There are many viruses and other malicious programs that are being designed to look and act beneficial to you, but in reality they open your computer up to even more dangerous intruders.
One version of this type of deception is called the Windows tool virus. This malware is designed to do one thing, cause you to panic and purchase a copy of the software in the hope of saving your computer and the data it holds from harm or theft. To stop this you need to remove the windows tool virus quickly. This malware has several different tools at its disposal to help create the illusion of a computer in desperate need of help.
What does this malware do to your PC?
#1 Generates error messages when trying to access, create or delete files or programs on your computer.
#2 Makes folders or the contents appear inaccessible or even appear to vanish from your computer.
#3 Prevents proper operation of programs on your computer. When you try and open a program you will be told that the program has crashed due to a unknown error, that the program cannot be located or that your hard drive must be scanned for errors to restore the programs functionality.
No matter what you choose during these warnings this malware will perform a fake scan scan on your hard drive and report back to you that there are several different problems with your PC and the hard drive that you need to fix by paying for this malware and the only real way to stop this is to remove the windows tool virus.
You will constantly receive warning messages from this malware that give you different types of critical errors.
How can you fix this?
The Windows tool virus would like you to believe that everything will be ok as soon as you purchase a copy of the software and activate it. Even if you do just that, you will still continue having the same problems that you have been having all along. here is how you can get rid of it.
Manual method to remove the windows tool virus.
a) you need to stop this malware from running first. Since it generates random file names though when it is installed this is very hard to do and it usually blocks windows task manager from opening so you cannot stop it. The first step then is to start your computer in safe mode. this will prevent this malware from starting and save you the headache of finding it. To start your computer in safe mode press the F8 key before windows starts and scroll down to safe mode from the mu screen that appears and click on safe mode with networking.
b) Next you need to find and delete all the registry entries for this malware. To do this start the registry editor by going to the windows start menu, then run and then type in regedit and press return. Next find and delete the following entries.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "garbage file name"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "garbage file name.exe"
Where it says garbage file name this is a randomly generated file name like..abggy1. exe or another nonsensical file name.
Then change the following entries.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'
change this to read:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0′
Change this to read: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '1′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1′
Change this to read: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '0′
Once you have done this delete these files.
c) %Documents and Settings%\All Users\Application Data\ garbage folder name.
%Documents and Settings%\All Users\\Application Data\garbage.dll
%Documents and Settings%\All Users\\Application Data\garbage.exe
The garbage name is the same as you find in the registry.
Delete the windows tool shortcut from your desktop.
Once this is done restart your computer and this malware should be gone. If it is still there are still files present and you need to run the second method below.
Method 2: To automatically remove the windows tool virus.
Follow step a) above to stop this malware from running by starting your PC in safe mode. Open internet explorer or the browser you use and download a system and registry scanner. Run a full system scan. This will run through all the above steps for you automatically and in minutes and remove the windows tool virus for good.
One version of this type of deception is called the Windows tool virus. This malware is designed to do one thing, cause you to panic and purchase a copy of the software in the hope of saving your computer and the data it holds from harm or theft. To stop this you need to remove the windows tool virus quickly. This malware has several different tools at its disposal to help create the illusion of a computer in desperate need of help.
What does this malware do to your PC?
#1 Generates error messages when trying to access, create or delete files or programs on your computer.
#2 Makes folders or the contents appear inaccessible or even appear to vanish from your computer.
#3 Prevents proper operation of programs on your computer. When you try and open a program you will be told that the program has crashed due to a unknown error, that the program cannot be located or that your hard drive must be scanned for errors to restore the programs functionality.
No matter what you choose during these warnings this malware will perform a fake scan scan on your hard drive and report back to you that there are several different problems with your PC and the hard drive that you need to fix by paying for this malware and the only real way to stop this is to remove the windows tool virus.
You will constantly receive warning messages from this malware that give you different types of critical errors.
How can you fix this?
The Windows tool virus would like you to believe that everything will be ok as soon as you purchase a copy of the software and activate it. Even if you do just that, you will still continue having the same problems that you have been having all along. here is how you can get rid of it.
Manual method to remove the windows tool virus.
a) you need to stop this malware from running first. Since it generates random file names though when it is installed this is very hard to do and it usually blocks windows task manager from opening so you cannot stop it. The first step then is to start your computer in safe mode. this will prevent this malware from starting and save you the headache of finding it. To start your computer in safe mode press the F8 key before windows starts and scroll down to safe mode from the mu screen that appears and click on safe mode with networking.
b) Next you need to find and delete all the registry entries for this malware. To do this start the registry editor by going to the windows start menu, then run and then type in regedit and press return. Next find and delete the following entries.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "garbage file name"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "garbage file name.exe"
Where it says garbage file name this is a randomly generated file name like..abggy1. exe or another nonsensical file name.
Then change the following entries.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'no'
change this to read:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = 'yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0′
Change this to read: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '1′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1′
Change this to read: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '0′
Once you have done this delete these files.
c) %Documents and Settings%\All Users\Application Data\ garbage folder name.
%Documents and Settings%\All Users\\Application Data\garbage.dll
%Documents and Settings%\All Users\\Application Data\garbage.exe
The garbage name is the same as you find in the registry.
Delete the windows tool shortcut from your desktop.
Once this is done restart your computer and this malware should be gone. If it is still there are still files present and you need to run the second method below.
Method 2: To automatically remove the windows tool virus.
Follow step a) above to stop this malware from running by starting your PC in safe mode. Open internet explorer or the browser you use and download a system and registry scanner. Run a full system scan. This will run through all the above steps for you automatically and in minutes and remove the windows tool virus for good.
Article Source: http://EzineArticles.com/?expert=James_Randell
No comments:
Post a Comment