Jump to content

Welcome to MSFN Forum
Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more. This message will be removed once you have signed in.
Login to Account Create an Account



Photo

Out of the blue

- - - - -

  • Please log in to reply
2 replies to this topic

#1
Jeremy

Jeremy

    Casual Poster

  • Member
  • PipPipPipPipPipPipPipPipPip
  • 3,473 posts
  • Joined 24-June 04
  • OS:Windows 7 x64
  • Country: Country Flag

Removed.


Edited by Jeremy, 26 July 2013 - 08:43 AM.



How to remove advertisement from MSFN

#2
submix8c

submix8c

    Inconceivable!

  • Patrons
  • 4,386 posts
  • Joined 14-September 05
  • OS:none specified
  • Country: Country Flag
Yes, (brother's PC).

You'll need to get rid of it via Clean Install on another HDD then "MBAM" the offender before it can be used again. Lots of cleanup afterward even after being MBAM'ed.

The culprit was undoubtedly that file. Other files are just floating all over under wierd names and run again from the Registry ("runonce", part of the "cleanup").

BTW, you need LSPFIX because that's what's preventing the updates (I believe).

Since you already reloaded....

Someday the tyrants will be unthroned... Jason "Jay" Chasteen; RIP, bro!

Posted Image


#3
Tripredacus

Tripredacus

    K-Mart-ian Legend

  • Super Moderator
  • 9,972 posts
  • Joined 28-April 06
  • OS:Server 2012
  • Country: Country Flag

Donator

The "Dr. Guard" program was the key. This is from the new strain of fake antivirus/antimalware programs. Some are smart, some are stupid. Most work extremely well (what they were designed to do that is) on XP, but not so much on Vista or 7. #1 thing, these programs use registry settings to block your programs. The first variation would only use the Image Execution Options lists. Renaming the installer and EXE bypassed this. The second wave would terminate programs that tried to open/modify/delete the files it used/needed. This even included Notepad or in some cases even explorer.exe. In these cases, if renaming does not work, only WinPE or NTFSDOS are your saviours. Then after you remove "part" of the problem, can you run Gmer or MBAM (still renamed to be safe) to remove some more.

Yet you described something on 7, which so far I have not encountered a problem removing. Rest assured, these programs are a lot easier to remove from Vista or 7 than XP. Also, never forget about using cacls (or xcacls) to change the ACLs on files you need, or files you don't want running. Denying SYSTEM access to files is often a great way to disable these programs.
MSFN RULES | GimageX HTA for PE 3-5 | lol probloms
tpxmsfn1_zps393339c1.jpg




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users