Tag Archives: Malwarebytes

Windows AntiBreach Tool Removal Guide

Windows AntiBreach Tool Removal Guide

Windows AntiBreach Tool from the FakeVimes family is a fake security program classified as rogueware which pretends to be a legitimate security program and claims that malware has been detected on your computer and displays false scan results, fake security alerts, and does not allow you to run any application on your computer. When the fake scan is finished, you will be prompted to buy Windows AntiBreach Tool to clean your… Read More »

Windows Efficiency Kit Removal Guide

Windows Efficiency Kit Removal Guide

Windows Efficiency Kit‏ from the FakeVimes family is a fake security program classified as rogueware which pretends to be a legitimate security program and claims that malware has been detected on your computer and displays false scan results, fake security alerts, and does not allow you to run any application on your computer. When the fake scan is finished, you will be prompted to buy Windows Efficiency Kit to clean your… Read More »

How to remove Windows Prime Shield

How to remove Windows Prime Shield

Windows Prime Shield‏ from the FakeVimes family is a fake security program classified as rogueware which pretends to be a legitimate security program and claims that malware has been detected on your computer and displays false scan results, fake security alerts, and does not allow you to run any application on your computer. When the fake scan is finished, you will be prompted to buy Windows Prime Shield‏ to clean… Read More »

Live Security Professional removal guide

Live Security professional

Live Security Professional is a fake antivirus / secutrity program categorized as rogueware that pretends to be a legitimate security program and claims that malware has been detected on your computer. Live Security professional is classified as a rogueware because it will show fake scan results and security alerts when the malicious Live Security professional scanner is installed on the compromised system. And also Live Security professional does not allow you to run legitimate… Read More »

Your computer has been locked Ransomware Removal Instructions

Your computer has been locked

The Your computer has been locked ransomware is a very common computer infection that will completely lock you out from accessing your computer until you pay the $300 fine to the malwarewriters (cybercriminals). The “Your computer has been locked Ransomware” pretends to be a lock screen placed on your computer by the Department of Justice, Department of Homeland Security, and the FBI that states that it has detected that your computer… Read More »

This file contained a virus and was deleted [Solution]

This file contained a virus and was deleted

When you receive the message “this file contained a virus and was deleted” in your browser when trying to download a program using Internet Explorer then the file is not infected but your computer. The “this file contained a virus and was deleted” message is presented because your computer is infected with the ZeroAccess / Sirefef rootkit. The ZeroAccess / Sirefef rootkit wil also change the “symlinks” Junction reparse point of… Read More »

W32.backboot.gen – Removal Instructions

W32.backboot.gen – Removal Instructions

W32.backboot.gen is a dangerous trojan also known as a rootkit. This type of malware possesses the ability to steal password and other sensitive personal information from the compromised computer. Once W32.backboot.gen is installed on the compromised computer, it becomes possible to hide it self from detection of your security software; it is also able to maintain administrator access to your computer and essential system files. It can full control over… Read More »

Hijack.StartMenuinternet – removal instructions

Hijack.StartMenuInternet

Hijack.StartMenuInternet is a malicious modification in the Windows registry that is made by malware, in some cases Malwarebytes Anti-Malware is not able to restore this entry’s, one of the causes is active malware or other security software which does not allow any changes are made in the registry. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: (“C:\Documents and Settings\User\Local Settings\Application Data\nmq.exe” -a “C:\Program Files\Mozilla Firefox\firefox.exe”) Good: (firefox.exe) HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command\(default) (Hijack.StartMenuInternet) ->… Read More »