Antivirus 2009

1. Download Malwarebytes’ Anti-Malware (mbam-setup.exe) and save it on your Desktop.
2. After downloading, double-click on mbam-setup.exe to install the application.
3. Follow the prompts and install as “default” only
4. Before the installation completes, check on the following prompts:
- Update Malwarebytes’ Anti-Malware
- Launch Malwarebytes’ Anti-Malware
5. Click “Finish.” Program will run automatically and you will be prompt to update the program before doing a scan. Please update.
6. Scan your computer thoroughly.
7. When scanning is finished click on the “Show Results”
8. Make sure that all detected threats are marked, click on Remove Selected.
9. Restart your computer.

Note: Antivirus 2009 may prevent mbam-setup.exe from downloading and running. You can download and rename this program from a different computer before running it on infected system.

Webmaster- Thank you so much for the Anti-Malware! I was trying all day today to get rid of it and this worked like a charm. Best of all it was free! I was getting so frustrated too. I accidentally downloaded it and it made my computer all wacky. Thank you very much for the help.

That’s great. That problem bothered me for a few days. Thank you so much.

i just wanted to add a new way to get rid of the antivirus 2009
you can delete the file containing the program, but first, enter the task manager, selest the processes tab and end the process of the antivirus 2009, you can easely find it, as it ends with 2009. when you select it, click end process. then, just delete the file in programs files and here you go, no more annoying alerts. i am giving you this alternative because the download of the uninstall program didn’t workout for me, just to help those who got the same problem that i had

I researched thoroughly the best anti-spyware and downloaded and purchased it. Nothing took out the Antivirus 2009. I tried Paula’s suggestion and it was gone. Thanks so much for the idea of stopping the program and removing it.

i did a system restore went back a couple days it was gone

When I got this virus Windows xP would not let me do a system restore ..

It kept saying ” Cannot perform system restore from this date chose another date”

id did thid but it would not restore from any date..

Yea, Paula — you just saved me $140 with Geek Squad to remove this thing!

Thank you Paula. Your suggestion worked perfectly and took less than a minute. You saved me hours of scanning with programs I suspect would have done nothing. THANKS AGAIN!!!!

I wonder how Paula succeded this way. Directory and program are protected from deletion?

I did a system restore and poof if was gone.

i did system restore and havent had any problems but dos this mean its gone for sure?

Anyone got phone number, address or any contact info for Anti Virus 2009? I have authorized payment and need to cancel, having found it is fake. Thanks!!

they caught me hook line and sinker now I need to try to get back my money

system restore and simple deletion can never completely remove this malware. because

1. it never comes alone. after infection, it soon downloads a bundle of trojans among other things.

2. it changes registry.

however it can be removed manually by cleaning all the infected files, killing the related processes and making the necessary changes in registry. instructions for manual removal are also available on the net, just google it.

Paula’s idea was a charm. I did exactly what she said, then did a system restore for good measure and antivrus 2009 was completely gone upon restart.
THANK YOU!

how clever ^_^ paula’s suggestion worked. its just the way that you can’t delete such program when it is still running ^_^

As long as you stop the process from within task manager you can delete the main .exe file. Note that you also have to remove the registry entry that runs it at startup otherwise you will get error messages saying it cannot be found when you restart. It’s in HKCU/Software/Microsoft/Windows/CurrentVersion/Run. Just delete the key that mentions Antivirus 2009. There are also a couple of infected dlls - it’s safe to delete winsrc.dll, but DO NOT delete wininet.dll, let your antivirus diinfect it.

grea!!!thank u so much paula it really works .? did what she says and it was totally gone :)))))

Big mistake…. They charged me 109.00 and I have been emailing them none stop for a refund….. I had a heck of a time getting ride of the program off my computer…….. It was my sons computer….I am not getting any responses from their support team…. (imagine that) Does anyone have the phone #?

There Phone number is 1-800-467-1077

The program worked perfectly, thank you so much!

Winnie, if you did not download the progam and are not seeing the symptoms described, then you are fine.

PAULA, you are an angel, thank you sooooooo much. That was amazing, cheers
Warm regards
Debs xxxxxx

1-800-467-1077 THIS IS THE NUMBER TO CALL TO GET YOUR MONEY BACK. AFTER THE THIRD TIME I CALLED WITH MY ORDER NUMBER ON HAND I GOT A CANCELATION AND CONFERMATION NUMBER. THEY TOLD ME IT WILL TAKE 7-10 DAYS BEFORE MY ACCOUNT WILL BE CREDITED. DONT GIVE UP GET YOUR MONEY BACK!

Also, the direct line to a REAL Customer Service Rep is 1-866-905-5126. This is an internet service representative. Press 3 to cancel your subscription and a real rep will come on the phone. I hope this helps out.

