted ‘hotfix’ fromn there
October 8th, 2010 at 4:34 pm
Oh yes I to got that dam thing but I tryed to do the task manger but the item’s (name’s) Where not on my P.C. And I looked for a progam to remove it .And has most of you already know they all coast money .But I went to Kim Komando show . com And fond this malwarebyte’s anti – malware .There’s a free and a upgrade for (25 $ ) Now here’s the good new the free one work’s just fine it knocked it right out hurray lol thank god It worked so well I do belive I will get the upgrade
November 3rd, 2010 at 9:00 am
Please remove all Funware from my computer.
November 5th, 2010 at 9:48 pm
I’ve got an (win32/Olmarik trojan) in my Desktop, can anyone suggest me how to delete this thing? Even my Nod32 can’t even quarantine or delete this things .. Please give me some suggestions on how to delete this TROJAN!!!
Thanx!
November 14th, 2010 at 9:07 pm
This is TOO confusing. I’ve been trying for 5 hours and nothing works!!! What a waste of time!
November 14th, 2010 at 9:12 pm
How can delete Win 7 Antispyware from my computer. Someone please help….this is frustrating.
November 15th, 2010 at 8:09 pm
not helpful at all! your explinations are vage and no good. all you want to do is sell a product.
fallowed you instrictions and antiviruse action still won’tletme do any thing. if you help is as good and vage as your help, i will not buy anything you want to sell.
November 18th, 2010 at 5:30 pm
LISTEN NOW I CANT GO ON TASK MANGER BECAUSE OF SECURITY TOOLS HELP MEEEE!!!!1
November 22nd, 2010 at 12:52 am
thank u for this`very well said i’ve remove the fucking shit antivirus8
December 9th, 2010 at 7:31 pm
hello,
i am trying to remove this file, but it does not let me do any of these things.
it does not let me run the task manager or the command prompts.
I really need help on removing this system tool.
It does not let me open any files!
December 18th, 2010 at 1:34 am
I got the “security shield” virus. It was horrible. It took over everything on my pc – Spybot, Ad-aware, system restore- nothing worked. The virus even created its own restore point and would not let me change it. But thanks to the posting I was able to detect the malacious file and delete it. The path was c:/documents and settings/user/local settings/application data. It was a hidden file. I also had to delete a folder with a bunch of .pft files in the windows folder. I found that out from the Add/Remove Programs function when I noticed .pft files had all been downloaded at the same time as the malware. The only thing that still does not work is the system restore (XP). It’s still stuck at the same point and will not allow me change it. Any suggestions on how to restore that?
December 30th, 2010 at 10:04 pm
i got the “security shield” thing and i’m not sure which process i’m supposed to end. can someone please help me???
December 30th, 2010 at 10:41 pm
i found which process i was supposed to end and just followed the steps. these steps work great.
January 2nd, 2011 at 6:21 am
Just had the security shield virus. I found it’s icon in my Start toolbar, so right – clicked it’s properties. As per the previous post this gave me the file path of the culprit exe file (in my appsdata). Tracked the file down and it’s date stamp confirmed it as the rouge file. Simply rebooted computer in safemode (F8) and back into the file directory and deleted. Restarted computer and all now back to normal. Ps using the time stamp was able to identify the source of the website that was infected.
January 2nd, 2011 at 4:06 pm
Super duper, many thanks to you all, especially Evan from Dec. 20, 2008!
I had that security shield virus thingy that wouldn’t let me do anything but reboot. Don’t buy shit from those Antivirus Virus dudes! Damn crooks! It’s a scam! >:0(
And Happy New Year!
February 8th, 2011 at 5:27 am
i try to open up the task manager, and it says its infected and closes, whenever i try to do pretty much anything, it says its infected and tries to close it…..
February 12th, 2011 at 9:59 am
I tried everything above but it stilles comes up with the message “application cannot be executed, the file BLAH is infected” even when i try and open cmd. PLEASE HELP!
February 24th, 2011 at 12:20 pm
So I got the System Tool malware thingy on my windows 7 ultimate pc, it wont allow me acces to taskmg,cmd, or to open any other files at all, plus i can’t run in safe mode. When i reboot my pc and tries to presh f8 a menu is appearing only allowing me to chose from wich device i would like to boot from. So no advandeced boot menu
god damnit i thought i was very good with computers before this little fucker appeared. I’ve like tryed everything 
please help me
March 28th, 2011 at 4:34 pm
Try Safe mode–system tools–system restore. It worked for me.
