Don't Copy From This Blog...
Internet Security 2010 is a fake (not legitimate) anti-spyware application. The rogue program is a clone of Advanced Virus Remover malaware. It comes from fake websites that pretend to be online anti-malware scanners or promote fake video/audio codecs. InternetSecurity 2010 is a typical scareware that acts like a legitimate anti-spyware scanner, but in reality it only imitates a system scan and displays false scan results.Moreover, the rogue program blocks anti-virus software and displays the followinf error message:
"Application cannot be executed. The file is infected. Please activate your antivirus software."
The file is not infected, it's just a fake error massage from Internet Security 2010. Of course, there are more fake error messages and security alerts that will be used to make tou think that your PC is actually infeceted. The bogus program displays a fake warning about video and audio codecs:
"Windows can`t play the folowing media formats: AVI;WMV;AVS;FLV;MKV;MOV;3GP;MP4;MPG;MPEG;MP3;AAC;WAV;WMA;CDA;FLAC;M4A;MID. Update your video and sound codec to resolve this issue."
What you should do if your computer is already infected? First of all, download a legitimate anti-spyware application and ru a system scan. You may use MalwareBytes Anti-malware, Spyware Doctor or SUPERAntispyware. However, if you can't run any of these programs, you have to end the main Internet Security 2010 infection process: IS2010.exe. And that's not all. Also look for these processes: winlogon86.exe and winupdate86.exe.
Most impornatly, removal these files:
- C:\Program Files\InternetSecurity2010\IS2010.exe
- C:\WINDOWS\system32\41.exe
- C:\WINDOWS\system32\winhelper86.dll
- C:\WINDOWS\system32\winlogon86.exe
- C:\WINDOWS\system32\winupdate86.exe
- HKEY_CURRENT_USER\Software\IS2010
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Internet Security 2010"
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "winupdate86.exe"
- C:\Program Files\InternetSecurity2010\
- C:\s
0 comments:
Post a Comment