System Security Virus Removal

by Rod Dunne on November 1, 2010

in Articles, Registry Cleaners Articles, Tips and Tools, Security

System Security Virus Removal Using Manual And Automated Approaches To Removing This Malware Using Software.
  • Share
  • Share

The System Security virus is a particularly malicious malware application due to the fact that it can stop you running your PC maintenance software and anti-virus tools. In this article, we’ll go through the three approaches to removing these types of bugs.

Background

Even if you have the best Internet security firewall installed along with virus detection tools, you may still find some viruses can get onto your PC just by browsing the web.

The system security virus can be downloaded from the web or via e-mails and even copied from PC to PC (transmitted by USB Flash drives). At will attempt to force you into purchasing a fake anti-virus application by not allowing you to start up applications or the task manager.

The key to getting rid of this bug is using Windows in safe mode. This can be accessed by hitting the F8 key as Windows boots and will start the operating system with a reduced number of services (i.e. the virus will be excluded from initializing).

Automated System Security virus removal

The standard approach to computer Internet security virus removal is to restart the computer in safe mode and then run your anti-virus/malware removal tools.

If you do not have a program installed then you could try using a computer repair tool which can rectify virus damage to the registry and operating system files. It comes with 60 day money back guarantee and can be run as a free trial scan in order to check to see that it identifies that the virus is present on your PC.

Alternatively, you could install and run malware removal tools such as Malware Removal BOT and Malware BOT which directly target malicious programs/viruses.

Manual System Security virus removal

Doing a System Security virus removal manually is not for the fainthearted but is included here for the sake of completeness. Note however that these malware viruses can change over time so directory locations/key addresses may have changed depending on the iteration of the virus.

  1. Reboot the PC in safe mode.
  2. Start up the registry editor (regedit) and remove the keys relating to the System Security virus which are labels HKEY_CURRENT_USERSoftwareSystem Security and HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstallSystem Security.
  3. Start-up Windows Explorer and locate and delete the folders C:Program FilesSystem Security and C:Documents and SettingsAll UsersApplication Data{random number}{random and  number}.exe as these contain the application files.
  4. Start up the task manager and close down the executable files {random number}.exe and SystemSecurity.exe. These may not actually be running in safe mode so this step can be skipped.
  5. Start up the configuration utility (msconfig) and go to the Startup tab to disable the executables listed in the previous step, so that they are no longer initialized as Windows is booting up.
  6. Reboot the PC in regular mode.

Using System Restore for computer internet security virus repairs

One additional approach to doing a system security virus removal is to resort to using the System Restore application (accessories/system tools) when the PC is in safe mode.

This Windows utility keeps snapshots of critical operating system programs and files which can be rolled back to earlier working versions when they become faulty.

Launch the System Restore utility unpick by the dates from before the virus appeared to reinstate operating system files. It will not however make any attempt to remove the virus application files (this can be done manually or by using a malware removal program after the restoration occurs).

Previous post:

Next post: