• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 465
  • Last Modified:

How to remove Security Protection

This computer is infected with a Rogue named "Security Proytection." I ran Rogue Killer and it picked it up and stopped it, I thought. When I went to run Malwarebytes, it starts the scan then shuts down after less than a minute. I tried both in safe mode and regular. The file association with the shortcut seems to be broken after that brief run. I went to properties>find target and tried to run from there , bubt no joy. I installed HiJackThis; it scans but the logfile ( or report) disapears immmediately after running.
  • 5
  • 3
1 Solution
Follow this guide from Bleeping computer for its removal.
If executables won't run use the .exes fixes listed in this article.

If no joy, use inherit.exe to make the program runs.
Download inherit.exe by sUBs.
Drag the program's executable file into the inherit.exe and wait for it to say OK.

"I installed HiJackThis; it scans but the logfile ( or report) disapears immmediately after running."
Use the above-mentioned inherit.exe(not with Hijackthis), and also use ComboFix or Kaspersky's Removal tool.
Please download ComboFix by sUBs:

STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply.
Do not mouse-click combofix's window while it is running. That may cause it to stall.

Kaspersky Removal tool.
atf3docAuthor Commented:
rpggamergirl, I knew you would come through for me on this. I am in the process of runnig your suggested programs now. Will update results as they happen. Thanks
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

atf3docAuthor Commented:
Kapersky Removal Tool was the only one I could get to run. It detected three and said they would be removed on restart. After restarting, I have nothing except desktop wallpaper, no icons, no start menu and no ability to do anything. I manually shut it down and restarted in safe mode...same deal ...nothing. I am going to try a repair install and work from there.
Even with inherit.exe no programs was able to run but Kaspersky's removal tool?
The removal tool as it seems wasn't able to successfully removed the infection or wasn't successfully disinfect explorer.exe.

The repair install should fix the damaged explorer.exe then you could try other tools to make sure the system is clean(using inherit.exe to make them run if you didn't yet), or try using them in safe mode and see if they run.
atf3docAuthor Commented:
The more I work on this the worse it gets. During the repair install I am now getting BSOD at about 37 minutes into "Installing Windows" I have gotten two BSOD's:
Stop:0x0000000A (0x54890472, 0x00000002, 0x00000000, 0x8050F911)

Stop:0x000000C2 (0x00000007,0x00000CD4,0x1207003,0x8687A508)

I removed the video card and set video to integrated

Stop: 0x000000C2 (0x00000007,0x00-0000CD4, 0x86677DC0, 0x86686768)

I couldn't find these error codes to enlighten me as to the problem. I am now running CHKDSK from Recovery Console. Then will try agin to do a repair install. If no joy, I will pull the HDD and copy data
then do a clean install. Don't know if I have multiple problems or if Security Protection is a mean actor.

By the way I had tried the Bleeping Computer method of removal before you mentioned it. No joy.
Thanks for your help and support. I really need it on this one.
atf3docAuthor Commented:
I also ran a bootable MEMtest. Memory passed. I reseated both modules.
atf3docAuthor Commented:
CHKDSK said it found and fixed one or more errors on the volume. It has gone to 29 minutes now on the repair install "Installing Windows" Keep your fingers crossed.I am going to run Hard drive diagnostics also when we get booted back up.18 minutes to go. Hooray!
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now