Windows Secure Surfer is a fake anti-spyware application of FakeVimes family. We at FixPCYourself has classified it as a fake security program. Windows Secure Surfer has same GUI like its previous version Windows Be-on Guard Edition. Windows Secure Surfer pretend to be anti-spyware program, but in reality it Windows Secure Surfer does not have ability to remove any virus, Trojan or malware from your computer. Windows Secure Surfer Virus creates background task so every time system get rebooted it launches itself with fake scan and security warning stating your computer at high risk and you system is infected by various malware and viruses. After seeing those warning anyone would get scared and believes that your computer is compromised and your privacy is at risk. Out of those detect malware and other viruses by Windows Secure Surfer most of those files does not even exist. Once the free scan is completed by its trial version of Windows Secure Surfer will pursue you to buy its full-paid version of its affiliate software before it can remove all the malware and Trojans. Windows Secure Surfer is get installed via other Trojans, gaming software download, email attachment and other malware program. Most of rogue Anti-Spyware like Windows Secure Surfer are nearly impossible to remove manually by normal day to day user. To fix your pc yourself and remove infection program like Windows Secure Surfer simply follow these steps.


How to remove Windows Secure Surfer Steps :

Step 1:Print out these instructions as you will need to shutdown the computer in next step.

Step 2:Now power down the Windows Secure Surfer infected computer. And wait for 30 Seconds before you turn on

Step 3:Now please turn ON the computer and immediately keep hitting F8 until you see WINDOWS ADVANCED OPTIONS MENU as shown below.
Windows Secure Surfer - F8 Key

Step 4:In the WINDOWS ADVANCED OPTIONS MENU, go down to the SAFE MODE WITH NETWORKING using the arrow keys on the board. Then press ENTER on the keyboard. This will take your computer to Safe mode. Safe Mode will cause the display and desktop icons to appear changed. This is normal. No need to Panic as it is due to Windows Secure Surfer.
Windows Secure Surfer - Safe mode Option

Step 5:This, Windows Secure Surfer, infection may change computer windows settings to use a proxy server that will not allow you to browse any pages on the Internet with Internet Explorer. We will first need to fix this as we will need to download malware removal utilities. They are safe and very reputed in Computer Industry. Now hold down the WINDOWS key and then press the R key.
Windows Secure Surfer - Run command Prompt

Step 6:The RUN dialog box will appear. Type iexplore.exe In the RUN dialog and click OK button.
Windows Secure Surfer - Run command Prompt

Step 7:You will see Internet Explorer. On the top navigation click TOOLS then under the sub-menu of TOOLS choose INTERNET OPTIONS as shown below.
Windows Secure Surfer - IE Option

Step 8: Now find the CONNECTIONS tab within the INTERNET OPTIONS dialog box and click on it. Then click the LAN SETTINGS button.
Windows Secure Surfer - LAN settings

Step 9:If there is a check-mark in the box named “Use a proxy server for your LAN”, under the PROXY SERVER section, then uncheck the box. If there is not a check mark located in the box then you can skip this step and move on to next step.
Windows Secure Surfer - proxy

Step 10:Now hit the OK button to close the LOCAL AREA NETWORK dialog box. Then press the OK button to close the INTERNET OPTIONS dialog box.

Step 11Now we must end all the processes that belong to Windows Secure Surfer so that it does not interfere with your ability clear your computer. Inspector-[random char].exe and Protector-[ random char].exe are the processed that needs to be stopped. To do this we need to download Rkill, developed by Bleepingcomputer to help stop the computer process of Windows Secure Surfer. Now please hold down the WINDOWS key and the R key simultaneously to open RUN dialog box.
Windows Secure Surfer - Run command Prompt

Step 12Now type “iexplore.exe http://www.fixpcyourself.com/rkill.com” and hit the OK button.
Windows Secure Surfer - Rkill

Step 13:Save the Rkill.exe on your desktop. Double-click the Rkill icon and run Rkill.exe. You will see a black MS DOS dialog box. Now it will kill all the processes of Windows Secure Surfer. It will take several minute before a Notepad file containing log information on what Rkill found will open. You may review it and close notepad file.

Step 14:Now you are ready to removal all the infection related to Windows Secure Surfer. For the you need to Malwarebytes. Malwarebytes is a very popular malware and spyware removal application. Now please hold down the WINDOWS key and the R key simultaneously to open RUN dialog box. Type “iexplore.exe http://www.fixpcyourself.com/mbam.exe” and hit the OK button.
Windows Secure Surfer - Malwarebytes

Step 15:Save the mbam.exe on your desktop. Double-click the Malwarebytes icon and run mbam.exe. Now the SELECT SETUP LANGUAGE dialog box will appear. Select your preferred language and hit press OK button.
Windows Secure Surfer - Malwarebytes Language

Step 16:The Malwarebytes SETUP WIZARD will show blow screen Hit the NEXT button to continue.
Windows Secure Surfer - Malwarebytes Wizard

Step 17:Now the LICENSE AGREEMENT screen will appear as shown. Accept the agreement and hit NEXT button.
How to remove Windows Secure Surfer - Malwarebytes License Agreement

