How to Manually Remove Antivirus System PRO

Member

By A.M. Trent
User-Submitted Article

Article Rating: (21 Ratings)

Antivirus System PRO is fake antivirus software program that scams individuals out of money. Even if you do not choose "yes" or "no" for the download it may sneak onto your computer and create problems such as pop-ups, slow performance, change in settings, and for those who choose this service they charge money and offer no protection. What should you do if this program attacks your computer? Here are some tips to help you manually remove the malware.

Difficulty: Challenging

Instructions

Things You'll Need:

Patience
Back-up of your computer system and registry
Some computer skills

Step 1

Remove the pop-up advertisements temporarily and end bad processes:
* Push Ctrl + Alt + Delete at the same time
* Choose "Task Manager" in the Windows Security menu
* Click on the "Processes" Tab
* Search for the following processes: Antivirussystempro.exe, uninstall.exe (if constantly running), and sysguard.exe
* Disable these processes by clicking the "end process" button
Step 2

Conduct a search on your computer for Antivirus System PRO files:
* Go to the start menu and click the search button
* Make sure you search "All files and folders" in the "Local Hard Drive" or C Drive
* Type "Antivirus System PRO" in the search box and search for all of these files including:
c:\WINDOWS\system32\iehelper.dll
%ProgramFiles%\Antivirus System PRO\conf.cfg
%ProgramFiles%\Antivirus System PRO\mbase.vdb
%ProgramFiles%\Antivirus System PRO\quarantine.vdb
%ProgramFiles%\Antivirus System PRO\queue.vdb
* If none of these files appear, then you may have to search for each file individually.
* Search and delete the following folder:
%ProgramFiles%\Antivirus System PRO\
Step 3

Create a backup file of your entire registry. One way to do this is to generate a system restoration point:
* Click Start, All Programs, Accessories, System Tools, System Restore
* Choose "Create a restore point" and click the Next button
* Type in a name to recognize the restore point and click "Create"
Step 4

Remove files from the registry:
* Click Start, Run, and type "regedit" in the available field.
* Hit the Enter key, or click "OK", and the registry editor should appear
* Select Edit, Find, and search for the following:

HKEY_LOCAL_MACHINE\SOFTWARE\Antivirus System PRO

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antivirus System PRO

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Antivirus System PRO”

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad “ieModule”

HKEY_CURRENT_USER\Software\AvScan

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “system tool”

HKEY_CLASSES_ROOT\CLSID\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}

* If you locate any of these files, right-click the file and select "Modify" and "Delete"
Step 5

Remove DLL files for those who have c:\WINDOWS\system32\iehelper.dll in their processes:
* Go to Start, Run, type "cmd", and click "OK"
* Type "cd", enter a SPACE, and type c:\WINDOWS\system32\iehelper.dll
* Once the file is located, type regsvr32 /u iehelper.dll and hit "Enter"
Step 6

Search the local hard drive once more for "Antivirus System PRO" and "SYSGUARD" separately to make sure all of these files are deleted.
Step 7

Restart the computer. If no pop-ups appear after restarting the computer then the malicious software should not be on your system. Double check to make sure the Antivirus System PRO software has not returned.
Step 8

Repair any damages that may have occurred from the malicious software or deletion. Check to see if your desktop icons and homepage have been changed or moved.

Comments

13dogs said

Flag This Comment

on 12/4/2009 I cannot open Task Mgr., Add Rmv. Programs, start Stopzilla ,Malware Bytes or any program for that matter in order to even begin to get rid of it. Every single time I try to open just about anything but the start menu I'm stopped immediately by AS Pro. I'm really stuck now.

muazzam said

on 11/30/2009 hi ciaramay22,
could you please check your internet settings? my brother was having the same issue but i found that the internet setting in IE got changed and only firefox was working.
GOTO TOOLS->INTERNET OPTIONS -> connections tab
click on LAN Settings.
UNCHECK the proxy server setting AND CHECK the "Automatically detect settings" and click OK.
RESTART YOUR IE Browser. It will work.

ucbeb30 said

on 11/30/2009 You need to go into IE and click Tools and Internet Options. Then click Connections. Click Lan Settings and make sure Proxy Server is unchecked.

caedus said

on 11/29/2009 The virus is gone, but now IE won't work anymore, only Firefox will. Help/

ciaramay22 said

on 11/28/2009 i seemed to get rid of it but my ie still wont work even after uninstalling and reinstalling, same with chrome and safari, mozilla is the only one working. any advice?