Sysinternal Antivirus?

My uncle clicked on a page on his computer that gave him the "your computer is infected" false warning. He was smart enough to leave the page without clicking anything, but now there's something called "Sysinternal Antivirus" on his desktop. It keeps giving him these virus warnings and such.

Occasionally, the website that he's on will turn red and have a box that says it's unsafe. Has anybody heard of this and know an easy way to get rid of it?

 

What normal antivirus software does he have installed?
What happened to him happened to me before, when Norton ran out. I started getting messages saying I was infected and that I had apparently installed this new antivirus which turned out to be a virus in itself. It was damn annoying.

Really though, it shouldn't be there if he has a reliable antivirus software running already.

 

I had this, I got it from an advert while I was watching a video on a site. Try a program like Malwarebyte's Anti-Malware to get rid of it or try any anti-virus software you have.

 

He used to have Norton, but I'm pretty sure it ran out as well since I can't find it. I can't find anything so I'm guessing he's pretty unprotected.

I can't delete the sysinternals folders. It keeps telling me to make sure the "file is not in use." His computer's always been slow so I can't even tell if some things are new symptons or not.

EDIT: I'm trying out malwarebytes now. I realized that the red screen thing on the internet is a cover up. If I move the window to the other side of the screen, I can see it, and the red "This page is unsafe" warning just stays where it was.

 

Tell him to buy some form of antivirus, once it is installed it'll get rid of the sysinternals. [:

 

He wants to try all the free ways first.
He's rather cheap B|

I downloaded Malwarebytes, but it won't let me run the set up. When I click "Run" it makes a little noise that sounds like the facebook chat "pop" and nothing happens.

 

Go into the task manager and under Processes see if you can find the sysinternal process. It'll probably be disguised, but seeing as how that red screen is just a cover-up, it seems like it was made without much effort. If you can find it though, click on it and click End Process. Then, assuming you can find the process name, search for a program called HijackThis. You can then use it to scan for the file and then delete/repair it and any of its registry keys. You may also want to try out this tutorial here:
http://www.2-spyware.com/remove-sysinternals-antivirus.html

 

^ Try this.

When my stepmom had this virus, though, I wasn't even able to get into the task manager. If that's the case for you, turn the computer off and just as the desktop first appears (after the 'Welcome' / Windows Logo Screen) hit ctrl+alt+delete. That way, the task manager will open before the virus can load up and block it.

Also, there are a lot of great free options for anti-virus once you get rid of that. Avast is my personal favorite.

 

Yeah. HijackThis is how I got rid of nuqel.e, so that's definitely the best option I can suggest. There are also boot disks that you can use to boot into a sort of antivirus operating system to get rid of it, but I'm not entirely sure how those work.

 

I used Malwarebytes and everything seems to be alright now.
Thanks everyone
and special thanks to Fayt.

 

Problem solved,

+\LOCKED/+