April 15th, 2011 at 2:34 pm
antispyware 2011 has shut off my internet connection, i cant delete the process quick enough as it keeps restoring it and now i cant download the killbox as the virus spyware has taken over my internet. please please help me??!! i dont understand any instructions uv written above either!! i need this gone.
April 16th, 2011 at 5:48 pm
CAN NOT GET THIS OFF MY COMP. SHOW ME WHAT TO DO.
GARY LEE SCHUSTER
April 28th, 2011 at 9:03 am
I dont feel i should have to follow this steps to remove this program. Iam thinking about sueing the ower of this product. My copmuter is corrupt i cant open any files.
May 6th, 2011 at 6:45 am
i dont want that program no credit card
June 11th, 2011 at 4:09 am
My partner and I stumbled over here by a different website and thought I might as well check things out. I like what I see so now i am following you. Look forward to looking over your web page repeatedly. Great post and I would check back again soon!
June 13th, 2011 at 4:15 pm
still cant get anything to work. May the people who created this virus rot in hell.
June 15th, 2011 at 4:17 pm
FUC KYOU MALWARE PROTECTION CENTER! I KILL PROCESS THEN DELETE YOU FROM MY HARD DRIVE GET SHAT ON!!!!
June 16th, 2011 at 9:01 pm
i got infected by rat yesterday…and i get rid of rat..i will post my story..a guy gave me a software named run1st.exe. calling it a useful software…and i didnt new it was rat..i even didnot knew the word rat before..i double clicked it and nothing happend..so i asked him he game another tool that told me my hardware id…i foudn that cool …when i checked my task manager it showed the process run1st.exe running..but when i tried to end the process ..it just reappears in miliseconds..i got annoyed and asked the guy..he told me it will just end itself after one hour..i believed that guy and left the process running…but after one hour it didnt ended..so i decided to delete that file..i noted the path of the program from processes and went there to delete that..but i couldnot do that because it was running .. a message pop up tht the file cannot be deleted as it is under running….mode…so i didnot knew what to do…i right clicked the process..and tried end tree process…this option gave me some valuable milliseconds to delete that file and i was able to do shift+del on that program..after that i thought its gone now..and i was relieved but the story didnt end it there…
June 16th, 2011 at 9:41 pm
i used zone alarm firwall to block the process but i dont know it worked or not…yesterday i was seeing a new process w9k.exe in the processes…i had no clue where it came from…after deleting run1st.exe..the guy then showed me my whole passwords of facebook yahoo and other accounts…i was so shoced…then i repeated that process with w9k.exe…ultimately i decided to format my c drive….still i have few questions which are unanswered..does that bot has made copies of itself in other drives apart from c drive…? after formating the computer will it run again on its own..even if i dont double clck any programs….and yah it does c orrupted some software exe files like firfox.exe…guys help me if you know these answers..
June 18th, 2011 at 5:12 pm
Thank you very much for ALL your help!!!!
June 24th, 2011 at 2:50 am
For the command prompt, what do I do if access is denied? The exact image I see is this;
C:\Users\Guest\AppData\Local>del hkk.exe
C:\Users\Guest\AppData\Local\hkk.exe
Access is denied.
July 15th, 2011 at 4:08 am
Ok, Got malware and viruses? There are several things you will need to do to clean them yourself. There are many processes that will lock onto or replace system files and can only be deleted at reboot.
Step 1. From a “clean” computer (recommend you use a buddy’s computer that has active and up to date antivirus running), download the following programs and put them on a flash drive
a. Rkill (bleepingcomputers.com)
b. Pocketkillbox
c. HijackThis (trendmicro.com)
when you have these on a flash drive from a clean computer, disconnect your computer access to the internet, and restarting your computer in safe mode. (Turn on computer and push f8 repeatedly during boot), Use the option to start in safe mode. DO NOT USE ANY OTHER OPTION.
When computer has started in safe mode, run Rkill, and give it time to finish. This will shut down windows explorer, and usually will kill the active process if there is one. Press Ctrl-Alt-Delete keys at the same time and open your task manager if your windows explorer does not load again automatically. When task manager is open, click on File and select new task (run). Type Explorer.exe. This should restart windows explorer, but without the active virus.
