The best "removal" is to replace Windows with a good installation of GNU/Linux or similar, but I'm usually asked not to do that. The off-the-shelf "adware removal" products of the English-speaking world are rarely helpful; I don't know if other Chinese products would help, but it's usually possible to do it manually as follows.
While well-behaved Windows programs usually have working uninstallers, advertisement software is usually designed to be difficult to remove. In some cases you can remove things as follows:
PerformerSoft PC Performer(I'm listing these because I have seen malware operating under those names; no offense meant to any bona-fide software that shares a name with it)
Run-like sections under Software / Microsoft / Windows / CurrentVersion, in both HKLM and HKCU (many people know about these); check for
If you are able to reboot into a Linux or other rescue system that has reliable read/write access to the filesystem then you can often simply remove the errant files (the list of running programs in Task Manager, invoked by pressing Ctrl-Shift-Escape, might help to identify them before the reboot as long as Task Manager itself has not been tampered with), but if rebooting to a rescue environment is not an option then deleting the files might not be possible as Windows (unlike Linux etc) does not allow deletions of programs that are still running. You could try to stop them from the Task Manager, but some might have "tricks" such as running several processes that automatically restart each other whenever one is terminated, and/or having a process run as a Windows system service set to restart on any failure. An example of a self-restarting service is
RsMgrSvc.exe, allegedly by an anti-virus company called Rising (瑞星 Ruìxīng) but one version of it launches persistent desktop tray advertisements and apparently has no uninstaller.
You could attempt to remove a program's method of "hooking in" to the system at startup (usually via the registry, although not always in the well-known
Run sections---there's a host of other places in the registry where startup programs can hide, some of which are listed above; you could try searching the registry for the executable's name, but note that any finds in
MSConfig merely indicate a previous failed attempt at removal using the msconfig tool). Any registry changes you make are likely to fail with aggressive software that monitors the registry for changes, undoing what you did; sometimes you can see the undo has taken place by pressing F5 to refresh the registry view after removing something.
Sometimes the only way to fix a running system, if rebooting into a suitable rescue system is not an option, is to exploit a race condition in the aggressive software's defence mechanisms. The easiest one to exploit is usually the very short delay before a process restarts itself after Task Manager has terminated it. If you manage to delete its program file in that brief moment, it will not restart (until some other process downloads it again---advertising that automatically re-downloads its missing parts is possible, so it can help to disconnect the network while working on this). After deleting all the files you can without terminating the processes, you can select the remaining files for deletion, then terminate whatever process is interfering, then quickly switch back and finish the delete before that process is re-launched. It might take several attempts for this to work, as it depends on the timing.
mbr.binin Syslinux and UNetbootin; you can install it on Linux or Mac systems with
dd conv=notrunc bs=440 count=1(supplying
of=as appropriate, likely
/dev/sd... for Linux and
/dev/disk... for Mac) and set it bootable with
mount -t ntfs(or a desktop icon) instead of just