Don’t Risk Downloading Antivirus Soft to Your PC!

If my credit card has been used in anyway on this fraudulent site i demand that it be refunded immediately.

Simple removal instructions.

As soon as you restart you computer, hit start, then run, then msconfig. Uncheck the box in front of the entry that has gibberish behind the string, it should be listed twice and should be at the end of the startup items. This will prevent the fake program from starting. Close the msconfig box and save, DO NOT RESTART THE COMPUTER.

Right click on your desktop icon for Internet Explorer and click on Properties, then the connections tab, then the LAN Settings on the bottom right. Unclick the proxy server. This will allow you to open up Explorer.

Now double click on the desktop Explorer Icon and download Malware bytes http://www.malwarebytes.org/.
Run a complete scan and follow the directions to delete the rouge software.

Go to (http://www.microsoft.com/security_essentials/) To protect yourself from future infections, download Microsoft Essentials (Free) from the Microsoft website.

This works for those of you that have a wireless keyboard. The rouge software will not allow you to enter "safe mode" because it loads before the wireless keyboard loads.

Please... do not wipe your hard drive or re-format your drive, this is not a difficult program to remove.

Leo

Removal steps... AS OF 5/29/10
1) reboot in to safe mode by tapping F8 slowly as the pc boots up.
NOTE: If it does not boot in to safe mode you are better of trying to save your important files and doing a COMPLETE REINSTALL OF THE OS! Yes you may get the pc to work using the steps below but if you can't get access to safemode that is a sign that the OS system files are all screwed up and you may get an unstable computer as the end result.
2) In safe mode install and run R-kill.
3) Install and Run Malware-bytes,may need to download from another pc on to a USB stick.
4) Install and Run Superantispyware
5) Install and Run AVG anti-spyware 7.5, not supported by AVG anymore but a true gem without the bloated ware of AVG.
6) THIS IS VERY IMPORTANT--- GO to tools in IE, scroll down to internet options, Click on Connections TAB, At the bottom click on LAN SETTINGS, Verify that PROXY SERVER is UNCHECKED! This allows you to get back online. The fake antivirussoft hijacks your computers lan settings and forces you to go to their website ONLY so unchecking the proxy box you open up your connection to the rest of the web!!!!!!

The scans can take hours so be patient. Once done follow the steps on every program to remove the virus and do not reboot until all your scans are complete and you have removed what ever they have found.

Funny thing is that I would recommend to do one scan with one program at a time but that would take days. So I just run them all at once. Then I go back when doen and check to see if any of the programs found 0 problems and then on the second scan I do not run that program anymore.
I recommend to scan atleast 4 times in safe mode then fire it up normaly and run the programs one more time. Then I suggest you download Microsoft Security Essentials (IT IS FREE) and use that as your Antivirus program. Works great if you DL music or movies. But please note that no ANTIVIRUS program can stop the fake antivirus program because you are letting them IN! and in reality the fake Virus Soft is not a real virus it is a Rouge program that hijacks your system. So don't expect Norton 360 or Mcafee to catch it. Best bet is to stay away from SHADY SITES!!!!

Just got this with this AntiVirus Soft. Had to boot into safe mode and then run an anti-malware program. Thought Windows 7 wold be more secure. Then had to change LAN settings to be able to browse websites again from IE or Chrome. This is ridiculous. I'm buying a MAC.

je veux

I just got it today and removed it as fast as it appeared. I do think it came from facebook. Spybot is a good tool to get rid of it. But like always you need to boot into safe mode. I am a software programmer, and I used a program to get its handle and fought back and forth. I got to remove it thank goodness. It doesn't do any harm to your computer but its just annoying to me. Word of advice for everyone get Spybot S&D.

Combo fix. and if that doesn't work rename it explorer.exe or right click and do a runas under the administrator log in.

If I knew rhe internet www address i could put into my "blocked" websittes list. Would this work to block AVS??

Symantec want to charge 139.99 for a one time fix fee to a legitimate owner of Norton IS with 595 days remaining in his subscription. That's the real *** of it, the predators are offering a cheaper way out of the protection racket (for that is exactly what it is) than the guardians. Norton _does not_ effect this and so it is Symantec I want my initial subscription and addon money back from. I too cannot get online in safe mode to dump this crap. Have tried RKill, MBAM and a few others. I shouldn't have to be an expert in programming to do it from within my windows registry (something Vista says is very dangerous anyway). And the people who did this deserve to be killed. Period.

Ummmm, I did the system restore option.... I notice some of my usaal alert icons are not present. Like Sound and power... When you right click on the task bar go to properties, Customize icons. I NOTICE WITH THE INACTIVE LIST... I SEE ANTIVIRUS SOFT!!!! This scares me... I know its on my computer, I dont know how to remove it. My windows defendor doesnt work. My The SHIED doesnt work. Malwarebytes doesnt want to start, nor does it want to be uninstalled. I know i am getting set up for this virus to run again....
I want to burn my computer!!!!!!!!
by the way.... this was my 2nd system restore...
It was harder to do the second time... I think the virus is ever learning. I want to buy a spyware tool... Any suggestions.. Please.. I am sooo frustrated.

