Disable Windows Error Reporting (WER) Service in Windows 7 & 8

A complete guide to disable the WER from of Windows 7& 8.x

Step 1

• Click on Start > Control Panel > Action Center > Change Action Center Settings.
• Click on the "Problem Reporting Settings".
• Select "Never Check for Solutions".
  
  

• Click on OK to validate
• Additionally : You can change this for all users as well by Clicking "Change report setting for all users".

Step 2

• Click on Start > Run > Type "services.msc"
• In the window that opens (Services), look for the following entry in the the right pane:
  • "Windows Error Reporting"
• Double-click on this entry and set the "Startup type" status as "Disabled".
  
  
  
  
• Click on OK to validate.

 Step 3 Double check this registry setting - EXHAUSTIVE

Best to do a search for Windows Error Reporting, and you find the key stems

• HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting
• HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Windows Error Reporting

Type "Regedit" and press "Enter."

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error Reporting" and the above keys. 

Right-click "Disabled" and change the value from "0" to "1".

Next Key

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error
Reporting/Consent"
       Set to 1            
             Consent\DefaultConsent REG_DWORD
Possible values: 
          1 - Always ask (default), 2 - Parameters only, 3 - Parameters and safe data, 4 - All data                
Next Key 

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error Reporting/DefaultOverrideBehavior"
       Set to 1
          Consent\DefaultOverrideBehavior
REG_DWORD
Possible values:
0 - Vertical consent will override the default consent (default)
1 - Default consent will override the application-specific consent

Press the "Windows" key and "R" key simultaneously.

All Values Registry Values here ....

http://msdn.microsoft.com/en-us/library/windows/desktop/bb513638(v=vs.85).aspx

 Step 4  Disable Task Scheduler for Error Reporting Service

• Open Task Scheduler and navigate to Task Scheduler (local) ->Microsoft->Windows->Windows Error Reporting
  
  
  
  
  Select on QueueReporting and Disable

• Step 5 Permanently Disable Windows Error Reporting Service

To permanently Disable Windows Error Reporting Service, delete all keys under this folder LocalDumps.

• 
  
• 
  
• 
  
• Step 6 Clean these directories out

C:\ProgramData\Microsoft\Windows\WER\ReportArchive

C:\ProgramData\Microsoft\Windows\WER\ReportQueue

C:\Windows\LiveKernelReports\WATCHDOG

Disable Windows Error Reporting (WER) Service in Windows 7+

A complete guide to disable the WER from of Windows 7& 8.x 

Step 1

• Click on Start > Control Panel > Action Center > Change Action Center Settings.
• Click on the "Problem Reporting Settings".
• Select "Never Check for Solutions".
  
  

• Click on OK to validate
• Additionally : You can change this for all users as well by Clicking "Change report setting for all users".

Step 2

• Click on Start > Run > Type "services.msc"
• In the window that opens (Services), look for the following entry in the the right pane:
  • "Windows Error Reporting"
• Double-click on this entry and set the "Startup type" status as "Disabled".
  
  
  
  
• Click on OK to validate.

 Step 3 Double check this registry setting - EXHAUSTIVE

Best to do a search for Windows Error Reporting, and you find the key stems

• HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting
• HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Windows Error Reporting

Type "Regedit" and press "Enter."

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error Reporting" and the above keys. 

Right-click "Disabled" and change the value from "0" to "1".

Next Key

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error
Reporting/Consent"
       Set to 1            
             Consent\DefaultConsent REG_DWORD
Possible values: 
          1 - Always ask (default), 2 - Parameters only, 3 - Parameters and safe data, 4 - All data                
Next Key 

Navigate to "Hkey_users\S-1-5-19\Software\Microsoft\Windows\Windows Error Reporting/DefaultOverrideBehavior"
       Set to 1
          Consent\DefaultOverrideBehavior
REG_DWORD
Possible values:
0 - Vertical consent will override the default consent (default)
1 - Default consent will override the application-specific consent

Press the "Windows" key and "R" key simultaneously.

All Values Registry Values here ....

http://msdn.microsoft.com/en-us/library/windows/desktop/bb513638(v=vs.85).aspx

 Step 4  Disable Task Scheduler for Error Reporting Service

• Open Task Scheduler and navigate to Task Scheduler (local) ->Microsoft->Windows->Windows Error Reporting
  
  
  
  
  Select on QueueReporting and Disable

• Step 5 Permanently Disable Windows Error Reporting Service

To permanently Disable Windows Error Reporting Service, delete all keys under this folder LocalDumps.

