Browser Redirect

“Microsoft Warning: Your Computer is Infected” Virus Removal

Parasite may reinstall itself multiple times if you don't delete its core files. We recommend downloading SpyHunter to scan for malicious programs installed with it. This may save you hours and cut down your time to about 15 minutes. 

Download SpyHunter Anti-Malware

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

This page aims to help you with the removal of the “Microsoft Warning: Your Computer is Infected” Virus scam for free. These “Microsoft Warning: Your Computer is Infected” removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows. The “Microsoft Warning: Your Computer is Infected” is a dangerous PC support scam that will try to make you pay hundreds of dollars for nothing.

“Microsoft Warning: Your Computer is Infected” – a tech support scam

It is very irritating to have your browser settings altered without your permission in a way you did not want them to be changed. This is why we have created this article focused on “Microsoft Warning: Your Computer is Infected”. This program would do exactly that to your Chrome, Firefox or IE browser, changing its regular search engine, homepage or being the reason behind any sudden and unwanted page redirects that you may experience. The truth is that this piece of software is only one of many similar programs that specialize in messing with people’s browsers. The type of any software that does that is called Browser Hijacker and this is exactly what “Microsoft Warning: Your Computer is Infected” is.

We can help!

Most users want to get such programs out of their computer as soon as possible and we can help you with that if you have the same problem. A manual guide beneath the article will show you the different steps that need to be executed, so as to successfully remove the irritating piece of software from your machine. Nevertheless, bear in mind that it is not enough to get rid of a Browser Hijacker – it is also important to have a good understanding of how they work and how they get to people’s computers. For that reason, we strongly advise you to read all paragraphs and learn more about these pesky applications so that you can handle them more effectively in the future.

What are Browser Hijackers used for?

If you had “Microsoft Warning: Your Computer is Infected” installed on your PC at some point, you’ve probably realized by now that the purpose of this program is not to help you or provide you with any useful functionality. This is because most of the time, Browser Hijackers are solely aimed at benefiting their developers, while not presenting the user with any actual value. It can be said that a Browser Hijacker is an online marketing tool that employs a variety of revenue-earning techniques in order to generate as much money as possible for its creator. It might be used to promote other software from the same developer that is paid or uses the Pay-Per-Click scheme to gain income from received clicks or maybe even gather valuable marketing data that is later sold to third parties. There are a lot of different possibilities and it’s all about earning money through online advertising.

Are Browser Hijackers viruses?

Users need to understand that despite the fact that applications like “Microsoft Warning: Your Computer is Infected” can be a real pain in the neck due to their invasive and irritating behavior, they are not some sort of malicious Ransomware programs or Trojan horse viruses. In fact, most Browser Hijackers can be considered legal. Additionally, they generally do not have any actual harmful traits to the user’s virtual security or their computer’s system. However, even though “Microsoft Warning: Your Computer is Infected” is not some sort of noxious Ransomware, it’s essential that you remove it shortly after you’ve read this article and here is why:

  • Browser Hijackers can sometimes spy on your online activities. This is used to gather important data that is later used for marketing purposes. Still, regardless of how the acquired information is used, this is a privacy invasion that you must not allow to happen.
  • “Microsoft Warning: Your Computer is Infected” might spam you browser with false warning messages, which state that your PC is filled with errors and that the only way to resolve them is to get a certain system optimization tool. This is nothing but a clever trick used to promote other programs that are often paid or are just as annoying and unwanted as the Browser Hijacker is.
  • This irritating program can make your machine run slower. This is usually due to the high system resource demand that the unwanted software has. There is simply no reason why your machine should be wasting resources for an application that you have no use of.

How “Microsoft Warning: Your Computer is Infected” gets installed

You’ve probably not realized when and how “Microsoft Warning: Your Computer is Infected” got installed onto your PC. This is because in many cases Browser Hijackers utilize different forms of stealth installation, since few users would be willing to install such software onto their computers. Common methods for the distribution of these intrusive applications are spam e-mails, deceitful or hidden links on some sites and torrent files. Another infamous and very effective method for installing Hijackers right under the user’s nose is software-bundling. With this scheme, the unwanted application is included in the installer of some other program that the user might install. If the Quick setup option is used, all added content will get installed along with the main program. Therefore, every time you are about to install a new piece of software, make sure to use the Advanced setup option, which will enable you to see if there is anything added. In case there are any add-ons, meticulously research them before installing the program and if anything turns out to be potentially unwanted, simply uncheck it and then install the main program.


Name “Microsoft Warning: Your Computer is Infected”
Type  Adware/Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms  Unwanted alterations to your browser that you did not allow, such as a changed homepage, search engine, new add-on/s and sometimes sudden page redirects.
Distribution Method Program bundles are the most notable method. Other possible distribution techniques are junk mail, deceptive download links and torrent files.
Detection Tool

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you’ll need to purchase the full version.
More information about SpyHunter and steps to uninstall.

“Microsoft Warning: Your Computer is Infected” Removal



Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).


To remove parasite on your own, you may have to meddle with system files and registries. If you were to do this, you need to be extremely careful, because you may damage your system.

If you want to avoid the risk, we recommend downloading SpyHunter
a professional malware removal tool.

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

Reveal All Hidden Files and Folders.

  • Do not skip this  – “Microsoft Warning: Your Computer is Infected” may have hidden some of its files.

Hold together the Start Key and R. Type appwiz.cpl –> OK.


You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:


Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.


Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.

Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.

  1. Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click  Properties.
  2. The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
  3. Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.



Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).


Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512  Remove “Microsoft Warning: Your Computer is Infected” from Internet Explorer:

Open IE, click  IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove “Microsoft Warning: Your Computer is Infected” from Firefox:

Open Firefoxclick  mozilla menu  ——-> Add-ons —-> Extensions.

pic 6

Find the adware/malware —> Remove.
chrome-logo-transparent-backgroundRemove “Microsoft Warning: Your Computer is Infected” from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

  • At this point the threat is gone from Chrome, but complete the entire guide or it may reappear on a system reboot.


Press CTRL + SHIFT + ESC simultaneously. Go to the Processes Tab. Try to determine which ones are dangerous. Google them or ask us in the comments.


We get asked this a lot, so we are putting it here: Removing parasite manually may take hours and damage your system in the process. We recommend downloading SpyHunter to see if it can detect parasite files for you.

Right click on each of the problematic processes separately and select Open File LocationEnd the process after you open the folder, then delete the directories you were sent to.



Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

Remember to leave us a comment if you run into any trouble!

Leave a Comment