By Roselle

How to Remove “Your computer is infected” Popup

Updated Oct 15, 2008

“Your computer is infected” PopupThreat Level: “Your computer is infected” Popup is a Danger

“Your computer is infected” Popup screenshot“Your computer is infected” Popup is that frightening popup you will see when Malware has infected your computer.

The “Your computer is infected” Popup reads:

* “Critical System Error”,
* “Your computer is infected”

“Your computer is infected” Popup also installs tracking cookies and other malware on your system.

By all means, don’t click on the “Your computer is infected” Popup. Else, the “Your computer is infected” Popup will take you to a rogue anti-spyware site where they will follow you to the ends of the earth to make you pay for their fake anti-spyware program.

If you see the “Your computer is infected” Popup , the infection you have is with the “Your computer is infected” Popup and the Malware that generated it.

I’ll show you how to get rid of the “Your computer is infected” Popup for free.

GET RID of “Your computer is infected” Popup

Do You Have “Your computer is infected” Popup?

When you’re infected with badware — whether it’s “Your computer is infected” Popup, spyware, adware, a Trojan, or a virus — there are a few key symptoms. Have you noticed…

  • Slow computer performance: It just takes one parasite like “Your computer is infected” Popup to slow your computer dramatically. If your PC takes longer than usual to reboot, or if your Internet connection is unusually slow, you may be infected with “Your computer is infected” Popup.
  • New desktop shortcuts or switched homepage: Badware like “Your computer is infected” Popup may change your Internet settings to redirect your homepage to another site. Badware can even add desktop shortcuts to your PC.
  • Annoying popups: Badware can bombard your computer with popup ads, even when you’re not online. Through these popups, you may be tricked into downloading more spyware.

How to Remove “Your computer is infected” Popup Manually

“Your computer is infected” Popup warning Before we get started, you should backup your system and your registry, so it’ll be easy to restore your computer if anything goes wrong.

To remove “Your computer is infected” Popup manually, you need to delete “Your computer is infected” Popup files. Not sure how to delete “Your computer is infected” Popup files? Click here, and I’ll show you. Otherwise, go ahead and…

Stop “Your computer is infected” Popup Processes:

ntos.exe
winivstr.exe
braviax.exe

Delete “Your computer is infected” Popup DLL files:

C:\WINDOWS\oziwozy.dl
C:\WINDOWS\system32\kures.dll

Delete “Your computer is infected” Popup Files:

C:\WINDOWS\braviax.exe
C:\WINDOWS\system32\braviax.exe
C:\WINDOWS\system32\winivstr.exe
C:\WINDOWS\system32\ntos.exe

Note: In any “Your computer is infected” Popup files I mention above, “%UserProfile%” is a variable referring to your current user’s profile folder. If you’re using Windows NT/2000/XP, by default this is “C:\Documents and Settings\[CURRENT USER]” (e.g., “C:\Documents and Settings\JoeSmith”). If you have any questions about manual “Your computer is infected” Popup removal, go ahead and leave a comment.

How Do You Remove “Your computer is infected” Popup Files?

Need help figuring out how to delete “Your computer is infected” Popup files? While there’s some risk involved, and you should only manually remove “Your computer is infected” Popup files if you’re comfortable editing your system, you’ll find it’s fairly easy to delete “Your computer is infected” Popup files in Windows.

How to delete “Your computer is infected” Popup files in Windows XP and Vista:

  1. Click your Windows Start menu, and then click “Search.”
  2. A speech bubble will pop up asking you, “What do you want to search for?” Click “All files and folders.”
  3. Type a “Your computer is infected” Popup file in the search box, and select “Local Hard Drives.”
  4. Click “Search.” Once the file is found, delete it.

How to stop “Your computer is infected” Popup processes:

  1. Click the Start menu, select Run.
  2. Type taskmgr.exe into the the Run command box, and click “OK.” You can also launch the Task Manager by pressing keys CTRL + Shift + ESC.
  3. Click Processes tab, and find “Your computer is infected” Popup processes.
  4. Once you’ve found the “Your computer is infected” Popup processes, right-click them and select “End Process” to kill “Your computer is infected” Popup.

How to remove “Your computer is infected” Popup registry keys:

“Your computer is infected” Popup warning Because your registry is such a key piece of your Windows system, you should always backup your registry before you edit it. Editing your registry can be intimidating if you’re not a computer expert, and when you change or a delete a critical registry key or value, there’s a chance you may need to reinstall your entire system. Make sure your backup your registry before editing it.

