Issue: How to Remove Hicurdismos Malware(Fake Microsoft Security Essentials)?
Hello. I have a bad feeling that I have installed malware on my PC. I couple of days ago I’ve installed VLC Media Player using quick installation and then I’ve started receiving a BSOD window during web browsing, which states that my PC has run into a problem. What seems unusual for me that this particular BSOD contains a support number. I’ve checked Task Manager as well and discovered more than five setup.exe files running on it and consuming quite a lot of recourses. Please tell me if it’s normal?
Microsoft warns Windows users about a newly released cyber threat known as Hicurdismos. This program pretends to be a legitimate Microsoft Security Essentials (MSE) installer and is spread using drive-by download or software bundling methods. To put it simpler, Hicurdismos malware renders a pop-up flag, which appears when people are browsing with Microsoft Edge or Internet Explorer web browsers and prompts users to run or save setup.exe file. Although this notification may look secure from the first glimpse, it contains a malicious file, which is executed as soon as the user clicks Run or Save button. Consequently, the malware roots deeply into the OS and starts throwing a fake Blue Screen of Death window on a random occasions. The same happens if the user falls for installing a free software, which carries a pack of potentially unwanted programs as an attachment.
How does Hicurdismos work?
As already pointed out, Hicurdismos is a support scam, which is spread to trick users into thinking that their PCs are encountering a serious issue and has to be fixed with the help of professional technicians. To make the error persuasive, Hicurdismos virus mimics Microsoft Security Essentials, which is a default anti-malware product for Windows 7 and earlier versions. Paradoxically, it displays a BSOD that is typical for Window 10 and 8 versions. This blue screen claims that “Your PC ran into a problem and needs a restart (etc.)” and provides a technical support number at the end of this screen. Beware that official Microsoft BSOD messages DO NOT contain support number or other mobile contacts. At best, the notification includes an error code, so that the user could contact Microsoft support via email or make a research on the bug on the Internet. In addition to the fake BSOD, Hicurdismos malware disables Task Manager, freezes the mouse cursor, inserts its files, and injects itself among startup programs. As a consequence, it starts using PCs resources and displays Hicurdismos BSOD whenever the system is booted.
Why shouldn’t people call for the support number?
Since Hicurdismos is a technical support scam, you should NEVER call for the number that is provided on the Blue Screen of Death. That’s because support scam is the method rendered by online scammers for swindling people’s money or tricking them into downloading malicious viruses, such as ransomware, keylogger, worms, etc. into the system. Therefore, DO NOT call the numbers give on any error messages because Microsoft NEVER includes telephone numbers on in the genuine error notifications. If, unfortunately, you have already called for fake technical support scam, or even made a payment, call your credit card provider and cancel the payment ASAP. After that, run a full scan with a professional anti-malware tool and remove Hicurdismos virus right away.
In a nutshell, Hicurdismos pop-up and BSOD screen are not malicious as long as you do not call for the given support number. However, keeping this potentially unwanted program on your PC may lead to system slowdows, freezes, and may decrease system’s security, which is why other potentially dangerous programs may get into the system more easily. In case you are receiving BSOD by Hicurdismos from time to time, you have to remove this pest right away. Although automatic removal is recommended, it’s also possible to get rid of it manually, so we will provide manual Hicurdismos removal steps just in case.
How to remove Hicurdismos virus on Windows?
Method 1. Automatic removal
This is the most advanced way to remove Hicurdismos malware. For this purpose, you have to install (if you don’t have one) a professional software, such as Reimage. Run a full system scan and check if the name SupportScam:MSIL/Hicurdismos.A is included among search results. If your seucrity tool found it, remove all threats indiated on the list and reboot the system.
Method 2. Manual removal
- Navigate to Start -> Control Panel -> Add/Remove Programs.
- On the list of programs that are running on your PC, find OCEP or other suspicious looking programs that you don’t remember installing, click on each of them and select Uninstall.
- Click Yes on the confirmation window and wait for the OCEP uninstall process to be executed.
- Click Ctrl + Alt + Delete to Open Task Manager.
- Click on the Processes tab at the top of the screen and terminate all processes that are related to OCEP. This can be done by right-clicking on the unwanted process and selecting End Task.
- Click Win key + R, type services.msc, and press Enter.
- Locate OCEP Windows services, right-click on them, and select Stop.
- Click Win key + R to open Registry Editor. Here you have to find all files that are related to OCEP. This is a tiresome process because you will have to go through lots of Windows files. Be very careful and don’t remove any files that you are not certain about.
- Type OCEP in the Windows search to make sure that there are no files or folders named as OCEP left. If you find any, delete all of them.
Open your web browser and disable its plug-ins. You don’t have to disable the ones that you have been using before, but make sure to disable OCEP plug in, as well as other plug-ins or add-ons that you are not familiar with.
As soon as you perform all the above listed fixed, restart your PC. We hope that Hicurdismos virus has been removed successfully. If, however, you keep receiving a fake support scam BSOD by this malware, the only thing left for you is a full system scan with a professional anti-malware.
Get rid of programs with only one click
You can uninstall this program with the help of the step-by-step guide presented to you by ugetfix.com experts. To save your time, we have also selected tools that will help you carry out this task automatically. If you are in a hurry or if you feel that you are not experienced enough to uninstall the program by your own, feel free to use these solutions:
Prevent websites, ISP, and other parties from tracking you
Private Internet Access is a VPN that can prevent your Internet Service Provider, the government, and third-parties from tracking your online and allow you to stay completely anonymous. The software provides dedicated servers for torrenting and streaming, ensuring optimal performance and not slowing you down. You can also bypass geo-restrictions and view such services as Netflix, BBC, Disney+, and other popular streaming services without limitations, regardless of where you are.
A VPN is also crucial when it comes to user privacy. Online trackers such as cookies can not only be used by social media platforms and other websites but also your Internet Service Provider and the government. Even if you apply the most secure settings via your web browser, you can still be tracked via apps that you are connected to the internet. Besides, privacy-focused browsers like Tor is are not an optimal choice due to diminished connection speed.
Therefore, to stay completely anonymous and prevent the ISP and the government from spying on you, you should employ Private Internet Access VPN. It will allow you to connect to the internet while being completely anonymous, prevent trackers, ads, as well as malicious content. Most importantly, you will prevent the illegal surveillance activities that NSA and other governmental institutions are performing behind your back.
Recover your lost files quickly
Unforeseen circumstances can happen at any time while using the computer: it can turn off due to a power cut, a Blue Screen of Death (BSoD) can occur, or random Windows updates can decide to reboot the machine when you went away for a few minutes. As a result, your schoolwork, important documents, and other data might be lost.
Additionally, you might also be attacked by malware that can corrupt your Windows or encrypt files with a robust encryption algorithm, and ask for a ransom in Bitcoin for the decryption tool. Cybercriminals might not deliver what they promised, however, so it is better to attempt alternative file recovery methods that could help you to retrieve at least some portion of the lost data.
Data recovery software is one of the options that could help you recover your files. Once you delete a file, it does not vanish into thin air – it remains on your system as long as no new data is written on top of it. Data Recovery Pro is recovery software that searchers for working copies of deleted files within your hard drive. By using the tool, you can prevent loss of valuable documents, school work, personal pictures, and other crucial files.