AntiVira AV
AntiVira AV is a counterfeit computer anti-virus application from the same group who spread Antivirus .NET. When this malware has infected the PC, it will be configured to run when Windows is started. Once loaded, AntiVira AV will provide a virus scan and reports a number of infection on its scan results. Attempting to remove detected threats will pop-up an advise that a AntiVira AV registration key must be purchase first. As mentioned, every alerts and scan results that it produces are fake, never obtain a paid version of this program. This rogue is a trend on discussion forums like what you can find on McAfee Communities. It spreads so fast with the help of a Trojans that are able to penetrate a computer and remains undetected with installed security program.
While inside victims computer, AntiVira AV will protect itself from being terminated. It will block security applications to be executed. Trying to run any AV applications will initiate a message telling that:
Security Warning
Application cannot be executed. The file AV.exe is infected. Do you want to activate your antivirus software now?
Also, AntiVira AV will redirect Internet browser to a different unsolicited web sites that also display web-based fake warnings. This will be achieve by configuring the computer to use a proxy server. The warning will consist of this message:
Internet Explorer Warning – visiting this web site may harm your computer!
Most likely causes:
- The website contains exploits that can launch a malicious code on your computer
- Suspicious network activity detected
- There might be an active spyware running on your computer
As stated, all of these are just part of AntiVira AV scare tactics, as it continue to display on computer, victims will be dismayed on its annoyances and will be forced to obtain the registered version. Instead of doing that, download, install and run a full scan of a legitimate anti-malware product. Follow the complete solution below to remove AntiVira AV virus.
| Type | Rogue |
| Sub-Type | FakeAV |
| Aliases | AntiVira AntiVirus |
| OS Affected | Windows |
| Detected By | MalwareBytes |
What are the Symptoms of AntiVira AV Infection?
It will modify Windows Registry and add the following entries:
HKEY_CURRENT_USER\Software\
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter “Enabled” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = ”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = ‘http=127.0.0.1:8992′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyEnable” = ’1′
The threat will drop the following malicious files:
%Temp%\.exe
How to Remove AntiVira AV Manually
1. Restart your computer in SafeMode
- Press F8 on keyboard as soon as you turn on the computer
- Select SafeMode to start the computer loading only minimal resources
2. Delete Windows registry entries the malware created. It is important to BACKUP YOUR REGISTRY FIRST.
- On Windows Start Menu, Click Start > Run
- Type in the field, regedit
- Find registry entries mentioned above and delete if necessary
3. Files related to AntiVira AV must be deleted:
- Browse and delete malicious files detected above.
- Some files cannot be deleted instantly. Press Ctrl+Alt+Del to open Windows Task Manager, look for any virus-related files mentioned on this page and highlight it, click End Process. Try to delete the file once more.
4. Run Antivirus Program
- You must be connected to Internet to be able to update your anti-virus program. This is needed to have the latest database available and detect newer threats.
- Thoroughly scan the computer and clean or delete all detected threats.
How to Easily Remove AntiVira AV
1. Print this procedure as we need to close all running programs later.
2. Download AntiMalware Application here and save it to your Desktop.
3. Close all open applications.
4. Double-Click on the downloaded mbam-setup.exe to start the installation. If unable to execute, infections on computer is preventing it from running, rename the file mbam-setup.exe to anything (like myfile.exe)
5. Run the installation on the default settings. No changes are necessary.
6. Just before completing the installation, make sure that the following are marked check.
- Update the program
- Launch the program
7. The tool will run and update itself after installation. Close it after the update.
8. Restart your computer in SafeMode
- After Power-On the computer, just before Windows start, press F8
- From the selections, Select SafeMode
9. Click on the icon and start to Perform Full Scanto begin scanning your computer for AntiVira AV related files.
10. After scanning, a message will appear stating that the scan is completed successfully. Click OK.
11. Click Show Results and detected threats will be displayed.
12. Make sure that all threats are marked check, then click Remove Selected to begin removal of the malicious files.
13. Exit AntiMalware Apps and restart your computer.
14. AntiVira AV and all its files are now removed from your computer. To guard your computer from this threat and avoid future infections, you may want real-time protection from a full version of anti-malware program..
Windows Software Protection Windows Care Tool