A new breed of rogue program was observed to be propagating on the Internet as a fake Microsoft Security Essentials Alert. Unlike previous counterfeit programs, this one is promoting sets of programs together with other legitimate anti-virus applications. Unknown applications found are Windows Safety Protection, Windows Shield Protector and the most popular and widely-spread of them all is Think Point. Overall, there are 35 various security programs endorsed by Fake Microsoft Security Essentials Alert but any selection focuses on registration of only five programs, a clever trick to impose purchasing of selected fake security programs. For your information and guidelines, authentic Microsoft Security Essentials can be found here.
This kind of infection can be acquired when user have executed malicious file from contracted web site. Microsoft Security Essentials Alert also comes bundled with program that can be downloaded from file-sharing locations. Sometimes a link that directs to unsolicited website is being pass-through instant messaging programs. Once loaded on the computer, it begins to demonstrate powers by issuing fake alerts and virus detection messages. Shortly, it advises users to download counterfeit security programs which names were mentioned earlier. With these references, it is clear on how to avoid being infected with Fake Microsoft Security Essentials Alert. If it happens to overtake your computer, use only legitimate anti-malware application for automatic removal.
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
Technical Details and Additional Information:
After executing a file from fake online virus scanner, the first alert will be issued. This may lead to another window that endorses a group of antivirus program but only the five rogues have working links. The alert states:
Microsoft Security Essentials Alert
Potential threat details
Microsoft Security Essentials detected potential threats that might compromise your privacy or damage your computer. Your access to these items may be suspended until your action. Click ‘Show Details’ to learn more
As observed on compromised system, Fake Microsoft Security Essentials Alert will terminate selected applications, particularly when attempting to run them. The unwanted program will alert users that the executable file is infected via these warnings:
“The application taskmgr.exe was launched successfully but it was forced to shut down due to security reasons.
“This happened because the application was infected by a malicious program which might pose a threat for the OS.
“It is highly recommended to install the necessary heuristic module and perform a full scan of your system to exterminate malicious programs from it.”
An attempt to convince users to have the licensed version is perpetuated by these warnings:
“Outdated viruses database are not effective can’t guarantee adequate protection and security for your PC! Click here to get the full version of the product and update the database!”
“Warning! Database updated failed! Database update failed!”
“Warning! Running trial version!”
“The security of your computer has been compromised! Now running trial version of the software! Click here to purchase the full version of the software and get full protection for your PC!”
How to Remove Fake Microsoft Security Essentials Alert
1. Stop Fake Microsoft Security Essential Alert process by pressing Ctrl+Alt+Del on your keyboard. It will open Windows Task Manager. Look for the following and click on End Process.
2. You need to update your installed antivirus software. Please connect to the Internet and download the most recent database. This is a one-click process from your AV program’s console.
3. Run a full system scan. You must clean all detected files. If cleaning is not possible, you may delete or quarantine the item.
4. Edit your Windows registry. Find and delete Fake Microsoft Security Essential Alert entries as shown in the registry section. [how to edit registry]
5. Exit registry editor when you are done.
6. Remove Fake Microsoft Security Essential Alert start-up entry by going to Start > Run. Type msconfig on the "Open" dialog box. System Configuration Utility will open. Go to Startup tab and remove the check mark on the following items.
7. Click Apply and restart Windows.
Fake Microsoft Security Essential Alert Removal ToolIn order to remove the threat completely, you need to download and run Malwarebytes Anti-Malware. This is a free malware removal tool. If Trojan infection blocks the downloading of this program, get it using a clean computer. Rename the executable file before executing on the infected PC.
Online Virus ScannerAnother way to remove a virus without the need to buy extra anti-virus software is to do a system check thorough Online Virus Scanner. This tool is available on official web sites of several anti-virus maker.
Alternative Removal Method for Fake Microsoft Security Essentials Alert
Option 1 : Use Windows System Restore to return Windows to previous state
If Fake Microsoft Security Essentials Alert enters the computer, there is a big chance that Windows files, registry entries and other essential components are also infected. System Restore can reinstate clean system files by restoring the configuration to an earlier date. The method also replaces compromised files with a clean version. If you have a saved restore point before Fake Microsoft Security Essentials Alert infiltrates the PC, we highly encourage you to execute this procedure if none of the above works. You may proceed with Windows System Restore, click here to see the full procedure.
Option 2 : Fake Microsoft Security Essentials Alert manual uninstall guide
IMPORTANT! Manual removal of Fake Microsoft Security Essentials Alert requires technical skills. Deleting system files and registry entries by mistake may result to total disability of Windows system. We advise you to perform a backup of registry before proceeding with this guide.
1. Kill any running process that belongs to Fake Microsoft Security Essentials Alert.
- Press Ctrl+Alt+Del on your keyboard.
- When Windows Task Manager appears, look for Fake Microsoft Security Essentials Alert files (refer to Technical Reference) and click End Process.
2. Delete all registry entries that belong to this malware.
- Press [Windows Key]+R on your keyboard.
- In the 'Open' dialog box, type regedit and press Enter. This will open registry editor.
- Find and delete registry entries as mentioned in Technical Reference section below.
- Close registry editor. Changes made will be save automatically.
3. Scan the computer with antivirus program.
- Connect to Internet and open your antivirus software. Please update to obtain the latest database and necessary files.
- Restart the computer in Safe Mode.
- Just before Windows logo begins to load press F8 on your keyboard.
- On Windows Advanced Boot Options, select Safe Mode and press Enter.
4. Delete all files dropped by Fake Microsoft Security Essentials Alert.
- While still in Safe Mode, search and delete malicious files. Please refer to 'Technical Reference'. Make sure that you execute 'End Task' first before deleting the file. Otherwise, the system will not let you perform this action.