Paula.you’re a star!

thanks man,i finally killed that thing.it was driving me crazy.

thanks paula i done what u said it removed the antivirus 2009

Thanks you guys…this antivirus was bein a real nuisance..i jus installed the malware and rebooted..everything is back to normal..paulas comments are very useful too.

tnx, paula! sooo…much..
i was so worried when i searched for this thing and a lot says its a fake one…
tnx to you that i got rid of it already…(”,)

hmm…i can’t find this thing in program files, and it isn’t in my task manager either, yet i still get bothered by it a lot.
Any suggestions?

great software. had antivirus 2009 and was frustrated for 2 long evenings of trying to get rid of it. used your free software and it was gone…like magic.
Thank you so much

This software program is the best. I told you it is the best and it is free.

I was about to go to A computer tech , to get rid of it . But thinks to Malware it,s gone .

hey,
i have strange situation… i am still getting notice and popup from antivirus 2009 and some time wista or vista antivirus2008 also pop up messeges come for dating and win money from frmsg.com

i have installed AVG free 8
Spybot Search and Destroy
Lavasoft adaware
Windows Defender
And High level windows firewall

i know this are virus popups so after having it very first time i scanned my computer from all above listed and they found various trojans and malvare. they removed all. but still i am getting those popups.

i checked processes and none of the processes says antivirus2009
i have checked every files and dll files, neither exists or infected, but still i receive notifications…
Please Paula or anyone with his expertise.. help!!!

p.s.
i yet not have installed virus for sure.. just receiving unwanted popups….

Thank you paula!!!!!!!

I don’t meant to sound “dumb” but how do you enter the task master?

karen I did not know how to do that either until somebody told me. You just hold down Alt and then with the other hand press Ctrl and Delete at the same time. Then a window will come up with a list of things and Task Manager is on it. I did successfully stop antivirus 2009 from running and then I deleted it from programs but even now every time I boot up it has come back and I have to go to Task Manager to stop it from running again. But it no longer shows up in my all programs list or even in a search on my computer. So my problem is not yet solved. It is still somewhere in my computer. Somebody HELP!

YES! I finally got brave and followed the webmasters instructions and installed Malwarebytes’ Anti-Malware . I did what it said and rebooted and I think the antivirus2009 is finally gone! Thank you webmaster! You saved my sanity! And it was free!

To Enter the task manager hit ctrl+alt+delete at the same time and BAM you have the task manager up.

Thanks Paula! That worked like a charm!

thnx paula… ur suggestion really works…
:-)

i also follwed the webmaster instructions and was 100 % successful, no more pop-ups , no anything!! Thank you so much!!!!

i what a refund i download your deal on my computer and now it did not help me get rid of the virus im asking for a refund of 79.95 back and stop taking 9.95 out

reality check people: The kind folks behind this malicious, bogus ’software’ are not interested in getting you your money back. They are clever snake-oil salesmen foisting this crap on you, and you fell for it. Let me guess, Antivirus 2009 detected 37 viruses or trojan horses on your computer, didn’t it? ‘Google Tips’ recommended you register the product when you went to google, didn’t it? It looks legit for about 30 seconds, then you realize it’s a well executed sham. Don’t waste your time on the phone. Dispute the charges with your credit card company. They should be on your side. Don’t you dare let them keep your money. I hope the people behind this filth end up in prison. Good luck.

Thank you Paula! You just saved my mom a ton of money trying to rid her machine of this garbage. Money that she can use towards a mac. hehehe

I did everything paula said and pop ups still come up saying a i have a secuirity problem. I also have antivirus 2008 xp is that bad? antivirus 2009’s icon is still on my desktop and listed in all programs and when i uninstall it doesnt work. antivirus 2008 xp pops up and wants me to activate antivirus 2008 for money which i’m not doing. Im thinking of ending the process for av2008xp but I’m afraid if that is really and anti virus thing that it would make me very vulnerable. What do i do?! someone help

Dispute the charge with your credit card company. I did and the amount was credited to my credit card. I also placed a “freeze” on my credit reports.

I got XP Antivirus 2008 and others, they wacked out my computer…did not let me do system restore, hide my C:// drive, penal control and Task manager. i just download Malwarebytes Anti-Malware and run…it works out really good. You need to turn off system restore then scan couple time until your systen clean then turn back on.

I called the 800-467-1077 and demanded that they issue me a refund. It took them awhile to “process”, but they stated that I would receive it within 2 weeks. They kept telling me that the amount charged would be refunded, until I demanded to know the actual number. It was NOT the same as what was charged, so I told them how much to refund my credit card. Also, I contacted my credit card company and they recommended canceling the card to prevent any future charges. Now to see if I actually get my money back!

