Skip navigation

(Okay, actually System Security 2009 is a Rogue Security Software as stated in several websites around the net.)

You’re probably reading this because your computer got infected by it or just got curious what it is or whatever.

So how do you remove this frickin’ “virus program” from your PC? It’s easy… you can just search around online… follow their advise and download some free anti-spyware software and update your anti-virus everyday etc… like i did.

“But the question is… Where does System Security 2009 (Rogue Security Software) come from?”

How does one get these annoying online pests? Most websites only talk about how to remove it because, of course, that’s the most important thing to solve your current problem/s. But how will you go about preventing it from ever affecting your computer (again)?

Only a few websites say where it probably comes from: 
(a) it may have come from downloading a song, video, codec, free software etc. from P2P Networks or malicious websites, or
(b) it just pops up in your computer out of “nowhere”,
(c) or you’ve used an infected USB drive (or mp3 players, etc.) and didn’t know it had this “malicious program virus” somewhere in it.

With regards to protecting your computer from malicious websites, I don’t know if setting 3 different users in a PC and only using 1 of them can really help prevent malware problems but you can click and read the article link above to see/try if it’s ok or not. I have no idea if it’s easy, feasible and useful in the long run.

Now i’ll try and help anyone who might also be experiencing problems from this “virus”. You may click the links in this article for more information on whatever i’m talking about. =)

“How do i avoid getting this type of “virus”?”

From what i’ve experienced and also gathered around the net… these may be helpful in preventing trojan and malicious program infections:
1. Use a firewall.
2. Install a genuine and effective anti-virus program. Don’t rely on illegal/downloaded/cracked anti-virus programs.
3. Install FREE anti-malware/spyware programs.
4. Update 2 & 3 regularly including your genuine Windows OS. If you don’t use a genuine Windows OS then 2 & 3 may suffice i guess.

And lastly, be aware of what you click while browsing the internet. Stop and read before you click. If your anti-virus and anti-malware and Windows OS is working perfectly, and something else pops up in your screen telling you you’ve got infected etc then that’s not to be trusted and is certainly a virus. Check for wrong spellings/grammars to be sure too.

If you’re not downloading anything, never click the OK button of these malicious pop ups. Always click the Cancel button of untrusted pop ups.

“So anyway how do you remove/get rid of this System Security 2009 program that seems to have installed itself in the PC?”

Part I:
1. Reboot/Restart your infected PC after disabling your (local) network connection. Also press F8 immediately upon seeing the screen (whatever the stuff it initially runs after you press the power button of your PC) and select to run windows from your hard drive.
2. BE QUICK. Once windows has loaded and you already see your desktop (background) wallpaper, immediately press “alt + ctrl + del” to access the task manager.
3. Go to “Processes” tab between “Applications” and “Performance” (i use Windows XP). Click the “Image Name” to alphabetize the running processes in your PC (0-9, a-z). KEEP COOL AND FOCUS ON WHAT YOU ARE DOING
4. WAIT for an “all numeric program” to appear. This number seems to be unique to each computer. (Mine was 11315314.exe)
5. Immediately select it and press END PROCESS to stop the all numeric program from continuing itself.

Doing this should end the program and allow you to be “safe” from the “dreaded virus warning wallpaper” with wrong spellings.

Now you can relax…. a bit.

* * * * * * * * * * * * * * * * * * 

Part II: It’s pretty useful to have an uninfected PC or laptop around (with internet access) when your own computer is infected.

You can do any or all of the following (like i did) :
Use another computer to download these two programs –
> an anti-malware program (i use Ad-Aware from Lavasoft)
> a registry scanner (I use Uniblue Registry Booster and Glary Utilities) –
then copy the files to a USB flash drive or burn it in a CD (or if you can still use a floppy disk then put the files in one).
 Connect the flash drive or insert the CD with the downloaded programs and install the anti-malware and registry scanner on the infected PC and run them one at a time. Then follow the instructions to remove the “whatevers” that it finds, use fix or delete (except restart/reboot) depending on your program.
DO NOT REBOOT / RESTART before you have done what follows this sentence. Reboot/restart it after you’ve done everything.
Update your anti-virus if it doesn’t automatically do so upon stopping the malicious program. Do a Full Virus Scan of your infected PC then delete all the threats/results that it finds.
Delete the “all numeric malicious program’s” Registry Keys. Be careful to remove only the Registry Keys of the virus program. No need to back it up as these are “virus” registries.

Sample Registry Keys associated with System Security 2009:

* HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\systemsecurity2009
* HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\systemsecurity2009 displayicon
* HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\systemsecurity2009 displayname
* HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\systemsecurity2009 shortcutpath
* HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\systemsecurity2009 uninstallstring
* HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run “00308937″
* HKEY_LOCAL_MACHINE\Software0308937

Delete the System Security 2009 program folder. The folder name is the same as the all numeric program you have stopped earlier. It’s located inside the Documents and Settings folder. Make sure you set the “folder options” to show hidden files and folders. See below:

Files associated with System Security 2009:

* %Documents and Settings%\All Users\Application Data0308937\pc00308937ins
* %Documents and Settings%\All Users\Application Data03089370308937.exe
* %Documents and Settings%\All Users\Application Data0308937\config.udb
* %UserProfile%\Start Menu\Programs\System Security\System Security 2009 Support.lnk
* %UserProfile%\Start Menu\Programs\System Security\System Security 2009.lnk
* %UserProfile%\Desktop\System Security 2009.lnk

After doing all this, reboot/restart your computer.

All this should have removed System Security 2009 from your PC (like it has done in mine! Yey!). If it doesn’t… well then search the internet for more solutions =)

Advertisements

Reply here

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: