 | Do you have pop-ups or your computer infected with trojan or spyware ? Learn how to ask us for help, click here! |
How to remove Antivirus Pro 2009
Antivirus Pro 2009 is a fake (rogue) antispyware/antivirus program. It is from the Antivirus XP family. The program is usually found on fake online-scanner websites or pages that are infected with the braviax trojan. In both cases, your computer will display popups with a message stating that your computer is infected with spyware and that you must download and install the program to clean your computer. During installation, Antivirus Pro 2009 configures itself to run automatically every time, when you start your computer. In addition the program creates some files with random names:
C:\Documents and Settings\user\Application Data\isuxih.bat
C:\WINDOWS\izewoh.dl
C:\Documents and Settings\All Users\Application Data\inurev.lib
C:\WINDOWS\qesuriqu.bat
C:\WINDOWS\supicane.bin
C:\WINDOWS\system32\afuny.reg
C:\Program Files\Common Files\yfila.dat
C:\Documents and Settings\user\Local Settings\Application Data\towyvo.pif
C:\Program Files\Common Files\nixef._sy
C:\Documents and Settings\user\Cookies\omevi.lib
C:\WINDOWS\xynexi.sys
C:\Documents and Settings\user\Local Settings\Application Data\rihibevad.com
C:\Documents and Settings\user\Cookies\ifem.db
C:\Documents and Settings\All Users\Application Data\oqacywudyd._dl
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\ufylyz.bat
C:\Documents and Settings\user\Application Data\ikijosycy.dat
C:\WINDOWS\system32\lumihedym.dll
C:\WINDOWS\ytygi._dl
C:\Documents and Settings\user\Local Settings\Application Data\vake.ban
C:\WINDOWS\system32\rube.reg
C:\Documents and Settings\All Users\Application Data\lorasa.inf
C:\Documents and Settings\user\Cookies\bejuzef.exe
C:\Program Files\Common Files\ajilimagy._dl
C:\Documents and Settings\All Users\Application Data\gapevep.dat
These files during the scan will determine as trojans and spyware.
Immediately after launch, the program starts scanning the computer and found a lot of trojans and spyware. Then, it said that you should purchase Antivirus Pro 2009 in order to remove them and protect your PC. Computer users are urged to avoid purchasing this bogus program!
Antivirus Pro 2009 generates false security alerts such as the following:
Trojan detected!
A piece of malicious code was found on your system which can
replicate itself if no action is taken. Click here to have your
system cleaned by Antivirus Pro 2009.
These fake popups may drastically slow the performance of your computer.
Symptoms in a HijackThis Log:
O4 - HKLM\..\Run: [Antivirus Pro 2009] “C:\Program Files\AntivirusPro2009\AntivirusPro2009.exe” /hide
AntivirusPro2009 can be safely removed from your computer along with any other trojan infections if the proper steps are taken. If you are a non-techie computer user then this method of removing spyware is for you.
Use the following instructions to remove Antivirus Pro 2009.
- Download Avenger from here and unzip to your desktop.
- Run Avenger, copy,then paste the following text in Input script Box:
Drivers to delete:
TDSSserv.sysRegistry values to delete:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | Antivirus Pro 2009
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | brastkFiles to delete:
C:\WINDOWS\system32\wini10894.exe
C:\WINDOWS\brastk.exe
C:\WINDOWS\system32\brastk.exe
C:\WINDOWS\scvhost.exe
C:\WINDOWS\system32\drivers\svchost.exe
C:\WINDOWS\karna.dat
C:\WINDOWS\system32\karna.datFolders to delete:
C:\Program Files\AntivirusPro2009Then click on ‘Execute’.
- You will be asked Are you sure you want to execute the current script?. Click Yes.
- You will now be asked First step completed — The Avenger has been successfully set up to run on next boot. Reboot now?. Click Yes.
- Your PC will now be rebooted.
- Download MalwareBytes Anti-malware (MBAM). Close all programs and Windows on your computer.
- Double Click mbam-setup.exe to install the application. When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure a checkmark is placed next to Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select “Perform Quick Scan”, then click Scan.
- The scan may take some time to finish,so please be patient.
- When the scan is complete, click OK, then Show Results to view the results.
- Make sure that everything is checked, and click Remove Selected.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.