Run Hijack this.
Save the results to a microsoft word document, save to flash drive, and go to buddy’s computer. Scan flash drive so you know you are not infecting his computer, open the document, copy and paste the results to http://www.hijackthis.de/
Once you have the results back as to what is good and what is bad, use the Pocketkillbox to delete the files indicated as malicious.
I won’t tell all my secrets, but this is a good start to cleaning your computer.
October 26th, 2011 at 5:48 am
without u i would have lost precious memories….
November 18th, 2011 at 2:52 pm
How do you know which program to end in manager task? I only have few seconds after I start my laptop to open task manager and search for that program. After those seconds privacy protection kicks in and I cannot do anything, task manager stops working, cannot go on any browser
please help I am not a computer specialist. Whats even worse its not my laptop and I might be killed by the owner 
November 24th, 2011 at 1:30 am
This tutorial is useful, and i want to ask your permission to publish it in my blog (with some editing, of course), may i ?
November 24th, 2011 at 5:41 pm
Keyloggers rely on your keystrokes; therefore, use your on-screen keyboard whenever you type your password, pin number, acct No’s, or anything confidential; lncluding, web addresses if you don’t want anyone to know where you are on the net.
My question is are spyware file names in unrecognizabe secret codes? I see file names in Processes, but I don’t understand what they mean. None have the extension .dLL so that’s encouraging, but I know I’m being followed and by whom. My anti-spyware found a nasty Trojan horse right around when I accepted a yt friend’s lnvite from someone I’d been chatting with.
How can we recognize a keylogger’s file without deleting a file we need in error?
The on-sreen keyboard is what I’m using now. and it is located in “Assessories, Assessibilities” in XP. In Win7, go to Start, and type: on-screen keyboard. Win7 is an updated version that displays words to choose from at the top of the keyboard followed by a space which speeds up the process. That is so helpful!
November 24th, 2011 at 5:58 pm
OUT SMART KEYLOGGERS:
I’m emphasizing this important point again in case it got lost in my previous message: Keyloggers rely on your keystrokes; therefore, use your on-screen keyboard whenever you type your password, pin number, acct No’s, or anything confidential; lncluding, web addresses if you don’t want anyone to know where you are on the net. The on-screen keyboard doesn’t use key strokes and therefore can NOT be traced. It is located in “Assessories, Assessibilities” in XP. In Win7, go to Start, and type: on-screen keyboard. Win7 is an updated version that displays words to choose from at the top of the keyboard followed by a space which speeds up the process. That is so helpful!
I hope this was helpful!
Happy Thanksgiving!
( :
November 24th, 2011 at 6:20 pm
CLARITY: Please don’t rely on your anti-spyware software to automatically warn you of trouble. You must be diligent and savvy. I knew this person never takes initiative to befriend anyone; this person’s a receiver, not a giver. But it was too late by the time I thought of that. So if something doesn’t seem quite right, please be suspicious and take precautions.
November 26th, 2011 at 11:29 pm
Someone said yt should be safe to use; therefore I will investigate and report back here sometime in the not-to-distant future (asap, but I have to take time from my busy schedule, so don’t expect any quick miracles.) – lol
Ciao!
November 28th, 2011 at 10:28 pm
Help!!……..after removing a trojin that was trying to shut everything down i am now force to click a program (ex: firefox, games,command prompt, ect) my computer couldnt find the program and it wants me to hunt the program down…..please help me!!!
November 30th, 2011 at 1:07 pm
I was wondering what this guy was actually up to.
December 2nd, 2011 at 3:31 pm
How do you know which programs to remove in task manager? There are 65 some must be good ones.
December 9th, 2011 at 12:42 am
How could i run killbox ? since no program is able to execute. even taskmanager is also not executed (also tried from taskmgr.exe).
Moreover search result return no match result for “ransom” file.
also tried to search from Hiren’s boot cd (mini xp) but failed to find it.
plz help
March 2nd, 2012 at 7:23 pm
im not sure how to find the programme name im trying to get rid of and fill out the ” dir/a name_etc.. please help!
April 13th, 2012 at 1:28 pm
i have a problem my mate has this fake program and i cant download the remover and i cant start task manager because that is taken over by the programs so i have this massive problem helpppp