1 of 9
Danger level 9
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Block exe files from running
  • Installs itself without permissions
  • Connects to the internet without permission
  • Slow internet connection
  • System crashes
  • Annoying Pop-up's
  • Slow Computer
Other mutations known as:
Windows Efficiency Manager , WindowsDebug system

Windows Debugsystem

Despite the best efforts of the online security industry to secure the exact opposite, consumers continue to fall for fake security tools such as Windows DebugSystem. This rogue antispyware application in particular originates from the same despicable family of rogues Windows Efficiency Manager and Windows System Optimizator, among many other well known and much hated rogues. Although Windows DebugSystem will do everything in its power to come across as a genuine and powerful security tool, it certainly does not own the abilities it proclaims to and cannot detect or destroy any threat or infection on the system.

Windows DebugSystem makes use of established forms of infection and will not rest until it succeeds in ripping users off. Trojans are used to root its infection into its host PC. These Trojans are distributed via fake online malware scanners and bundled security downloads and updates obtained from third party websites. Windows DebugSystem has also been known to make use of seditious browser hijackers who employ drive-by download tactics to infiltrate and root its malware and Trojans in users’ PCs.

Download Spyware Removal Tool to Remove* Windows Debugsystem
  • Quick & tested solution for Windows Debugsystem removal.
  • 100% Free Scan for Windows

Because its penetration of the system is virtually undetectable, the user will have a hard time to get rid of Windows DebugSystem without any help. This rogue will only reveal itself once it starts its attack on the PC, and this will happen through the user being spammed by various fake security alerts generated by Windows DebugSystem. These fake security notifications were developed with the express intention of creating panic in the user, trying to convince him that his system is indeed compromised. Do not believe anything Windows DebugSystem has to say, and be on the lookout for the following falsely generated security warnings:

Microsoft Security Essentials Alert
Potential Threat Details
Microsoft Security Essentials detected potential threats that might compromise your private or damage your computer. Your access to these items may be suspended until you take an action. Click \'show details\' to learn more.”

System component corrupted!
System reboot error has occurred due to lsass.exe system process failure.
This may be caused by severe malware infections.
Automatic restore of lsass.exe backup copy completed.
The correct system performance can not be resumed without eliminating the cause of lsass.exe corruption.

Windows Safety Protection will then prompt the PC owner to scan his system. This will start a fake scan of the PC which ultimately states that a particular file is infected with Trojan.Horse.Win32.PAV.64.a. Windows Safety Protection then prompts the user to install Windows Safety Protection to remove the virus. The text of this prompt is:

Threat prevention solution found
Security system analysis has revealed critical file system vulnerability caused by severe malware attacks.
Risk of system files infection:
The detected vulnerability may result in unauthorized access to private information and hard drive data with a seriuos possibility of irreversible data loss and unstable PC performance. To remove the malware please run a full system scan. Press \'OK\' to install the software necessary to initiate system files check. To complete the installation process please reboot your computer.

Name: firefox.exe
Name: c:\\program files\\firefox\\firefox.exe
Application that seems to be a key-logger is detected. System information security is at risk. It is recommended to enable the security mode and run total System scanning.

You simply cannot believe these fake security notifications, as they were designed to be misleading. Users who did not manage to erase Windows DebugSystem from their systems on time complained about being denied access to their Desktops as well as the inability to connect to the Internet. There does seem to be some hope, follow these instructions to regain access to your Desktop and reestablish your internet connection:

1. Reboot your system. You will find the Windows DebugSystem startup screen blocking access to your Desktop. Click the “OK” button to make it go away. The malware will start a fake system scan.
2. Wait until the scan is done. Once the scan is finished you will see another fake security notice. Click “OK” one more time.
3. Make the notification go away by clicking on the red “X” at the right top of it.
4. It should now disappear and you will be able to access your desktop again.

You will only be able to successfully regain control of your PC once you permanently erase Windows DebugSystem from the system. This will best be achieved by making use of the removal power of a genuine security tool which will destroy Windows DebugSystem for good.

Download Spyware Removal Tool to Remove* Windows Debugsystem
  • Quick & tested solution for Windows Debugsystem removal.
  • 100% Free Scan for Windows

How to manually remove Windows Debugsystem

Files associated with Windows Debugsystem infection:


Windows Debugsystem processes to kill:


Remove Windows Debugsystem registry entries:

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell “%AppData%\[random].exe”

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.