Fake anti spy where! Need help removing.

System restore puts your pc back to the state it was before the infection, but as you said, weird things can become of it. Thats why I really don't recommend it, only as a last resort when nothing else works.

And the reason why I said you technically could still be infected is that once malware is on your system, it can hide in the system restore files so if you do a system restore you still could be infected. If a system restore is done, then you still need to scan your system for malware. System restore has a 50/50 chance of working correctly to restore your pc to a good state.
 
johnb35 said:
...once malware is on your system, it can hide in the system restore files so if you do a system restore you still could be infected...
Click to expand...

Interesting. I wonder how they do that...

My thought is that whoever is writing viruses that have the ability to do this must be pretty technically savvy and know a great deal about how Windows works.

Anyway, thanks for the reply.
 
When a fake anti-virus installed on my old laptop once, I removed it manually by editing the registry. I had Avast as well, but for some reason it wouldn't detect it. Now, the type of fake anti-virus that installed on my machine was similar to yours, the only difference being that every time I opened a browser it would redirect me to the fake anti-virus site and that I couldn't access the task manager.

This is my suggestion. If you know the name of the .exe that installed, I would say search up the entire program's name on the Internet. There should be steps to removing it successfully by editing the registry, especially since now you reinstalled Windows. If you are going to do this, launch Windows in safe mode. My only advice would be to be careful with what you edit in the registry.
 
computer said:
When a fake anti-virus installed on my old laptop once, I removed it manually by editing the registry. I had Avast as well, but for some reason it wouldn't detect it. Now, the type of fake anti-virus that installed on my machine was similar to yours, the only difference being that every time I opened a browser it would redirect me to the fake anti-virus site and that I couldn't access the task manager.

This is my suggestion. If you know the name of the .exe that installed, I would say search up the entire program's name on the Internet. There should be steps to removing it successfully by editing the registry, especially since now you reinstalled Windows. If you are going to do this, launch Windows in safe mode. My only advice would be to be careful with what you edit in the registry.
Click to expand...

Only about half the malware files will be in the registry, the rest will be actually be in the system or users files. So manually deleting entries in the registry is not a good idea. Thats why we use programs that are made to specifically find and delete the latest malware out there.
 
You must log in or register to reply here.
Back
Top