In Internet Explorer:
From your desktop, click to open up Internet Explorer.
Click on the "Tools" button on the menu bar. This option is in the upper left-hand corner of the web browser, directly underneath the address bar that displays the URL of the current webpage. From the drop-down menu that appears, click on the last option available, "Internet Options."
Click the button labeled "Delete" under the heading "Browsing history." In the window that pops up, click to check the box next to "Passwords." Proceed to click the button at the bottom of the window marked "Delete." Upon clicking this button, a window will pop up showing the browser's progress in deleting the saved passwords, and close automatically once complete.
In Mozilla Firefox:
From your desktop, click to open up Mozilla Firefox .
Click on the "Tools" button that appears on the menu bar located directly above the address bar. From the drop-down menu, click on the option labeled "Clear recent history."
Click on the button to the left of "Details." In the menu that appears, check the "Cache" and "Active Logins" boxes and click "Clear now." Firefox will clear the cache and close the window.
In Google Chrome:
From your desktop, click to open up Google Chrome.
Click the menu bar labeled "Tools" in the upper right hand corner of the Google Chrome browser. From the drop down menu, select the "Options" button, and click on the tab labeled "Personal Stuff." In this tab, click "Clear browsing data" from the list of options.
On the "Clear browsing data" screen, click on the "Passwords" box to select it. Click the button labeled "Clear Browsing Data."
Showing posts with label Desktop Security 2010. Show all posts
Showing posts with label Desktop Security 2010. Show all posts
Friday, June 4, 2010
Saturday, May 22, 2010
How to remove Desktop Security 2010?
This rogue software blocks installation and execution of other software to protect itself. Preferably use another computer to download the following free tools to a removable drive:
• HijackThis Executable
• MalwareBytes’s Anti-Malware (mbam-setup.exe Direct download)
• Start HijackThis by clicking on HijackThis.exe.
• Click on Do a system scan only. In the results of the HijackThis scan, carefully select only the following entries by placing a checkmark in the box provided:
1. R1 -- HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555;
2. O4 -- HKLM\..\Run: [Desktop Security 2010] C:\Program Files\Desktop Security 2010\Desktop Security 2010.exe
3. O4 -- HKLM\..\Run: [SecurityCenter] C:\WINDOWS\system32\p9tdwlvru6ww.exe
4. O4 -- HKLM\..\Run: [p9tdwlvru6ww] C:\WINDOWS\system32\p9tdwlvru6ww.exe
The file name in the last two entries above are made up of random 12 digit alpha-numeric characters.
• Click Fix Checked. Choose Yes to confirm your selection. Close HijackThis. This would have killed the Desktop Security 2010 executable and the “fake task manager”.
• Right-click on the Taskbar and open Task Manager, select Securitycenter.exe and click End Process. Confirm Yes in the Task Manager Warning. Now you are likely to have a “scare message free” desktop.
• Install MalwareBytes’s Anti-Malware (mbam-setup.exe Direct download), Open and choose a full-scan. Once the scan is completed, click “Show results“, confirm that all instances of the rogue security software are check-marked and then click “Remove Selected” to delete them. If prompted restart immediately to complete the removal process.
• Turn System Restore off and on
• HijackThis Executable
• MalwareBytes’s Anti-Malware (mbam-setup.exe Direct download)
• Start HijackThis by clicking on HijackThis.exe.
• Click on Do a system scan only. In the results of the HijackThis scan, carefully select only the following entries by placing a checkmark in the box provided:
1. R1 -- HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555;
2. O4 -- HKLM\..\Run: [Desktop Security 2010] C:\Program Files\Desktop Security 2010\Desktop Security 2010.exe
3. O4 -- HKLM\..\Run: [SecurityCenter] C:\WINDOWS\system32\p9tdwlvru6ww.exe
4. O4 -- HKLM\..\Run: [p9tdwlvru6ww] C:\WINDOWS\system32\p9tdwlvru6ww.exe
The file name in the last two entries above are made up of random 12 digit alpha-numeric characters.
• Click Fix Checked. Choose Yes to confirm your selection. Close HijackThis. This would have killed the Desktop Security 2010 executable and the “fake task manager”.
• Right-click on the Taskbar and open Task Manager, select Securitycenter.exe and click End Process. Confirm Yes in the Task Manager Warning. Now you are likely to have a “scare message free” desktop.
• Install MalwareBytes’s Anti-Malware (mbam-setup.exe Direct download), Open and choose a full-scan. Once the scan is completed, click “Show results“, confirm that all instances of the rogue security software are check-marked and then click “Remove Selected” to delete them. If prompted restart immediately to complete the removal process.
• Turn System Restore off and on