Antivirus Pro 2009 creates the following files and folders:
C:\Program Files\AntivirusPro2009\AntivirusPro2009.cfg
C:\Program Files\AntivirusPro2009\AntivirusPro2009.exe
C:\Program Files\AntivirusPro2009\AVEngn.dll
C:\Program Files\AntivirusPro2009\htmlayout.dll
C:\Program Files\AntivirusPro2009\pthreadVC2.dll
C:\Program Files\AntivirusPro2009\Uninstall.exe
C:\Program Files\AntivirusPro2009\wscui.cpl
C:\Program Files\AntivirusPro2009\data\daily.cvd
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT\msvcm80.dll
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT\msvcp80.dll
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT\msvcr80.dll
C:\Program Files\AntivirusPro2009
C:\Program Files\AntivirusPro2009\data
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT
C:\Program Files\AntivirusPro2009\AVEngn.dll
C:\Program Files\AntivirusPro2009\htmlayout.dll
C:\Program Files\AntivirusPro2009\pthreadVC2.dll
C:\Program Files\AntivirusPro2009\Microsoft.VC80.CRT\msvcr80.dll
Questions and answers.
Antivirus pro 2009 prevents downloading of malwarebyte anti-malware.
Method 1:
- Restart your computer.
- After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
- Instead of Windows loading as normal, a menu should appear.
- Select the “Safe mode with networking”, to run Windows in Safe Mode with networking.
- Once Windows loaded, try download Malwarebytes Anti-malware again.
Method 2:
- Download installation file of Malwarebytes Anti-malware (mbam-setup.exe) to another computer.
- Transfer the file to infected computer using pendrive (USB flash drive).
Antivirus pro 2009 prevents installation of Malwarebyte Anti-malware.
Rename mbam-setup.exe with a series of random numbers and symbols.
If you need help with the instructions, then post your questions in our Spyware Removal forum.
17 Comments »
RSS feed for comments on this post. TrackBack URI
Leave a comment
Previous Posts:
- How to remove Total Protect 2009 (Delete instructions)
- How to remove eXPress Antivirus 2009 (Delete instructions)
- How to remove iSafe AntiVirus (Delete instructions)
- How to remove Astrum Antivirus Pro (Delete instructions)
- How to remove System Security (Delete instructions)
- How to remove MS Antispyware 2009
- How to remove Antivirus 360 (Delete instructions)
- How to remove Perfect Defender 2009 (Delete instructions)
- How to remove Spyware.ISpynow (Fake Security Center Alert)
- How to remove ExtraAntivir (Delete instructions)
- How to remove AntiSpywareGuard (Delete instructions)
- How to remove Winweb Security 2008 (Delete instructions)
- How to remove SpywareRemover 2009 (Delete instructions)
- How to remove Antivirus Trigger (Delete instructions)
- How to remove XP Protection Center (Delete instructions)
- How to remove brastk.exe/karna.dat trojan or trojan.fakealert
- How to use F-Secure Online Virus Scanner
- How to remove VirusTrigger (Delete instructions)
- How to remove SecureFileShredder or SecureFile Shredder (Removal instructions)
- How to remove Ultra Antivirus
Forum posts:
- HiJack this log please for Antivirus Pro 2009
- Winweb Security Removal
- Security Center Alert/ Perfect Defender?
- The dreaded Go.google virus is making me go insane!!!!!