Step 18:Now the Information screen will appear. Click on next button and continue following the steps.
How to remove Windows Secure Surfer - Malwarebytes Information

Step 19:SELECT DESTINATION LOCATION screen will appear now. You can choose the location where Malwarebytes can be install. We recommend to choose the default location as shown then click NEXT button.
How to remove Windows Secure Surfer - Malwarebytes Install path

Step 20:Now the SELECT START MENU FOLDER screen will appear. Let the default as it is and click NEXT button.
How to remove Windows Secure Surfer - Malwarebytes Folder

Step 21:Now the SELECT ADDITIONAL TASKS screen will appear. If you want a Desktop Icon or Quick Launch icon then check appropriate boxes.
How to remove Windows Secure Surfer - shortcut

Step 22:READY TO INSTALL screen will come next. Hit the INSTALL button to install Malwarebytes.
Remove Windows Secure Surfer - Ready to Install

Step 23:In this step let the UPDATE and LAUNCH checked as it is to update the application with latest malware definition to capture all the malwares then click FINISH button.
How to remove Windows Secure Surfer - Updates

Step 24:Once update is done then Scanner screen will launch. Make sure to select PERFORM FULL SCAN is selected to clean up Windows Secure Surfer infection. Click on SCAN button to start the scan.
How to remove Windows Secure Surfer - full scan

Step 25:Now choose the local drives that you want to scan from the dialog box and click SCAN button.
How to remove Windows Secure Surfer - drive

Step 26:Be patient as the scan will take several minutes before it cleans up Windows Secure Surfer infection. Once the scan is finished, a message box saying the scan is complete will appear. Click OK button to close the box then click SHOW RESULTS button.
How to remove Windows Secure Surfer - drive

Step 27:From results dialog box choose REMOVE SELECTED button to remove all the infections found. Malwarebytes will also delete all of the files and registry keys affected by Windows Secure Surfer and add them to the quarantine.
Windows Secure Surfer - quarantine

Step 28:Malwarebytes may required you to reboot the PC to complete the removal of Windows Secure Surfer. After completion reboot your computer Malwarebytes will be relaunched, please follow the instructions on the screen and continue the removal process. Once everything is clean out a log will be open created by Malwarebytes. Please reviewed it and closed it. Now your computer should be free of Windows Secure Surfer. Enjoy.
Windows Secure Surfer - Complete

Technical Details of Windows Secure Surfer files :
You need to delete following Windows Secure Surfer files:

%UserProfile%\Desktop\Windows Secure Surfer.lnk
%AllUsersProfile%\Start Menu\Programs\Windows Secure Surfer.lnk
%AppData%\Protector-[ Random].exe
%AppData%\NPSWF32.dll
%Appdata%\result.db
%AppData%\Inspector-[Random].exe

Also please delete Windows Secure Surfer registry file:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avp32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zapsetup3001.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings “ID” = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableRegedit’= 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings ‘WarnOnHTTPSToHTTPRedirect’ = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashDisp.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\divx.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ERROR_PAGE_BYPASS_ZONE_CHECK_FOR_HTTPS_KB954312
Options\platin.exeHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableRegistryTools’ = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windows Secure Surfer
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tapinstall.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Windows Secure Surfer
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mostat.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avpcc.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ‘Inspector’
HKEY_CURRENT_USER\Software\Windows Secure Surfer
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableTaskMgr’ = 0

Windows Secure Surfer Symptoms:

Windows Secure Surfer causes dysfunctions of system like Infection Alert Messages.
Some unknown process like inspector.exe and protector.exe in the task manager
Inability launch browser and redirect to payment page of Windows Secure Surfer site.
Slower PC performance PC due infection of Windows Secure Surfer.
Instability of PC caused by Windows Secure Surfer and background processes.

7 Thoughts on “How to remove Windows Secure Surfer Virus

  1. Craig on June 20, 2012 at 4:54 am said:

    Nice post at How to remove Windows Secure Surfer Virus – FixPCYourself. I was checking continuously this blog and I’m impressed! Very helpful info specially the last part :) I care for such information a lot. I was seeking this particular information for a very long time. Thank you and best of luck. -Craig

  2. Fluretala on June 20, 2012 at 2:09 am said:

    Thanks for doing this website. I had no clue of how to get rid of virus and found your site which made my life easier and save me headache.

  3. Abbey on June 3, 2012 at 6:09 am said:

    This is the straight How to remove Windows Secure Surfer Virus – FixPCYourself diary for anyone. Thanks for this great guide! I manage to get infected when I tried to watch a video online! Thanks again!

  4. Hello there, You’ve done an incredible job. I’ll certainly digg it and personally recommend to my friends. I’m confident they will be benefited from this site.

  5. Louis Vuitton on May 30, 2012 at 3:34 am said:

    Good stuff. I will check this site again if encounter such issues like this.

  6. Leone Siciliani on May 21, 2012 at 9:46 pm said:

    Thanks for providing such valuable information. This has help me remove my virus issue and save me a lot of money.

  7. Peter on May 16, 2012 at 3:32 am said:

    wow this guide really helped alot its great that some people will help others like me which have no understandings of computers but you taught me well and now i can totally secure ;).

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Current ye@r *

Post Navigation

  • Facebook
  • Google+