Yes, I just got this virus a little ago and I have to say it is the most annoying virus I have ever seen! Every second (literally!) some pop-up said my computer was infected, and plus all sorts of inappropriate sites popped up. I had to go to safe mode and use system restore. I defiantly do not want to get that virus again!

If you do download AVS (One of my friends just did), I recommend downloading Malwarebytes on another computer and transferring it via flash drive to your comp. Change the name of the mbam.exe to something like iexplorer.exe and install it (this should cause AVS to ignore it as a non-threat). If you have something installed, but it won't let you run it (virus error message or the like), reboot because you have a couple second period where you can make the first move after the reboot. Once you have Malwarebytes running, it's only a matter of time until AVS is toast.

We've also had some success with Avast (finds the programs before Malwarebytes, although Malwarebytes is ultimately more thorough - running both in tandem is ideal).

Finally: Do not download it. Do not contact them. If you've given them your money, dispute it directly with your credit company, not with AVS. Downloading it just gives them the ability to keep coming out with more ransomware like AVS.

I WANT ANTIVIRUS FOR THIS COMPUTER

Here's a fix that works. First up, if you can't get into Safe Mode here's a quick tip - log off and then log on again. Straight after you log back on, IMMEDIATELY start hitting CTRL + ALT + DELETE as the PC is starting up. AntiViris Soft works to stop you doing a Ctrl-alt-delete when it's running so you can't find it and end it's evil little process, but the prog takes a few seconds to load when Windows first starts up, so if u trigger the Task Manager before the virus starts, the virus can't stop it launching. Next, click on the Processes tab and end ALL processes that are running under your user name or system admin (Don't end any system or network processes or you'll get blue screen of death and PC will reboot). Next, choose 'New Task' at the bottom of task manager and type in the launch .exe file of whatever antivirius prog you have. (Check in its program folder till you see a file labeled .exe.) Type that in and hit ok, and it will get around the Virus and let you launch your antivirus. I recommend Malwarebytes Antimalware. Good luck!

yeah they ruined my pc ,and got 50 from me antivirus soft are crooks ,criminals,I wish them bad things.

I got satisfaction in putting in a fake credit card number into their purchase programs, and kept sending it over and over again, so to screw up their credit processer. I put "Anti Virus Soft - criminal company" into the credit card name. Sent it over and over again. Hope others do the same.
Used Visa number 4315 6862 6716 7920 and made up the expiry date and number code. These people need to be stopped.

I caught this virus also...I did not download the program unless I thought it was part of AVG update (possible) I have managed to get rid of it by manual deletion in regedit (a somewhat dangerous move, but hunting the info online will get you there) I am thinking the SOURCE is Facebook...while you may know your "friends" you may have joined groups or pages that have members who are spreading this virus. I believe this because twice in the past 2 days my antivirus software has isolated a virus while on FACEBOOK.

@Nick. I'd like to assist in dishing out your suggested punishment. I'd wear my steel-toe boots.

I'm getting fed up & sick of removing these vultures - Antivirus Soft who keep performing fake scans then demand money. Cyber Bandits should be traced & prosecuted. They are currently under investigation.
Remedy:- Start up in safe mode, press F8 while your system is booting up then use system restore.

I fell for this too. I bought the full version and i have been emailing them with the contact us link in the email. I have not heard anything but I hope to get my money back. Does anyone have the support option or a number so I can contact them and get my money back.

Got rid off this by rebooting in safe mode, deleting its entry from the registry and running malewarebytes in safemode. After booting normally again it tried to take over again but was cuaght in its tracks this time. Its main registry entry is under software/microsoft/
run and will contain gibberish like rjought for its program name. I beleive it randomly generates its name so your gibberish may be different. However gibberish entries are not valid programs so delete them.

If we can bomb countries in the name of a supposed threat like Osama Bin forgotten why can we not charge Antivirus Soft with fraud? There is a money trail and a network trail leading right to them. Answer - no one cares. They are free to commit this fraud. Obama? are you to busy pretending to not be freinds with big banks?

I became a victim of this thing. It can happen to anyone, I work in computer securities and it happened to me. It got in and fooled me; the only way I could get it off was to wipe out my laptop and start from scratch. I recently received an email from them asking why my bank is reguesting refund. I'm afraid to respond back in fear it'll sneak in again. I would love to tell the MFer's off about the program and get them to refund my bank, but I don't trust contacting them. Luckily for me my bank already credited the money to my account.