  1. Select your Windows menu “Start,” and click “Run.” An “Open” field will appear. Type “regedit” and click “OK” to open up your Registry Editor.
  2. Registry Editor will open as a window with two panes. The left side Registry Editor’s window lets you select various registry keys, and the right side displays the registry values of the registry key you select.
  3. To find a registry key, such as any “Your computer is infected” Popup registry keys, select “Edit,” then select “Find,” and in the search bar type any of “Your computer is infected” Popup’s registry keys.
  4. As soon as “Your computer is infected” Popup registry key appears, you can delete the “Your computer is infected” Popup registry key by right-clicking it and selecting “Modify,” then clicking “Delete.”

How to delete “Your computer is infected” Popup DLL files:

  1. First locate “Your computer is infected” Popup DLL files you want to delete. Open your Windows Start menu, then click “Run.” Type “cmd” in Run, and click “OK.”
  2. To change your current directory, type “cd” in the command box, press your “Space” key, and enter the full directory where the “Your computer is infected” Popup DLL file is located. If you’re not sure if the “Your computer is infected” Popup DLL file is located in a particular directory, enter “dir” in the command box to display a directory’s contents. To go one directory back, enter “cd ..” in the command box and press “Enter.”
  3. When you’ve located the “Your computer is infected” Popup DLL file you want to remove, type “regsvr32 /u SampleDLLName.dll” (e.g., “regsvr32 /u jl27script.dll”) and press your “Enter” key.

That’s it. If you want to restore any “Your computer is infected” Popup DLL file you removed, type “regsvr32 DLLJustDeleted.dll” (e.g., “regsvr32 jl27script.dll”) into your command box, and press your “Enter” key.

Did “Your computer is infected” Popup change your homepage?

  1. Click Windows Start menu > Control Panel > Internet Options.
  2. Under Home Page, select the General > Use Default.
  3. Type in the URL you want as your home page (e.g., “http://www.homepage.com”).
  4. Select Apply > OK.
  5. You’ll want to open a fresh web page and make sure that your new default home page pops up.

“Your computer is infected” Popup Removal Tip

Is your computer acting funny after deleting any “Your computer is infected” Popup files? I recommend using a program like File Recover from PC Tools. File Recover saves deleted files that otherwise can’t be recovered by Windows operating sytem.

Want to save time finding “Your computer is infected” Popup files? Download Spyware Doctor, let it find the “Your computer is infected” Popup files for you, and then manually delete “Your computer is infected” Popup files.

How Did You Get “Your computer is infected” Popup?

Wondering how “Your computer is infected” Popup ended up on your PC? If you’re infected with “Your computer is infected” Popup or other badware, perhaps you were using…

  • Freeware or shareware: Did you download and install shareware or freeware? These low-cost or free software applications may come bundled with spyware, adware, or programs like “Your computer is infected” Popup. Sometimes adware is attached to the free software to “pay” developers for the cost of creating the software, and more often spyware is secretly attached to free software to harm your computer and steal your personal and financial information.
  • Peer-to-peer software: Do you use a peer-to-peer (P2P) program or other application with a shared network? When you use these applications, you put your system at risk for unknowingly downloading an infected file, including applications like “Your computer is infected” Popup.
  • Questionable websites: Did you visit a website that’s of questionable nature? When you visit malicious sites that are fishy and phishy, badware may be automatically downloaded and installed onto your computer, sometimes including applications like “Your computer is infected” Popup. I recommend you use Firefox web browser, if you don’t already.

Understanding “Your computer is infected” Popup

If you’re infected with “Your computer is infected” Popup, you should know what you’re fighting. I’ll explain some definitions related to “Your computer is infected” Popup.

“Your computer is infected” Popup May Be Rogue Anti-Spyware

Rogue anti-spyware refers to anti-spyware/antivirus software of questionable value. Rogue anti-spyware may not be proven to protect your computer from spyware, may popup fake alerts or create many false positives about your PC being infected, or may use scare tactics to try to get you to purchase the application. Rogue anti-spyware software may be installed by a Trojan, come bundled with other software, or install itself through web browser security holes. While it is fairly rare, some rogue anti-spyware is created and distributed by known spyware or adware companies, and the rogue anti-spyware may install spyware or adware itself.

