One of the new ideas of malware creators is writing fake antiviruses. The user is prompted that his computer is infected, and an urgent need to install a miracle program to eliminate the threat. After installing this “product”, it becomes almost impossible to use the computer. In addition, the pseudo-antivirus tries to steal user data by offering to buy the full version using a credit card or other payment systems.
Instructions
Step 1
Disable the launch of the program that imitates the antivirus. Different behaviors are possible depending on which program hit your computer. Some simply interfere with the use of the PC, block the removal of themselves from the system, display a lot of "warnings". There are other options when it is not possible to remove a fake antivirus using built-in tools - a malicious program takes control of the system. Therefore, it is difficult to suggest a solution for all cases.
Step 2
First of all, click the "Start" button and select the "Run" menu. Enter the msconfig command and go to the Startup tab. Uncheck all unknown programs, especially those whose startup folder looks like "C: UsersUserNameDocuments and SettingsTemp" or something similar. This will disable programs from starting when the computer is turned on. Very often, this is enough to stop a malicious program from running. If this does not help, or the method is difficult, you can remove the fake antivirus using another method.
Step 3
Use a comprehensive utility to scan and disinfect your computer. Almost all manufacturers of reputable and well-known antivirus solutions release free programs for cleaning computers in automatic mode. For Russian-speaking users, the DrWeb CureIT utility will be the best choice! or its counterpart from Kaspersky Lab. Open your browser and follow the link https://www.freedrweb.com/cureit/?lng=ru to download CureIT. Or go to the Kaspersky website at https://www.kaspersky.com/antivirus-removal-tool, select the appropriate version in Russian and click the Download button.
Step 4
You can do this procedure on any computer - it will suit those users who cannot open the websites of antivirus companies because of the actions of a fake antivirus. Double-click the downloaded file on the "infected" computer. Press the "Start" button in the program menu and wait. By default, CureIt blocks the use of the computer during the scan - this is how the maximum efficiency is achieved. Verification takes a lot of time, even on powerful machines.
Step 5
After completing the initial check, you can run a deep scan of all partitions of the hard disk - at the user's request. But usually the first launch is enough to clean the malware.