SysChat

SysChat (http://www.syschat.com/forum.php)
-   Security (http://www.syschat.com/tutorials/security/)
-   -   Remove Antivirus 2009: Windows XP and Vista (http://www.syschat.com/remove-antivirus-2009-windows-xp-vista-4305.html)

KarlM 02-19-2009 07:52 PM

Remove Antivirus 2009: Windows XP and Vista
 
What is Antivirus 2009?

Antivirus2009 - Scanner.com is a bogus security website which disseminates Antivirus 2009, a malicious anti-spyware software. The software self-installs without the knowledge or approval of the user, and embeds itself in the user’s computer and registry. This software rates a high, or dangerous risk level.

Symptoms of Antivirus 2009

1. These pop-up messages appear, stating that your computer is infected:
• ‘Critical System Error’
• ‘Your computer is infected’

2. Icons may flash in your system tray.

3. A different webpage appears upon accessing your homepage through the Internet browser.

Antivirus 2009 Manual Removal

1. Halt Antivirus 2009 Processes

• Access the Task Manager by pressing “Ctrl+Alt+Delete.” Pressing “Ctrl+Shift+Esc” also launches the Task Manager. This applies to Windows XP and Windows Vista OSs.

• Choose the following processes, and click “End Process” to stop them:
av2009.exe
av2009[1].exe
AV2009Install.exe
Antivirus2009.exe
utynewu.exe
install.exe
brastk.exe

2. Locate and Delete Antivirus 2009 Files

• Click on ‘Start,’ go to ‘Search,’ and access and delete the following files:
av2009.exe
av2009install.exe
av2009install_0011.exe
av2009[1].exe
Antivirus2009.exe
ieupdates.exe
scui.cpl
%program_files%\antivirus 2009\av2009.exe
%startmenu%\antivirus 2009\antivirus 2009.lnk
%startmenu%\antivirus 2009\uninstall antivirus 2009.lnk
winsrc.dll
%desktopdirectory%\antivirus 2009.lnk
winsrc.dll
ieupdates.exe
av2009install_0011.exe
av2009install.exe
%program_files%\antivirus 2009\av2009.exe
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Antivirus 2009.lnk
%UserProfile%\Desktop\Antivirus 2009.lnk
%UserProfile%\Start Menu\Antivirus 2009\Antivirus 2009.lnk
%UserProfile%\Start Menu\Antivirus 2009\Uninstall Antivirus 2009.lnk
%ProgramFiles%\Antivirus 2009\av2009.exe
%System%\scui.cpl
brastk.exe
icilosaqi.dll
install.exe
isygequdy.lib
wini101971.exe
wscui.cpl
_scui.cpl
antiviruspro2009.exe
avengn.dll
utynewu.exe
icilosaqi.dll
utynewu.exe
install.exe
brastk.exe
wini101971.exe
%program_files%\antiviruspro2009\uninstall.exe
%program_files%\antiviruspro2009\wscui.cpl
%programs%\antiviruspro2009\antiviruspro2009.lnk
%programs%\antiviruspro2009\uninstall.lnk
%program_files%\antiviruspro2009\antiviruspro2009. exe
%program_files%\antiviruspro2009\uninstall.exe
%desktopdirectory%\antiviruspro2009.lnk
%profile%\application data\microsoft\internet explorer\quick launch\antiviruspro2009.lnk
%program_files%\antiviruspro2009\antiviruspro2009. cfg
%program_files%\antiviruspro2009\antiviruspro2009. exe
%program_files%\antiviruspro2009\avengn.dll
%program_files%\antiviruspro2009\data\daily.cvd
%program_files%\antiviruspro2009\htmlayout.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\microsoft.vc80.crt.manifest
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcm80.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcp80.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcr80.dll
%program_files%\antiviruspro2009\pthreadvc2.dll
%program_files%\antiviruspro2009\pthreadvc2.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcr80.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcp80.dll
%program_files%\antiviruspro2009\microsoft.vc80.cr t\msvcm80.dll
%program_files%\antiviruspro2009\htmlayout.dll
%program_files%\antiviruspro2009\avengn.dll
Remove Antivirus 2009 Registry Values

For the Windows XP OS:
• Go to ‘Start,’ and click ‘Run.’
• Type in ‘regedit,’ and click ‘OK.’
• The Registry Editor is now open. If you know what you want to find, navigate using the subkey. Otherwise, press ‘Ctrl+F’ to find the subkey containing the value to be edited (seen below).

For the Vista OS:
• Go to ‘Start,’ and type ‘regedit.’
• Click ‘regedit’ in the search results to access the Registry Editor.
• Follow the third step from the Windows XP guide. Edit:
HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run ieupdate


All times are GMT -4. The time now is 05:50 AM.


Copyright © 2005-2013 SysChat.com


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54