Windows Custom Safety is a newly-released aiming to attack computers with Windows XP, Windows Vista and Windows 7 operating system. It is a fake antispyware designed to display fake error message and trick users into paying a useless product. Don’t be fooled by that. Take measure to remove it as quickly as you can.
Windows Custom Safety is a scam and it pretends to be an anti-malware product but actually without any functions that a typical antivirus program would perform. After it is downloaded, it uses common Windows Registry exploits to launch itself automatically, and afterward, will begin displaying various forms of fraudulent security messages. This rogue program will scan your computer automatically whenever you boot up your machine and you will get the same report claiming your computer is compromised by all kinds of infections. Just like a security suite, it allows users to perform quick scan, deep scan as well as custom scan. But none of them will benefit for your machine since this program is totally fraudulent. Windows Custom Safety contains no ability to remove viruses and protect you from malware or any of the other functions that it markets. It can only harm to your computer by creating fake error messages or infection warnings, forcing you to its malicious website constantly in order to request for you to activate ultimate protection and pay the so called full version. Just ignore all the false positives shown by this pest. The scammer just wants to bamboozle you into spending money on its full version before you realize that these warnings are fake. Once detect, you’d better uninstall it immediately before it attacks your files and blocks the internet or causes other fatal damages.
It can bypass the legit security tools and destroy your computer secretly.
It prevents you from opening some application because the files are corrupted.
It can make your browser redirected to all kinds of malicious websites.
It is able to allow remote hacker access the compromised system for illicit purpose.
1. Reboot your computer to safe mode with networking. As your computer restarts but before Windows launches, tap “F8” key constantly.
2. Show hidden files and folders.
Open Folder Options by clicking the Start button, clicking Control Panel, clicking Appearance and Personalization, and then clicking Folder Options.
Click the View tab.
Under Advanced settings, click Show hidden files and folders, uncheck Hide protected operating system files (Recommended) and then click OK.
3. Open Registry entries. Find out the malicious files and entries and then delete all.
Attention: Always be sure to back up your PC before making any changes.
a. Press the “Start” button and then choose the option “Run”. In the “Open” field, type “regedit” and click the “OK” button.
b. All malicious files and registry entries that should be deleted:
%AppData%\Protector-[RANDOM CHARACTERS].exe
%AppData%\Windows Custom Safety\ScanDisk_.exe
%AppData%\Microsoft\Internet Explorer\Quick Launch\Windows Custom Safety.lnk
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ERROR_PAGE_BYPASS_ZONE_CHECK_FOR_HTTPS_KB954312
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “WarnOnHTTPSToHTTPRedirect” = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableRegedit” = 0
Manual removal of Windows Custom Safety requires Expertise, Please take care before performing the steps. If you failed to remove this Malware, you are welcome to contact PC expert to fix the problem.
Published by on June 9, 2012 1:59 am, last updated on August 18, 2012 4:19 am
Leave a Reply
You must be logged in to post a comment.