Norton AntiVirus removed it! While waiting for 20 minutes on hold for Norton- and running a full scan- I FINALLY saw Norton removing it. Here are the virus details:

Discovered: October 10, 2007
Updated: October 10, 2007 5:08:11 PM
Type: Trojan
Infection Length: 7,680 bytes
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000

Trojan.FakeAV is a Trojan horse that displays false antivirus alerts and lowers security settings on the compromised computer.

Note: Definitions dated before October 5th, 2009 may detect this threat as Trojan.Fakeavalert.

I made a stupid move, I deleted my internet explorer applications and emptied my recycle bin, but I still get IE popups due to the virus, I can't to the proxy thing, can I just go into safe mode and do the system restore without the proxy setting turned off? I've also been running malwarebytes for an hour or so now and nothing has come up as infected. (i'm using vista) I don't know what to do, I have an Anime convention coming up on march 12th and i'm running a panel, there are video files I NEED for it and the virus won't let me run them, I'm still waiting for malwarebytes to finish and I don't know if it would a good idea to stop it and go ahead with the safe mode technique.

Just reporting to say I had the same situation as SaahFeb18. Malwarebytes only detected 2 things which I assume were not antivirussoft because same warnings were still there. So I sys restored and it's fine so far.

I also love how Norton completely ignores the situation, as usual. Following their normal mantra: If Norton can't fix it, it doesn't exist.

This malware has cost me over $100 and has infected me twice, along with about 10 other people I know. I have reported it to consumer protection, cybercrimes, etc. It's a criminal offense, and everyone needs to report it so the authorities will take notice and stop these people!

Beware that this virus and it's variants are embedded into several "free" applets you can add to your MySpace or Facebook pages. So when someone browses to your page, they get infected. I picked up the "AntiVirus Soft" one this weekend from a friend's page because of a "cute Valentine HTML" app she embedded into her MySpace page. Neither ESET NOD32 nor Trend Micro anti virus programs recognize or stop these variants.

While you can certainly attempt to get a refund from the Pakistani organization that built this damn virus... your better option is to put the charge in "dispute" with your credit card company. They are the ones with the ultimate control here and with this kind of fraud they are especially consumer friendly.

Firsty this thing is annoying and even the safest of people can get this annoying thing.

@rat your talk alot of sh.it for a guy who cant even speak in proper english and as for your grammer don't even get me started. This is a scam and not everyone is aware of it so how about you take your broken ass english back to what ever third world country your from and never show your pathetic face on the net again prick

windows safe mode will not allow me to use the internet to follow the necessary instructions for removal of the program from the bleepingcomputer site...it's really getting on my nerves.

yea this is like the second time getting this effin virus and idk why!!! ggrrrrr all i do is get on myspace and facebook :/

I also fell victim to the Antivirus Live and paid the $69.99 because it seemed legit. Found that IT IS the virus. I thought I removed all traces of it until I installed "StopZilla" and it found 84 infected files from the malicious Antivirus Live. I requested a refund and they told me it would be 5-10 days....let's hope. The money is sent through a terminal in Pakistan!!!

get yourself copy of GNU/Linux and a game console and stop using Windows :-)
And before buying "antivirus" at least check it's recommedation on google !! I don't feel sorry for those who paid for virus it's LOL. "You can't make OS/copmuters idiot proof - they'll create better idiot." Haveing computer should't stop one using own brain. And if you expect someone to warn you about this, do you expect someone to warn tou to don't shoot yourself in the head because you may die ? :-D

I had a problem where it kept poppng up on my screen saying i was infected and would not let me go to any other screen. Now I can't find a number so I can request a refund. Please help and send a number if you have one.

whoever created antivirus soft should be kicked in the scrotum for 5 minutes strait on top of whatever they get from the judge

Help... we have this on one of our computers; I can't even get into Safemode using the f8 key; we are running windows XP.

I had the same problem with that Antivirus soft ***. All I did was reboot the computer to safemode with networking then to system restore and roll it back to a date when it was working fine.You must have System Restore enabled for this to work. So far no more problems for me. Hope this helps and no one else is forced to spend 70 dollars.

Brian xavier- what is the support option you speak of? I just got it yesterday 2/12 since you had it so soon, I was wondering if you could guide me through the process you took. I'm on my laptop and can't even get on the internet on the comp that got the virus. Is there a number to call? Probably not these criminals are invisible. I am an idiot for paying for the full version and now like you would love to deman my money back...how?

is there a site or email adress that works to get a hold of the antivirus soft ?

yea today antivirus soft popped up on my computer and wouldnt let me access anything but their site unless i downloaded it so i was a dumb ass and downloaded it and as soon as it started to download everything started working .. so now i get to battle with them to get my 69.95 back

I consistently get this virus off Myspace. annoying, but fortunately one of the easiest to remove manually.

if you do happen to purchase and install the "full version"all is not lost. I did and then accessed the support
option and demsnded a full refund and they gave it to me. the
full version is also uninstallable.I then used anti malware bytes to remove all remnants. hope this helps someone.