Often when you’re infected with rogue anti-spyware like “Your computer is infected” Popup, you’ll see a false popup security alert like this:

“Your computer is infected” Popup popup

Rogue Anti-Spyware Tactics

Typically, rogue anti-spyware such as “Your computer is infected” Popup has one or more of the qualities listed below, which is why rogue anti-spyware is considered anti-spyware software of questionable value.

  • False positives/fake alerts: Rogue anti-spyware may produce a large number of false positives or use fake alerts, noting that your computer is infected with spyware parasites or other threats that do not really exist.
  • Copycat looks: Rogue anti-spyware may copy the look and feel of other legitimate or rogue anti-spyware applications. Often, rogue anti-spyware applications may appear as close clones of other rogue anti-spyware software.
  • High pressure marketing: Rogue anti-spyware may use scare tactics or other aggressive advertising and marketing tactics to try to trick you into buying the rogue anti-spyware application. Often, rogue anti-spyware may produce false positives and fake alerts about your computer being infected.
  • Poor detection/scan reporting: Rogue anti-spyware may produce poor reports when it scans your PC. For example, rogue anti-spyware may say your computer is infected 11 parasites, but not specify which spyware parasites or what type of parasites. Rogue anti-spyware may also report that your PC is infected with SafeAndClean, but not tell you which related files, DLLS, etc. were found on your computer.
  • Weak scanning/detection: Rogue anti-spyware may not only poorly report on computer infection, but rogue antispyware may also poorly scan your PC. Rogue anti-spyware may skip over important folders and files of your computer that should be scanned to detect spyware.

Did “Your computer is infected” Popup use these tactics to trick you into buying “Your computer is infected” Popup?

“Your computer is infected” Popup May Be a Tracking Cookie

Tracking cookies are small files deposited onto your PC’s hard drive as you browse the Internet. Regular cookies work the same way, but unlike those harmless cookies that are designed to remember your account information so that you can use websites more easily, tracking cookies may collect and report information about your web browsing habits. Tracking cookies monitoring your web browsing habits may tell advertisers some of your personal information.

Because of “Your computer is infected” Popup’s and other tracking cookies’ possibly stealth methods, tracking cookies, even when installed without malicious reasons, may put your personal and financial information at risk. It may be a good idea to remove “Your computer is infected” Popup and other tracking cookies.

What Companies Learn from a Tracking Cookie Like “Your computer is infected” Popup

Marketing companies can learn a lot from tracking cookies. If you fill out a form online with your contact info and real name, enter a contest or sweepstakes, or click an ad to buy a product, it’s possible Internet advertisers using tracking cookies know your real name, your Internet Protocol (IP address), and other information about you.

Online marketing and advertising companies that hold this identifiable information about you and your web browsing habits may sell your personal info to other companies, or merge their information about you with other companies’ information about you. A tracking cookie may seem harmless, but in reality some tracking cookies allow companies to know quite a lot about your online and offline habits and lifestyle, and how to find you.

“Your computer is infected” Popup May Be a Trojan

Trojans install themselves secretly onto your computer, most often through your downloading a simple email attachment (often Trojans pose as harmless pictures). Most Trojans are able to gain complete control over your PC after installation. With this control, the Trojan and the hacker behind it may change your system settings, delete important files, steal your passwords, and watch your computer acitivity.

Infection Methods of “Your computer is infected” Popup and Other Trojans

Most Trojans infect your computer by tricking you into launching an infected file. This poisoned file could disguised as a small file, such as a jpeg or other email attachment, or it might be downloaded via a website or FTP.

  • Email: Your PC may be infected with a Trojan when you download infected email attachments, or sometimes even when you simply open an email. Many Trojans exploit security holes in Microsoft Outlook. You may be able to reduce your chances of getting infected by a Trojan by using a spam-blocking software.
  • Websites: Your PC may be infected with a Trojan when you visit a rogue site. Many Trojans exploit security holes in Internet Explorer web browser so that by simply visiting a website you may unknowingly download a Trojan.
  • Open ports: If your computer runs programs that provide file-sharing functions – such as AOL Instant Messenger (AIM), MSN Messenger, and more – you may open your computer up to vulnerabilities. Using file sharing through these applications may create a network that gives attackers the opportunity to remotely access your computer.

Filed Under: Fake Antispyware, Tracking Cookies, Trojans
Related Posts: “Your System Is Infected!” Popup, “Alert! You are receiving spam!”, Worm.Semail,

Sorry, comments for this entry are closed.