• 
  
• 
  
• 
  
• Step 6 Clean these directories out

C:\ProgramData\Microsoft\Windows\WER\ReportArchive

C:\ProgramData\Microsoft\Windows\WER\ReportQueue

C:\Windows\LiveKernelReports\WATCHDOG

Removing Malware, Conduit Search Engine, Perion, UniBlu DriverScanner 2014, Open Candy, BitTorrent toolbar, DivX Toolbar

STEP 1: Uninstall hidden software and the after that, use this AdwCleaner

To remove all the Conduit Search, Uniblue Software (embedded Conduit engine), Bittorrent Toolbar (Conduit) registry keys, DivX Toolbar (Conduit), Ask Toolbar,  Imgburn (Open Cola) files and folders from your computer, we will need to run a scan with the AdwCleaner and Junkware Removal Tool utilities.

Update May 18, 2017 new links

Run a computer scan with AdwCleaner 

The AdwCleaner utility will scan your computer for malicious files and registry keys, that may have been installed on your computer without your knowledge.

1. Run Bleeping Computer's Rkill . Do not reboot after. This kills background process that may hold files that need to being cleaned.
2. You can download AdwCleaner utility from the below link.
   ADWCLEANER DOWNLOAD LINK (purchased by Malwarebytes)
3. Before starting AdwCleaner, close all open programs and internet browsers, then double-click on the AdwCleaner icon.
   
   
   If Windows prompts you as to whether or not you wish to run AdwCleaner, please allow it to run.
4. When the AdwCleaner program will open, click on the Search button as shown below.
   
   
   The program will now start to search for malicious files that may be installed on your computer. When it has finished it will display a notepad screen that contains a log file of all the malicious extensions, files, and registry keys that have been detected. Unless you see a program name that you know should not be removed, please close the Notepad window and continue with the next step.
5. To remove the malicious Toolbar malicious files that were detected in the previous step, please click on the Delete button on the AdwCleaner screen.
   
   
   AdwCleaner will now prompt you to save any open files or data as the program will need to reboot the computer. Please do so and then click on the OK button.
6. AdwCleaner will now delete all detected adware from your computer. When it is done it will display an alert that explains what PUPs (Potentially Unwanted Programs) and Adware are. Please read through this information and then press the OK button. You will now be presented with an alert that states AdwCleaner needs to reboot your computer.
   
   Please click on the OK button to let AdwCleaner reboot your computer.

STEP 2: Remove hijacking software Conduit, Open Candy with Junkware Removal Tool

Junkware Removal Tool is a powerful utility, which will remove malicious virus from Internet Explorer, Firefox or Google Chrome.

Junkware Removal Tool has the ability to remove the following types of programs:

• Ask Toolbar
• Babylon
• Browser Manager
• Claro / iSearch
• Conduit
• Coupon Printer for Windows
• Crossrider
• Facemoods / Funmoods
• iLivid
• IncrediBar
• MyWebSearch
• Searchqu
• Web Assistant

1. Run Bleeping Computer's Rkill . Do not reboot after. This kills background process that may hold files that need to be cleaned. 
3. You can download the Junkware Removal Tool utility from the below link:
   JUNKWARE REMOVAL TOOL DOWNLOAD LINK (purchase by Malwarebytes)
4. Once Junkware Removal Tool has finished downloading, please double-click on the JRT.exe icon as seen below.
   
   
   If Windows prompts you as to whether or not you wish to run Junkware Removal Tool, please allow it to run.
5. Junkware Removal Tool will now start, and at the Command Prompt, you’ll need to press any key to perform a scan for the malicious files.
   
   
   Please be patient as this can take a while to complete (up to 10 minutes) depending on your system’s specifications.
6. When the scan Junkware Removal Tool will be completed, this utility will display a log with the malicious files and registry keys that were removed from your computer.
   
   
7. Run Malware Bytes ~ 10hrs
8. Run BleachBit ~10mins (replaces paid CCleaner).
9. Run HitMan Pro - download trial run - ~5hrs
10. Run F-Prot Antivirus - free trial ~ 10hrs
11. Run Microsoft Malicious Software Removal Tool  - ~10hrs
12. Run Windows Defender in Win 8+ or Windows Security Essentials for Win 7 or less.
13. Run free Kaspersky Security Scan get it here - ~10hrs
14. Run free Kaspersky Anti-Ransom-ware Tool get it here - ~ 15 mins
15. Run your Anti-Virus Solution in Deep Scan Mode - ~5hrs 
16. Done!