APCProtect is the latest rogue antivirus product in the wini family of rogue security sotware. It is generally pushed through sites that claim in order to view a video you need to install a video codec update or flash player update. This “update” is actually the loader for apcprotect. Once it is installed on your system you will find that it will nag you with many popup warnings about your system security. It will claim that you have viruses on your system and that the virus infection cannot be resolved until you purchase their software. Please avoid this scam and read on for how to remove APCProtect.
You may want to start by blocking the following domains to prevent further infections with this rogue:
The first place you should look to remove any piece of software is the control panel and go to add/remove programs. There you should first try to uninstall apcprotect. It may not work, but even if it does I suggest you move on to scan your computer again with malware removals such as superantispyware or malwarebytes antimalware and then scan your computer with an antivirus that is well respected such as mcafee, trendmicros online scanner, or avg/avira/avast.
You may find a download link to malwarebytes on my virus removal toolkit page. You may also wish to download process explorer as it may be useful later in the removal process. If you are unable to install malwarebytes you may try a few tricks to make the install work. 1) rename the installer from mbam-setup.exe to something like explorer.exe then retry the install, update and scan. 2) reboot into safe mode with networking and then retry the install (possibly also using trick 1). 3) follow the next step in a manual removal of apcprotect (which is terminating the running processes associated with the rogue) and then attempt the install again.
The next thing that you should do is to kill off the following processes as they are associated with this rogue. Launch the task manager to kill these off. If it is not possible to launch the task manager you may try 1) to copy the task manager program to the desktop and rename it (taskmgr.exe) to something else (firefox.exe) then try launching this newly renamed file and kill off the processes. 2) reboot into safe mode and see if the processes listed are running. If not, then go ahead and continue your removal without rebooting. 3) use process explorer instead of task manager to kill off the following processes:
One of the above files will be randomized on install to your system. That means that each system will likely have a different filename. Use what you see on your system plus the files and folders listed below (and what is in those folders on your system) to determine which files should be deleted.
The following files and folders should be deleted for a complete apcprotect removal:
%docs%All UsersStart MenuProgramsAPCProtect
%docs%All UsersStart MenuProgramsAPCProtect1 APCProtect.lnk
%docs%All UsersStart MenuProgramsAPCProtect2 Homepage.lnk
%docs%All UsersStart MenuProgramsAPCProtect3 Uninstall.lnk
After the above files are deleted you should have completed your manual removal of apcprotect. After this is done, go ahead and scan your computer with a malware removal tool such as superantispyware or malwarebytes antimalware. Then follow that scan up with a scan from a trusted antivirus such as avg/avira/avast or mcafee/norton/kaspersky or an online scan such as trendmicro’s housecall.
Related PostsRelated Posts
- How to Remove DefendAPC | DefendAPC Removal Guide DefendAPC is the latest variation on the Wini family of rogue antivirus. It is typically promoted via the use of trojans, malware and aggressive advertising. Once installed on the system it will run supposed scans of the system claiming that you have viruses on your system and that you have......
- How to Remove SecureWarrior | Secure Warrior Removal Guide Proving once again that it takes little creativity to put out rogue antivirus applications, the same group that was behind secure fighter (securefighter removal guide) have renamed their software again and one of the more recent versions is called securewarrior. Read on for a guide to the removal of securewarrior.......
- How to Remove SysDefence | Sysdefence Removal Guide Sysdefence is another rogue antivirus application from the wini family. This family of rogues has been quite prolific lately and typically is pushed on computer users through aggressive trojans that will appear on web pages masquerading as an update for flash player or a video codec for a video that......
- Get Your Money Questions Answered At Moolanomy Every has questions about money every now and again. I hoped people might make use of the contact button under my logo, but it seems most would rather have a root canal. That's fine. You still aren't going to get away without getting your questions answered. Moolanomy Answers is here......
- How to Remove Sliding Shower Doors If you are thinking about removing sliding shower doors for your next do-it-yourself project, you need to be informed on proper steps and technique. These steps will help to ensure that the door is removed properly, reducing the potential for any damage done to your ceiling, walls, and floor. Remove......
- World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
- How to Remove TrustSoldier | Trust Soldier Removal Guide
- How to Remove SiteAdware | SiteAdware Removal Guide
- How to Remove TRE Antivirus | TRE Antivirus Removal Guide
- How to Remove AntiTroy | AntiTroy Removal Guide
- How to Remove AntiAdd | AntiAdd Removal Guide