Thursday, January 08, 2009

How to Antivirus 2008 and Antivirus 2009

"Antivirus 2009 is a type of Rogue AntiSpyware Programs.

Rogue anti-spyware programs are fake applications that are cleverly disguised to behave like legitimate spyware removal programs. Rogue anti-spyware programs are usually created by hackers with the sole purpose of rendering a sale for the rogue application. Many rogue anti-spyware programs use deceiving tactics to entice computer users to purchase the rogue anti-spyware program. In many cases computer users do not realize that they have downloaded or installed a fake anti-spyware program until after the sale has taken place. Rogue Anti-Spyware Programs are bogus applications that usually require an extra effort to completely uninstall or remove from your system. Computer infections such as Trojans are known to install rogue anti-spyware programs which do not remove parasites or justify the abnormally high cost of the full version. "

http://www.spywareremove.com/removeAntivirus2009.html

Antivirus 2009 (or Antivirus Pro 2009) Descriptions:

Antivirus 2009, also known as Antivirus Pro 2009 or Antivirus 2009 Pro, is a series of rogue antispyware application that created to ruin the integrity of our computing experience. Antivirus 2009 is fake and malicious, with the intent of screwing up your computers. Antivirus 2009 is a clone of the infamous Antivirus 2008. It is somewhat ironic to see a fake antivirus application got upgraded. Guess we are living in an usual world and nothing really surprises us anymore. Generally, Antivirus 2009 usually comes up after you installed a video codec that come with Trojan, malware and virus. Antivirus 2009 normally generates fake and misleading system popup error messages so end-users will be tricked into purchase Antivirus 2009.

Screen shot of Antivirus 2009:
av09

(Screen shot of Antivirus Pro 2009)

It is more important that ever to remove all the components of of the Antivirus 2009, and all the malware and trojans that it might have come bundle with (such as zlob.trojan, trojan.vundo and Trojan.Downloader). We don’t want someone spying on our digital life, do we? To effectively and safely remove Antivirus 2009, we have created a manual removal instructions. Be sure to back the data up before proceeding. Good luck!

Download SpyHunter* Spyware Detection Utility

Manual Antivirus Pro 2009 Removal Instructions:

Stop Antivirus Pro 2009 Processes:
(Learn how to do this)
av2009.exe
av2009[1].exe
AV2009Install.exe
Antivirus2009.exe
utynewu.exe
install.exe
brastk.exe

Find and Delete Antivirus Pro 2009 Files:
(Learn how to do this)
av2009.exe
av2009install.exe
av2009install_0011.exe
av2009[1].exe
Antivirus2009.exe
ieupdates.exe
scui.cpl
%program_files%\antivirus 2009\av2009.exe
%startmenu%\antivirus 2009\antivirus 2009.lnk
%startmenu%\antivirus 2009\uninstall antivirus 2009.lnk
winsrc.dll
%desktopdirectory%\antivirus 2009.lnk
winsrc.dll
ieupdates.exe
av2009install_0011.exe
av2009install.exe
%program_files%\antivirus 2009\av2009.exe
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Antivirus 2009.lnk
%UserProfile%\Desktop\Antivirus 2009.lnk
%UserProfile%\Start Menu\Antivirus 2009\Antivirus 2009.lnk
%UserProfile%\Start Menu\Antivirus 2009\Uninstall Antivirus 2009.lnk
%ProgramFiles%\Antivirus 2009\av2009.exe
%System%\scui.cpl
brastk.exe
icilosaqi.dll
install.exe
isygequdy.lib
wini101971.exe
wscui.cpl
_scui.cpl
antiviruspro2009.exe
avengn.dll
utynewu.exe
icilosaqi.dll
utynewu.exe
install.exe
brastk.exe
wini101971.exe
%program_files%\antiviruspro2009\uninstall.exe
%program_files%\antiviruspro2009\wscui.cpl
%programs%\antiviruspro2009\antiviruspro2009.lnk
%programs%\antiviruspro2009\uninstall.lnk
%program_files%\antiviruspro2009\antiviruspro2009.exe
%program_files%\antiviruspro2009\uninstall.exe
%desktopdirectory%\antiviruspro2009.lnk
%profile%\application data\microsoft\internet explorer\quick launch\antiviruspro2009.lnk
%program_files%\antiviruspro2009\antiviruspro2009.cfg
%program_files%\antiviruspro2009\antiviruspro2009.exe
%program_files%\antiviruspro2009\avengn.dll
%program_files%\antiviruspro2009\data\daily.cvd
%program_files%\antiviruspro2009\htmlayout.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\microsoft.vc80.crt.manifest
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcm80.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcp80.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcr80.dll
%program_files%\antiviruspro2009\pthreadvc2.dll
%program_files%\antiviruspro2009\pthreadvc2.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcr80.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcp80.dll
%program_files%\antiviruspro2009\microsoft.vc80.crt\msvcm80.dll
%program_files%\antiviruspro2009\htmlayout.dll
%program_files%\antiviruspro2009\avengn.dll

Remove Antivirus 2009 Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run ieupdate

Antivirus 2009 criminal address- BE AWARE!


