Overall Risk Level:
MessengerBlocker is a rogue security software that pretends to block pop-ups from messenger services. It can generate the said excessive pop-ups to convinced the user into buying the registered version to avoid it.
Other Alias: Adware.WindowsMessengerBlocker
Threat Level: Medium
Systems Affected: Windows – All
More Info: Messenger Blocker on SSR
How to Remove Messenger Blocker:
On this page is our suggested (by precisesecurity) removal procedure and Visitor's own suggestion. We cannot control and evaluate each suggested procedure so please use it at your own risks. If no suggestion is present to remove virus, spyware, adware and malware, you may try the following:- Scan Messenger Blocker with MalwareByte's Anti-Malware
- Remove Messenger Blocker with Standard Virus Scan
2 Responses for "Messenger Blocker"
1. Temporarily Disable System Restore (Windows Me/XP). [how to]
2. Update the virus definitions.
3. Uninstall the Adware program
a) Click Start > Settings > Control Panel or Start > Control Panel (this varies with the operating system).
b) In the Control Panel window, double-click Add/Remove Programs.
c) Click the Adware you want to remove.
d) Click Add/Remove, Change/Remove, or Remove (this varies with the operating system). Follow the prompts.
4. Reboot computer in SafeMode [how to]
5. Run a full system scan and clean/delete all infected file(s)
6. Delete/Modify any values added to the registry. [how to edit registry]
Navigate to and delete the following registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\”WindowsExplorer” = “C:\Program Files\Common Files\System\csrss.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\”WindowsFirewall” = “C:\Program Files\Common Files\System\lsass.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\SystemData: “C:\Program Files\MBlocker\MBlocker.exe -c”
Navigate to and delete the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6C09102B-BB86-11D1-A87F-FCA10FDB3241}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6C091031-BB86-11D1-A87F-FCA10FDB3241}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D2554782-90CF-4369-BAD8-4AC09E7D9E71}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7BC34A3-BA86-11CF-84B1-CBC2DA68BF6C}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{04B5CFA2-8FA7-11D2-8C74-F76767315531}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{04B5CFA3-8FA7-11D2-8C74-F76767315531}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0BBE8DBA-A4E1-11D2-8C74-880DF061F87B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0BBE8DBB-A4E1-11D2-8C74-880DF061F87B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3F4D6CFE-D7A1-11D1-A87F-E750C1983B5E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{3F4D6CFF-D7A1-11D1-A87F-E750C1983B5E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6A39DCBD-0943-11D2-A87F-C9202FD29174}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6A39DCBE-0943-11D2-A87F-C9202FD29174}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6C09102A-BB86-11D1-A87F-FCA10FDB3241}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6C09102D-BB86-11D1-A87F-FCA10FDB3241}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6C091030-BB86-11D1-A87F-FCA10FDB3241}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{9D99ECC5-3F68-4070-B72B-36849E81E7BE}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{ADFF7529-D31C-11D1-A87F-B73FA4FB5E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{ADFF752A-D31C-11D1-A87F-B73FA4FB5E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E7BC34A1-BA86-11CF-84B1-CBC2DA68BF6C}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E7BC34A2-BA86-11CF-84B1-CBC2DA68BF6C}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{EDB36137-BBCD-11D1-A87F-8F9B67DFAA49}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{EDB36138-BBCD-11D1-A87F-8F9B67DFAA49}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F6D2C2B6-D310-11D1-A87F-B73FA4FB5E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{F6D2C2B7-D310-11D1-A87F-B73FA4FB5E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{50CBA22D-9024-11D1-AD8F-8E94A5273767}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8B7D0977-232F-49ED-9739-65968DED3E43}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{E7BC34A0-BA86-11CF-84B1-CBC2DA68BF6C}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DevPowerTransImg.TransImg
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NTService.Control.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SMSender.MT
HKEY_LOCAL_MACHINE\SOFTWARE\ApiWin32
HKEY_LOCAL_MACHINE\SOFTWARE\MSolutions
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SMS32
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\SMS32
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SMS32
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Messenger Blocker
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P
Restore the following registry entry to their original value:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\”DisableTaskMgr” = “1″
Navigate to and delete only the value SMS32 from the following registry entry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\”Sources” = “[LIST OF SERVICES] SMS32″
7. Exit registry editor and restart the computer.
8. In order to make sure that threat is completely eliminated from your computer, carry out a full scan of your computer using AntiVirus and Antispyware Software. Another way to delete the virus using various Antivirus Program without the need to install can be done with Online Virus Scanner.
j’aimerais avoir des information de ce que ce mesenger blocker fait car sa fait 2 semaine que ceci apparait a tout les 5 seconde dans mon écran et je ne suis pas capable de le télecharger,
Any Response?