Title: Windows PC Aid
Also known as: WindowsPCAid

Remove Windows PC Aid
Removal instructions

 
Severity scale:Windows PC Aid severity is 65  (65 / 100)
 

Windows PC Aid is a rogue anti-spyware program that is being distributed via spam and infected websites. Infected websites usually redirect users to fake virus scanners and prompt them to install antivirus software to remove found malware infections. If you were redirected to a fake online virus scanner simply close the web page and do not download anything. At this point you are not infected with a rogue anti-spyware program. However, sometimes, scammers use drive-by downloads to install malware like Windows PC Aid without users' knowledge. In such case, the rogue program pop-ups on the computer screen after ten minutes or so. Users usually do not understand where it came from. It probably was and infected website or malicious advertisement placed on one of your favorite websites.

How does Windows PC Aid works?

Once installed, Windows PC Aid will scan your computer for viruses. By saying 'scan' I mean that it just pretends to scan your PC and it can be even compared to the real antivirus scan since the rogue program simply displays the same infections on infected computes, the list of infections is coded into the program itself, so obviously it will report the same infections even on different PCs. Very often, it reports about 20 infections and more. In some cases, it pretends to remove one or more supposedly found infections for free and then prompts you to pay for a full version of the program to remove the rest of reported malware. Do not buy it! It's a scam that wants to steal money from you. 

While running, Windows PC Aid will display numerous fake security alerts and various notifications from Windows task bar saying that your computer is infected by malware, mostly trojans and spyware. The rogue program has a limited number of well-made but fake security alerts to scare users into believing that they are infected. Some people may actually trust them since they look realistic as hell.  

Another very annoying thing about this malware is the fact that it blocks legitimate programs. Just like any other fake antivirus virus program, it blocks task manager, registry editor and some other system tools to protect itself from being removed. You may not even use your web browser since Windows PC Aid blocks web browsers too. You might be able to open but it either will block certain websites or redirect you to infected or misleading websites full of advertisements and bogus software. If your web browser redirects you to survey sites and asks you to fill in certain forms given your full name, email address and phone number, close such websites immediately. 

Getting rid of Windows PC Aid

You should uninstall Windows PC Aid as soon as notice its symptoms on ones PC. If you can't use your web browser properly and download malware removal software, please reboot your PC in safe mode with networking and try downloading anti-malware programs from this mode. If you can't connect to the Internet, check your LAN settings and make sure that you are not using a proxy server to access the net. 

If you have already purchased the rogue program, contact your credit card company and dispute the charges. If you are lucky enough you should be able to get your money back. Just tell them that you bought malicious software that pretended to be a Microsoft product. The most important part - Windows PC Aid removal. The best way to remove Windows PC Aid from your computer is using legitimate anti-malware software. We recommend using SpyHunter or Spyware Doctor. Both work just fine. 

The latest parasite names used by FakeVimes:
Windows Internet Guard, Windows Web Watchdog, Windows AntiBreach Patrol, Windows Antivirus Patrol, Windows Pro Defence Kit



Automatic Windows PC Aid removal:

It might be that we are affiliated with any of our recommended products. Full disclosure can be found in our Agreement of Use.
By downloading any of provided Anti-spyware software to remove Windows PC Aid you agree with our Privacy Policy and Agreement of Use.
SpyHunter is recommended remover to uninstall Windows PC Aid. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

If you failed to remove Windows PC Aid using SpyHunter, submit question to our support team and provide as much details as possible.
dot
STOPzilla
download
manual required
We are testing STOPzilla's efficiency at removing Windows PC Aid (2012-06-05 08:29:00)
dot
Malwarebytes Anti Malware
download
manual required
We are testing Malwarebytes Anti Malware's efficiency at removing Windows PC Aid (2012-06-05 08:29:00)
dot
XoftSpySE Anti Spyware
download
manual required
We are testing XoftSpySE Anti Spyware's efficiency at removing Windows PC Aid (2012-06-05 08:29:00)
dot
Defender Pro Ultimate
download
manual required
We are testing Defender Pro Ultimate's efficiency at removing Windows PC Aid (2012-06-05 08:29:00)

what to do if you failed to remove the infection?
Virus Removal
Phone Support
Help Line to remove Windows PC Aid
Windows PC Aid snapshot:
Windows PC Aid snapshot

Windows PC Aid manual removal:

Kill processes:
Inspector-[rnd].exe
Protector-[rnd].exe
Delete registry values:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnOnHTTPSToHTTPRedirect" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegedit" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegistryTools" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Inspector"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings "net" = 2012-2-25_1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avp32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashLogV.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\beagle.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jedi.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msa.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ntvdm.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rav7.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spoler.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vir-help.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wupdt.exe
Delete files:
Inspector-[rnd].exe
Protector-[rnd].exe
%StartMenu%\Programs\Windows PC Aid.lnk
%AppData%\[random].exe
%AppData%\result.db
%Desktop%\Windows PC Aid.lnk

QR code for Windows PC Aid removal instructions:

Windows PC Aid qrcode
QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.

The reason we add QR code to the website is that parasites like Windows PC Aid are really hard to remove on infected computer. you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall Windows PC Aid right in your pocket.

Simply use the QR scanner and read removal instructions from mobile device.
Information added: 2012-06-05 08:29:00
Information updated: 2012-06-07 02:56:05

Additional resources:

Attention: If you know know a reputable website reated to security threats, please add a link here: add url

Post Comment:

Attention: Use this form only if you have additional information about Windows PC Aid parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter please unsubscribe here
48600 Subscribers
Ask us
I failed to remove Windows PC Aid using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight against computer parasites on the Internet alone. If you have a website, we would be more than happy if you would like to cooperate and help us spread the information about latest threats. Remember, knowledge is the most powerful weapon. Help your visitors protect their computers!
add text box
rss feed
help other