For those innocent users seeking the information regarding the criminal individuals who are stealing money by selling a bogus software program called Antivirus 2008 and Antivirus 2009 here is their domain address details:

PROTECTEDINTERNET.COM - Domain Informationnew
Domain PROTECTEDINTERNET.COM [ Traceroute RBL/DNSBL lookup ]
Registrar GODADDY.COM, INC.
Registrar URL http://registrar.godaddy.com
Whois server whois.godaddy.com
Created 26-Aug-2006
Updated 19-Dec-2008
Expires 26-Aug-2009
Time Left 228 days 21 hours 43 minutes
Status ok
DNS servers NS1.DSREDIRECTION.COM 204.13.160.15
NS2.DSREDIRECTION.COM 204.13.161.15
PROTECTEDINTERNET.COM - Geo Information
IP Address 208.73.210.121
Host protectedinternet.com
Location US US, United States
City Los Angeles, CA 90071
Organization Oversee.net
ISP Oversee.net
AS Number AS33626
Latitude 34°05'33" North
Longitude 118°25'50" West
Distance 10629.19 km (6604.67 miles)

Registrant:
Deerwood Investments, LLC
7362 Remcon Circle
El Paso, Texas 79912
United States

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: PROTECTEDINTERNET.COM
Created on: 26-Aug-06
Expires on: 26-Aug-09
Last Updated on: 19-Dec-08

Administrative Contact:
Manager, Domain deerwooddomains@gmail.com
Deerwood Investments, LLC
7362 Remcon Circle
El Paso, Texas 79912
United States
3124924577 Fax --

Technical Contact:
Manager, Domain deerwooddomains@gmail.com
Deerwood Investments, LLC
7362 Remcon Circle
El Paso, Texas 79912
United States
3124924577 Fax --

Domain servers in listed order:
NS1.DSREDIRECTION.COM
NS2.DSREDIRECTION.COM
===========================================
THIS IS THE SERVER STEALING CREDIT CARDS:

http://world-trusted-payments.com/termsofuse.php

Innovagest 2000 SL
Cl Pedro Teixeira 10, S 25
28020 Madrid
tel: 0034 93 206 0230
fax: 0034 93 206 0231

WORLD-TRUSTED-PAYMENTS.COM - Domain Informationnew
Domain WORLD-TRUSTED-PAYMENTS.COM [ Traceroute RBL/DNSBL lookup ]
Registrar BIZCN.COM, INC.
Registrar URL http://www.bizcn.com
Whois server whois.bizcn.com
Created 01-Dec-2008
Updated 01-Dec-2008
Expires 01-Dec-2009
Time Left 325 days 21 hours 30 minutes
Status clientDeleteProhibited clientTransferProhibited
DNS servers NS1.FREEYOURDNS.COM 84.243.196.136
NS2.FREEYOURDNS.COM 64.86.17.44
NS3.FREEYOURDNS.COM 78.46.86.4
WORLD-TRUSTED-PAYMENTS.COM - Geo Information
IP Address 88.198.0.143
Host world-trusted-payments.com
Location DE DE, Germany
City Gunzenhausen, 02 -
Organization Hetzner Online AG
ISP Hetzner Online AG
AS Number AS24940 Hetzner Online AG RZ-Nuernberg
Latitude 49°10'00" North
Longitude 10°75'00" East
Distance 1203.64 km (747.91 miles)

Domain name: world-trusted-payments.com

Registrant Contact:
Private person
Vitaly Buraev onicdomains@yahoo.com
+74952676435 fax: +74952676435
ul. Akademicheskay 76-23
Moskva Moskovskay oblast 114845
ru

Administrative Contact:
Vitaly Buraev onicdomains@yahoo.com
+74952676435 fax: +74952676435
ul. Akademicheskay 76-23
Moskva Moskovskay oblast 114845
ru

Technical Contact:
Vitaly Buraev onicdomains@yahoo.com
+74952676435 fax: +74952676435
ul. Akademicheskay 76-23
Moskva Moskovskay oblast 114845
ru

Billing Contact:
Vitaly Buraev onicdomains@yahoo.com
+74952676435 fax: +74952676435
ul. Akademicheskay 76-23
Moskva Moskovskay oblast 114845
ru

DNS:
ns1.freeyourdns.com
ns2.freeyourdns.com
ns3.freeyourdns.com

Created: 2008-12-02
Expires: 2009-12-02