QUOTE
During the process of removing malware from your computer, there are times you may need to use specialized fix tools. This is especially true if you are receiving help from a member of the HJT Team. Certain embedded files that are part of these specialized fix tools may at times be detected by your anti-virus or anti-malware scanner as a "RiskTool", "Hacking tool", "Potentially unwanted tool", a virus or a "Trojan" when that is not the case.
These tools have been carefully created and tested by security experts so if your anti-virus or anti-malware program flags them as malware, the detection is what's known as a "False Positive". Anti-virus scanners cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert you or even automatically remove them. In these cases, the removal of these files can have "unpredictable results" and unintentional results.
To avoid any problems while using a specialized tool it is very important that you temporarily disable your anti-virus and/or anti-malware programs before using them or when instructed by a member of the HJT Team.
Many folks may not be sure how to do this so the BC Staff has created a list of common anti-virus programs and the relevant steps to disable their Real-time protection capabilities. When your system has been cleaned or when advised by your helper, it is important that you re-enable your security programs to avoid re-infection. A special thanks to Yourhighness for the diligent effort in compiling this list.
These tools have been carefully created and tested by security experts so if your anti-virus or anti-malware program flags them as malware, the detection is what's known as a "False Positive". Anti-virus scanners cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert you or even automatically remove them. In these cases, the removal of these files can have "unpredictable results" and unintentional results.
To avoid any problems while using a specialized tool it is very important that you temporarily disable your anti-virus and/or anti-malware programs before using them or when instructed by a member of the HJT Team.
Many folks may not be sure how to do this so the BC Staff has created a list of common anti-virus programs and the relevant steps to disable their Real-time protection capabilities. When your system has been cleaned or when advised by your helper, it is important that you re-enable your security programs to avoid re-infection. A special thanks to Yourhighness for the diligent effort in compiling this list.
How to Temporarily Disable your Anti-virus
AVAST
Right click on the avast! icon in system tray (looks like this:
) and choose (Stop On-Access Protection)AVG
Please open the AVG Control Center program -> double-click on the "AVG Resident Shield" component (looks like this:
) -> deselect the "Turn on AVG Resident Shield" checkmark and save the setting.When you need to enable the AVG Resident Shield, ( I’ll let you know when) just open the AVG Control Center program -> double-click on the "AVG Resident Shield" component -> select the "Turn on AVG Resident Shield" checkmark and save the setting.
AVIRA ANTIVIR
Please navigate to the system tray on the bottom right hand corner and look for an open white umbrella on red background (looks to this:
)- right click it-> untick the option AntiVir Guard enable.
- You should now see a closed, white umbrella on a red background (looks to this:
)
ESET NOD32 ANTIVIRUS
Please navigate to the system tray on the bottom right hand corner and look for a
sign.- click it -> click on the
button. - a popup will warn that protection will now be disabled. Click on "Yes" to disable the Antivirus guard.
F-SECURE ANTIVIRUS
Please navigate to the system tray on the bottom right hand corner and look for a blue
sign.- right click it-> select Unload.
- The F-Secure sign should now be surrounded by a red striked through circle (looking like this:
)
KASPERSKY ANTIVIRUS
Please navigate to the system tray on the bottom right hand corner and look for a
sign.- right click it-> select Pause Protection.
- click on -> By User Request
- a popup will claim that protection is now disabled and a sign like this:
will now be shown.
MCAFEE ANTIVIRUS
Please navigate to the system tray on the bottom right hand corner and look for a
sign.- right-click it -> chose "Exit."
- a popup will warn that protection will now be disabled. Click on "Yes" to disable the Antivirus guard.
NORTON ANTIVIRUS
Please navigate to the system tray on the bottom right hand corner and look for a
sign.- right-click it -> chose "Disable Auto-Protect."
- select a duration of 5 hours (this assures no interference with the cleanup of your pc)
- click "Ok."
- a popup will warn that protection will now be disabled and the sign will now look like this:

SYMANTEC ENDPOINT PROTECTION
Right click on the icon in the taskbar notification area & select "Disable Symantec EndPoint Protection".
sign.
sign.
sign
/
/
signs.
/
/
signs.
in the systemtray.
sign
sign.
sign.