MS Removal Tool

Posted on 2011-04-22
Last Modified: 2013-11-22
I have been attempting to remove this MS Removal Tool disaster.
I have done the following:
Run Malwarebytes anti-malware - to no avail
I have run this removed a couple of fileds but not the correct ones.
I cannot accesss my ESET antiq virus

I believe thekey file is

I have Windows 7 OS Home Edition and cannot get into ProgramData to delete this file.

Does anyone know a simple and effective way of getting rid of this.

I am not good enough to go into Registry files etc.
Question by:digisel
    LVL 14

    Assisted Solution

    Click on the Start/Windows button
    Enter "Folder Options" into the box and hit enter
    Click on the "View" tab
    Put a dot in "Show hidden files, folder, and drives"
    Click Apply

    Open explorer and go to the directory to delete.

    Regedit is not to complicated.  Let me know if you want to delete it there also.
    LVL 38

    Accepted Solution

    You can use the tools shown in this step-by-step set of instructions:

    Please read through both of these EE Articles for more information: (Stop-the-Bleeding-First-Aid-for-Malware) (Basic Malware Troubleshooting)

    Author Comment

    To bmsjeff
    I have looked in the directory and the 04-HKCU edtc. RuncOnce file is not there

    To Younghv: I had already followed the steps of bleepingcomputer to no avail.   I have repeated them  And also managed to download the latest version of malbytes which I ran - to no avail

    I also ran ESET in Safemoade - it found only one suspect file and it did not apply to this problem
    The MS Removal Tool probl;em remains.

    Any other thoughts or actions please

    Author Comment

    P.S. I shall also be following the links suggested by Younghx and acting accordingly.
    If you have any other suggestions they will be most welcome
    LVL 14

    Expert Comment

    This file will change.  Run Malwarebytes again. Make sure you update it first.  See what the name of the new file is and delete it.
    LVL 47

    Expert Comment

    If the problem persists:

    Try running unhide.exe to remove hidden flags.
    Download and run Unhide.exe to remove the hidden flags on files and folders.

    If needed you can download ComboFix and if it doesn't delete it on its first run we can delete it using its script function.

    1.  Please download ComboFix by sUBs:

    STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
    Double click combofix.exe & follow the prompts.
    When finished, it will produce a log. Please save that log and attach it in your next reply.
    Do not mouse-click combofix's window while it is running. That may cause it to stall.

    ComboFix tutorial:

    Author Closing Comment

    Thanks for your time and trouble.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Suggested Solutions

    The intent of this Article is to provide the basic First Aid steps for working through most malware infections. The target audience includes experienced IT professionals and the casual user who just wants to make the infection go away. **********…
    By the time you finish reading this article, you may have already lost all your money because you don't know the simple steps to securing your BitCoin wallet. BitCoin is an incredible invention. It is a decentralized currency system, which is the…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now