Antivirus Live Virus

[JLB]

The irony of this does not escape me, but last night during Survivor we decided to google Russell Hantz to see if he is as phony as he appears to be (which he is), using DW's spiffy newish LT with the latest version of AVG, updated up to date, and we picked up the Antivirus Live virus.

Dang thing took everything over.

I somehow managed to disable it late last night and ran an AVG scan, which detected no threats.

This morning Antivirus Live is still in there, still has taken everything over, and I cannot get it disabled in order to access the Internet, which it blocks.

I am studying the problem on Ole POC, with WIN 95, using AOL dialup.



Any suggestions?

[bigfrank]

if you can get it on line and over to ANTIVIRUS - Download - SOFTWARE - Buy - Antispyware - Antispam - CLOUD Protection - PANDA SECURITY to run there online scanner that might help.

[syngi]

Hello,

Boot your PC is "Safe Mode with Networking" and remove the following files:

%UserProfile%\Local Settings\Application Data\<random>\
%UserProfile%\Local Settings\Application Data\<random>\<random>sysguard.exe

As you can see, the main folder is named randomly and the main process will be something like muytsysguard.exe.
More info: How to remove Antivirus Live

Then download MalwareBytes anti-malware. Install, update and run a full system scan.
Download Malwarebytes Anti-Malware 1.42 - FileHippo.com

Good luck!

[JLB]

That is the same instructions I got when I googled. I am not all that confident in removing stuff, and just as I got to that point I said, "Am I really going to delete stuff because some stranger on the Internet said to?"

I have deleted sysguard entries using the CAD method. That deactivates it for that visit but when I log on again it comes back.

Stuff has been corrupted. That's the message I get when I run AVG, which will not complete. I also cannot access the Internet.

I also have the flu so am not at my sharpest.

[JLB]

Quote:

Originally Posted by syngi

Hello,

Boot your PC is "Safe Mode with Networking" and remove the following files:

%UserProfile%\Local Settings\Application Data\<random>\
%UserProfile%\Local Settings\Application Data\<random>\<random>sysguard.exe

As you can see, the main folder is named randomly and the main process will be something like muytsysguard.exe.
More info: How to remove Antivirus Live

Then download MalwareBytes anti-malware. Install, update and run a full system scan.
Download Malwarebytes Anti-Malware 1.42 - FileHippo.com

Good luck!

While I was figuring out how to do this I stumbled on to System Restore, and restored it to two days before the infection. I am on that computer now and everything seems to be OK.

AVG started a scan on its own.

[StressCadet]

Use the MalwareBytes program! My son contracted this virus on our computer and it was relentless. That MalwareBytes program was the only thing that got rid of it.

[JLB]

System Restore still seems to have done the trick.

[tonyg]

I would still run another malware scan if AVG does not show it as quarantined.

[chriskre]

I took you guys advice and put in the free malwarebytes software and it found 10 infected items and that was after AVG found the Facebook virus we had last month.

How many viruses can be in there and the computer keeps running?
I don't understand all this virus crap.

[bigfrank]

Quote:

Originally Posted by chriskre

I took you guys advice and put in the free malwarebytes software and it found 10 infected items and that was after AVG found the Facebook virus we had last month.

How many viruses can be in there and the computer keeps running?
I don't understand all this virus crap.

Some virus are not just set up to stop or crash your computer some track you and try to steal your infomation like passwords some take over your computer and send out emails.