Monday, December 29, 2014

windows - How can I uninstall K9 Web Protection without K9 admin password?


I'm trying to uninstall K9 from a Windows Vista 32-bit computer, and I do not have the K9 admin password or know the K9 admin email. I do however have administrative access to the computer. I also can install Cygwin or boot to a live USB if that would help. Is there any way to uninstall this program without the password and email information?


Edit: I forgot to mention that I tried several methods to uninstall, and so far none have worked:



  • I tried the usual uninstall method from control panel.

  • I tried reinstalling K9 and then trying to uninstall.

  • I tried disabling K9 from msconfig.

  • I tried installing my own license file like it says in this link (K9 doesn't allow you to download license files anymore).

  • I tried deleting C:\Windows\System32\drivers\bckd.sys and restarting the computer.


Edit 2: I figured it out and the answer is below, with one caveat: it requires paid software (albeit a free trial of paid software if you have never used it before). I wish I could give an answer using free software, but this is the only solution that worked so far. If anyone has a method that is simpler or doesn't require the use of paid software, feel free to post it, and I'll try it out and select it as the answer if it works. and31415 has posted an answer which requires no extra (paid) software.


Answer



No third party software required. Tested with K9 Web Protection version 4.4.268 on Windows Vista SP2 (32-bit). Confirmed by @stiemannkj1 to be working on Windows 7. Should also work on Windows 8.x.



  1. Create a new text file. Copy and paste the following batch script code, then save:



    @echo off
    set keys=^
     "HKLM\SOFTWARE\Blue Coat Systems"^
     "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\k9filter.exe"^
     "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Blue Coat K9 Web Protection"^
     "HKLM\SYSTEM\CurrentControlSet\Services\bckd"^
     "HKLM\SYSTEM\CurrentControlSet\Services\bckwfs"
    REM remove registry keys
    for %%G in (%keys%) do reg delete "%%~G" /f >nul
    set folders=^
     "%programfiles%\Blue Coat K9 Web Protection"^
     "%programdata%\Microsoft\Windows\Start Menu\Programs\Blue Coat K9 Web Protection"
    REM remove folders
    for %%G in (%folders%) do rd /s /q "%%~G"
    set files=^
     "%windir%\System32\drivers\bckd.sys"
    REM remove files
    for %%G in (%files%) do del "%%~G"
    pause
    exit /b

  2. Make sure file extensions are shown and rename it to RemoveK9.cmd (or whatever you like, as long as it has the .cmd extension).


  3. Restart Windows in Safe Mode.


  4. Right-click the .cmd file and select Run as administrator from the context menu. Wait for the batch script to finish.


  5. Start regedit.exe and navigate to the following registry key:


    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BCKD

    Right-click the LEGACY_BCKD key and select Permissions from the context menu. Click Advanced and select the Owner tab. Then select Administrators from the owner list, tick the Replace owner on subcontainers and objects option, and then click OK. Then select Everyone and tick the Allow checkbox for the Full Control permission. Click OK, right-click the key and finally choose Delete.


  6. Restart Windows.



-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...