Severity scale  

Windows Profound Security. How to Remove? (Uninstall Guide)

removal by - -   Also known as WindowsProfoundSecurity | Type: Malware

Windows Profound Security is the program that should never be trusted by any user. Though it looks like a normal PC security application, in reality it is a rogue program that belongs to FakeVimes. You must have heard about this group of hackers even if you have poor knowledge about malware threats. Just like its predecessors, Windows Profound Security tries to make a wrong image about its infected computer and for that it displays completely misleading alerts and scanners. All these notifications state that your Operating System is totally infected and that you must remove these threats with a help of licensed Windows Profound Security version. However, that's just a way how scammers try to swindle the money from PC users. It's highly recommended to ignore such alerts and remove Windows Profound Security without any delay.

HOW CAN YOU GET INFECTED WITH Windows Profound Security

Windows Profound Security is usually distributed with the help of trojans that come inside through the backdoors of the system. As soon as they enter it, they start working on modifying some system parameters and setting this scamware to launch as soon as PC is rebooted. In addition, Windows Profound Security starts working on what it was created for – it tries to give you the wrong impression that your computer is under numerous threats. For that it displays misleading alerts, fake system scanners and various popup ads reporting about hundreds of trojans, adware, malware and other non-existent threats. Be sure that you won't be capable to browse normally on your computer when having Windows Profound Security on board. Instead of getting on the Internet, you will be interrupted by such alerts:

Torrent Alert
Recommended: Please use secure encrypted protocol for torrent links.Torrent link detected!
Receiving this notification means that you have violated the copyright laws. Using Torrent for downloading movies and licensed software shall be prosecuted and you may be sued for cybercrime and breach of law under the SOPA legislation.

Software without a digital signature detected.
Your system files are at risk. We strongly advise you to activate your protection.

Keylogger activity detected. System information security is at risk.
It is recommended to activate protection and run a full system scan.

HOW CAN YOU REMOVE Windows Profound Security

Like any rogue anti-spyware, Windows Profound Security tries to rip its users of by 'recommending' them purchase its licensed version. However, you must keep in mind that this program has an empty virus database, so it is incapable to find or remove any threat from the computer. Windows Profound Security reports only about invented viruses and legitimate system files that are important to have on your computer, so you must never remove them. The only thing you must eliminate is the same rogueware that will do anything to get your money. If you have also been infected with this rogue, remove Windows Profound Security using reputable anti-malware programs, such as Reimage, PlumbytesWebroot SecureAnywhere AntiVirus or Malwarebytes Antimalware. We don't recommend manual removal if you don't have enough knowledge about computer and their system architecture.

The latest parasite names used by FakeVimes:
Windows Internet Guard, Windows Web Watchdog, Windows AntiBreach Patrol, Windows Antivirus Patrol, Windows Pro Defence Kit

It might be that we are affiliated with any of our recommended products. Full disclosure can be found in our Agreement of Use. By downloading any of provided Anti-spyware software you agree with our Privacy Policy and Agreement of Use.
Do it now!
Reimage - remover Happiness
Compatible with Microsoft Windows
What to do if failed?
If you failed to remove infection using Reimage Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to uninstall Windows Profound Security. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.

More information about this program can be found in Reimage review.
Reimage is recommended to uninstall Windows Profound Security. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.

More information about this program can be found in Reimage review.
Not using OS X? Download a remover for Windows.
Press Mentions on Reimage
Alternate Software
Alternate Software
We are testing Plumbytes's efficiency (2012-08-02 03:22)
Malwarebytes Anti Malware
We are testing Malwarebytes Anti Malware's efficiency (2012-08-02 03:22)
Hitman Pro
Webroot SecureAnywhere AntiVirus

Windows Profound Security manual removal

Kill processes:
Protector-[3 random characters].exe
Protector-[4 random characters].exe
Delete registry values:
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsafwserv.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsavastsvc.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsavastui.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsegui.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsekrn.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsmsascui.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsmsmpeng.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Optionsmsseces.exe "Debugger" = 'svchost.exe'
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionSystemRestore "DisableSR " = '1'
Delete files:
%AppData%\Protector-[3 random characters].exe
%AppData%\Protector-[4 random characters].exe

Removal guides in other languages

Information updated:

Comments on Windows Profound Security

Post a comment

Attention: Use this form only if you have additional information about a parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Home page Name


(All fields are required)