It is easy to fix this problem, this is just another misleading (rouge) anti-spyware program.
- You need a tool to remove this program. Actually, you can use registry editor to delete but it is not advisable if you are not familiar on how to use. I suggest that you download one file from Trend Micro website. Here's the link: http://free.antivirus.com/hijackthis/. Download the executable (not the installer) so you can run this tool right away. You need to use a working computer to download the program and save to a USB drive. Then copy the executable program to the infected computer. For example, copy the executable program (HijackThis.exe) to your c:\temp folder. If you don't have a temp, create the folder.
- Restart your computer. After the BIOS message, click F8 function key to boot in Safe Mode.
- Login to your workstation, go to the c:\temp folder and double click HijackThis.exe file. In open file - Security Warning, click Run to continue.
- Click "Do a system scan and save a log file."
- You will see the Trend Micro HijackThis report from R1, R0, 01, 04, etc.
- You need to find the System Tool random executable file, should be something like this: O4 – HKCU\..\RunOnce: [{RANDOM}] C:\Documents and Settings\All Users\Application Data\{RANDOM}\{RANDOM}.exe
- Put a check, then click Fix checked. This program will clean your computer.
- Restart the computer.
Now you removed the System Tool (fake anti-virus tool), it's time for you to run a full scan of your computer. If you don't have a anti-virus program install, check the Microsoft Security Essential. This is free to all 
Windows operating system version except for Windows Server.If you need additional assistance, please leave us a comment or visit Whaddya.com to post your question.
References and Tools:
Comments
Post a Comment