Sysinternals Antivirus is a rogue program from the Your PC Protector family. This rogue program is actually classified as ransomware and scareware rather than malware or spyware because of the way it behaves. The rogue program installs itself onto your computer without you knowing about it through other malware programs, usually from a website that you have visited. The main goal of the rogue program is to scare you into thinking that your computer is infected, but truth is the only problem is Sysinternals Antivirus.
Once Sysinternals Antivirus has been installed on your computer the rogue program is going to perform a scan, but the results from this scan are not going to be accurate, they are just used to try to scare you into thinking your computer is thoroughly infected with a variety of threats. Once the scan is done and you see the results the scan is going to tell you something along the lines of you need to purchase the program in order to remove any of the threats that were detected. Never purchase the program because the only thing wrong with your computer is it is infected with Sysinternals Antivirus.
Something else to be aware of is if your computer is infected with Sysinternals Antivirus, the rogue program is going to do everything that it can to protect itself. If you try running an antivirus program or even a malware removal program the rogue program is going to block access to those programs so that they cannot run. When trying to run a legitimate program you will get a popup that states the program cannot run because it is infected. Along with these popup warnings you will also see other alerts such as
Warning: Infection is Detected
Windows has found spyware infection on your computer! Click here to update your Windows antivirus software
Or
Svchost.exe has encountered a problem and needs to close. We are sorry for the inconvenience. If you were in the middle of something, the information you were working on might be lost. Please tell Microsoft about this problem.
We have created an error report that you can send to us. We will treat this report as confidential and anonymous.
To remove Sysinternals Antivirus you are going to have to either remove it manually, download a special tool to remove it for you, which can include running a true antivirus or malware removal program. Removing it manually is not a very good idea because of how much damage you can cause by making one simple mistake. Manually removing this rogue program is going to require you to delete registry entries, which if you don't know what you are doing you can accidentally delete the wrong entry and prevent your operating system from booting up correctly. In order to automatically remove Sysinternals Antivirus you are going to need to install a spyware removal program, if you haven't done so already. To remove the rogue problem all you have to do is run a full scan with the spyware removal program and restart your computer if needed. If Sysinternals Antivirus blocks the spyware removal program from functioning, boot into Windows Safe Mode and then attempt to run the program. An added bonus is that a spyware removal program can also be used in the future as routine maintenance for your computer.
