- slide 1 of 4
Rogue Program: Internet Security 2010
Internet Security 2010 is a rogue application that pretends to be a malware scanner and remover. It will display a pop-up notification in the taskbar warning that the computer is infected with Trojans, worms and other types of malware. The rogue program Internet Security 2010 is a trial version and usually installed in a computer via malware or a rogue website distributor. Unsuspecting users will then enter their personal information and credit card number onto a website that is not legitimate. You should not buy or pay for Internet Security 2010 but instead remove it using the tools in this article.
- slide 2 of 4
How to Get Rid of Internet Security 2010
Removing a scareware application is easy if you are using a trustworthy and legitimate anti-virus and anti-malware program. You can use anautomatic or manual removal method to get rid of Internet Security 2010.
Ad-Aware, EmsiSoft Anti-Malware, Malwarebytes, Spybot - Search & Destroy, SUPERAntiSpyware and Windows Defender are free anti-malware software that can detect and remove many different rogue software packages, including Internet Security 2010.
In the above image, you will see Malwarebytes' Anti-Malware, which can be used to remove Internet Security 2010. It only failed to remove the shortcut of the rogue program that is located on the desktop. You only need to delete this non-working shortcut since it's only a remnant. The images below shows Spybot - Search & Destroy, which is quite good at removing any items added by Internet Security 2010.
Windows Defender, Ad-Aware, SUPERAntiSpyware and EmsiSoft will also detect and remove Internet Security 2010 from Windows. If you can't install or run any anti-virus or anti-malware program, you should run Rkill before downloading, installing and using a legitimate scanner.
- slide 3 of 4
Manual Removal of Internet Security 2010
To get rid of Internet Security 2010 using the manual method, you should find the following files, folders and registry entries added by Internet Security 2010:
First locate winhelper86.dll in c:\windows\system32 folder. If found, use the command prompt to unregister the .dll file. If not found, ensure that hidden files and folders is Windows is set to enable. If the said .dll file is not found, you are lucky because this variant of Internet Security 2010 has changed what it installed on the computer.
Open the Task Manager or Process Explorer to end the running process by Internet Security 2010. You should see IS2010.exe as a running process. Select the process to end the task. Other processes that are related or may appear in your computer are:
Next, locate the following files and folders then delete them: Note that you need to locate the folder under your user account name and the characters after IS2010.EXE and SETUPIS2010.EXE in the Prefetch directory in Windows may differ from yours.
c:\Documents and Settings\Donna\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Security 2010.lnk
c:\Documents and Settings\Donna\Desktop\Internet Security 2010.lnk
c:\Documents and Settings\Donna\Start Menu\Internet Security 2010.lnk
c:\Program Files\InternetSecurity2010\IS2010.exe (Delete the Internet Security 2010 folder so that IS2010.exe is also deleted)
Proceed by opening the Registry Editor in Windows by typing regedit.exe into run command, then navigate to the following registry keys and delete them, if found:
Reboot the computer after doing the above steps.
- slide 4 of 4
Always use an up-to-date anti-virus and anti-malware scanner and regularly run a system scan. The rogue Internet Security 2010 is also known to install via cracked programs that are bundled with malware. Do not download software using illegal method e.g. using P2P network because most files in these networks are infected with malware.