- Virus blocked windows updates all security update sites
- i can't download any programs to scan antivirus pro 2009
- More antivirus pro 2009 problems
- New Member Unable to remove boaxxe.dll
- MarioForever.exe
- spyware problems
- antivirus pro 2009 problems
- Unable to run Malwarebytes or update AVG or SPYBOT
- Antivirus 2009 problems
- Need help to remove antivirus 2009. Log file paste
- cannot view hidden files - the same problem again
- avp 2009
- Antivirus Pro 2009
- Hijack This Scan Please Help *Antivirus Pro 2009 infection*
- lost the ftpx.dl file after fixing the antiviurs pro 2009
- Search Page Redirect
Categories:
- Pop-Up Blockers and Firewalls (rss) (5)
- Adware (rss) (10)
- Anti Virus Software (rss) (11)
- Best Programs (rss) (6)
- Browser Hijacking (rss) (14)
- Critical patch (rss) (21)
- Exploits & Vulnerabilities (rss) (58)
- FAQ (rss) (7)
- Free Software (rss) (61)
- Identity Theft (rss) (8)
- Internet Browsers and Mail and News readers (rss) (12)
- Linux (rss) (4)
- Malware (rss) (13)
- Online Scanners (rss) (12)
- Phishing (rss) (2)
- Rogue Anti Spyware (rss) (88)
- Rootkit (rss) (4)
- Spyware (rss) (3)
- Spyware protection and removal (rss) (74)
- Tips (rss) (76)
- Trojan (rss) (43)
- Tutorials - HowTo (rss) (117)
- Updates (rss) (19)
- Virus (rss) (21)
- Worms (rss) (14)
Archives:
- January 2009 (2)
- December 2008 (7)
- November 2008 (15)
- October 2008 (14)
- September 2008 (10)
- August 2008 (5)
- July 2008 (3)
- June 2008 (4)
- May 2008 (5)
- April 2008 (1)
- March 2008 (4)
- February 2008 (3)
- January 2008 (2)
- December 2007 (7)
- November 2007 (27)
- October 2007 (4)
- July 2007 (2)
- June 2007 (3)
- April 2007 (1)
- March 2007 (6)
- February 2007 (6)
- December 2006 (1)
- November 2006 (2)
- October 2006 (7)
- September 2006 (2)
- August 2006 (10)
- July 2006 (7)
- June 2006 (22)
- May 2006 (18)
- April 2006 (12)
- March 2006 (24)
- February 2006 (33)
- January 2006 (52)
- December 2005 (50)
- November 2005 (66)
Blogroll
- PC Tips
- Sans Org - Internet Storm Center
- Spyware RU
- Sun Belt Blog
Help Us:
- MyAntiSpyware needs your support. Please make link from your site to us.
Use the button:
Bookmark Us:
MY ANTI SPYWARE Powered by WordPress with Pool theme design by Borja Fernandez.
Entries and comments feeds.
Valid XHTML and CSS. ^Top^
Program worked great in removing AntiVirus2009 and other junk from my computer. Thanks!
Comment by Bruce — November 11, 2008 #
I am trying to get rid of Antivirus pro 2009, but it won\’t let me install the anti malware program you suggested. Have tried to do so in safe mode as well, not working.
Comment by tammy — November 11, 2008 #
I tried to use this but that program would go 4 seconds and stall out…please help
Comment by Aimee — November 12, 2008 #
Aimee and Tammy, please read the instruction.
Comment by Patrik — November 12, 2008 #
Program worked Great !!!!!!!!Thanks
Comment by Louie — November 14, 2008 #
I put the antimalware program on my infected computer via pendrive… I re-named the file so it would install… however, once installed, it won’t OPEN so I can use it! Help! I’m going to cry! =(
Comment by Carleen — November 18, 2008 #
Carleen, please read the instruction.
Comment by Patrik — November 18, 2008 #
We followed your instructions and got rid of the anitvirus pro but our computer is still not working properly. When we try to pull up our e-mail or have to log onto any site, it will not allow us to?? Any suggestions
Comment by shannon — November 18, 2008 #
Shannon, please read the instruction.
Comment by Patrik — November 18, 2008 #
My problem is similar to Carleen’s. I tried installing the hjtinstall.exe on my infected computer but it won’t open. What do i do next. Help!
Comment by Helen — November 20, 2008 #
Helen, make a new topic at our spyware removal forum. I will help you.
Comment by Patrik — November 20, 2008 #
The program is great, it successfully remove AntivirusPro 2009 from my infected machine.
Comment by Venice — November 24, 2008 #
I’ve removed this virus from a few dozen computers, it gets meaner and nastier every time. This time, I couldn’t get any of my usual tools to install (ie Super Anti-spyware, Malwarebytes). Your avenger + your script got the system clean enough to get Windows Installer working again. Thank you, thank you, thank you for taking the time to post this. I will DEFINATELY pass the information along. Anyplace we can donate to thank you?
Comment by JCMIT — November 29, 2008 #
JCMIT, glad to help you
Comment by Patrik — November 29, 2008 #
Thank you. It feels like I’ve been trying to fix this for ages and while I don’t know if it’s all gone yet, this is the most progress I’ve made.
Comment by b5 — December 22, 2008 #
I was worried about downloading an antimalware program that offers better protection if you upgrade,(pay), to get rid of one that offered protection if you paid. But Anti Pro 2009 got on my nerves so bad that I uploaded Malwarebyte. AV 2009 seems to be gone, so that’s good—but I cannot say I feel clean. If I delete Malwarebyte, will AV 2009 come back?
Plus, Windows isn’t working now.
Comment by Acurrell — December 23, 2008 #
Acurrell, please follow these instructions.
I will check your computer.
Comment by Patrik — December 24, 2008 #