Why would anyone be asking for a CD key for this program, it’s a fake program people!

Don’t trust ANYTHING that just pops up on your computer like that. There are a few well know antivirus companies like Norton, TrendMicro, AVG, etc that you can buy in the store that are legitimate.

Don’t trust anything basically on the internet that wants to install itself on your computer, unless you are doing Windows Updates or something.

One of the ways this Antivirus XP, ANtivirus 2009, etc, installs itself is through fake video codec downloads, and i just read that there has been fake Adobe flash player updates that are infected to download this malware onto your PC. Also there is a couple new emails going around about fake IE7 downloads, and MSN fake news articles, which install trojans like this.

So you can never been too careful, it sucks but that’s how it is.

I am going to spend my sat night fixing at least 3 pc’s that affected with this rubbish. Thank god somebody has come up with a fix. I did approx 3 system restores and finally got rid of it but will use this programme as well. Wish me luck!

I got *brave* as well, downloaded the (free) malwarebytes antimalware program and proceeded.
I did quick scan, then a full scan to double-check. BINGO.
And Pff… antivirus seems to have gone, what a pest and how ugly and disgusting people are creating such DECEPT?VE trash.
Thank you Malwarebytes, for the software, easier than a manual action, besides I could not locate the antivirus in my task manager, but could have *overlooked* it. Now I think/pray it has gone

Thanks Paula your Idea worked Great.. To all the people that have questions about this virus READ PAULA’s POSTING……It’s Works and it’s easy… Blessings

I tried Paulas way, and I when I try to delete the AV2009 folder, I get access is denied.

So, one of my kids downloaded this “wonderful” program. It seems to have taken over my computer. It won’t let me open hardley any web pages. I can’t download anything, including the free mala ware to get rid of it. Can’t even send email. Any ideas?

I woke up one morning to find that I may have to reformat my computer because I was unable to surf the web. Thank God there was Malwarebytes, it took care of everything!

I’ve used Malwarebytes’ Anti-Malware and successfully removed Antivirus 2009 but it also removed my Start Menu from Windows XP. Does anyone know how I get this back safely? I don’t have the installation disks for Windows XP.

One issue I’ve encountered while dealing with a clients computer is that it actively updates when connected to the internet and learns from what other users do. One particular instance locked Administrator out of Cmd prompt and taskmgr, I was able to unlock them through manually editting the registry, then went and manually deleted the software.

i did a system restore and it came back. im trying to do what paula said but i cant see any antivirus 2009 in my processes tab?

You dont have to do what paula did, why dont you just download the malwarebytes, its at the top. And follow the instructions.

Does anyone else have AV2009 blocking IE? It only block certain websites at certain times, as I’m on here now. I deleted most of AV from the Program Files so that it doesn’t pester me to buy it anymore, but sometimes I still can’t get online. Any suggestions there?

Can you tell me how to change yhe date on system restore fo windows vista? I tried changing the date but did not work.Do you just put in the date or do you have to add a file name?

I tried Paula’s way, but do I need to restart my computer afterwards to get it to work? i’m still getting the blocked crap when I open up internet explorer.

Hello Paula
I am from Switzerland - I had also the AV2009 on my computer. Thank you so much, I tried your way to remove it and now I am so happy, no AV2009 more on my PC. Thanks Julia

I cant do a system restore either, trying to get rid of this av2009. Also downloaded tweakram as part of the bundle and cant remove this either from the ad/remove. Any suggestions?

Thanks Joshua for the phone number. I got my money back from these slime buckets. Next time I will just go to the system recovery.

can some1 tell how can i get the registration key of antivirus 2209?

Unfortunately Paula’s comment althoug a temporary fix doesn’t get rid of the Trojan horse embedded deep in you rprogram files. You need to do a full scan with one of the programd suggested above to get rid of it completely. I did a scan with Spyhunter and it picked it up. I am a cheapscate so i got the free version which won’t remove it, just tells you where the infections are. So I manually removed all of the files that Spyhunter was so kind to tell me.

Hope you all know that a Trojan Horse is something that people put on your compter to gain access to passwords and such.

rony there is no antivirus 2009 it is a fake program. You have been hacked.

Friends laptop had this piece of crap in it nothing would get rid of it. She found a program that said it would get rid of it but then found you had to pay for it also (another scam) so I suggested trying a program called SuperAntiSpyware which is ”free” and it worked.
I had used this free program on another computer that was full of trojans and virus’s and it got rid of them all.
So now when I set up a computer I download and install the SuperAntiSpyware free program which also can be updated.

Thank you sooooo much webmaster!!! I downloaded the Malwarebytes.exe and it took care of all the infected files, reg keys, and reg values. I had tried Paula’s way, and it didn’t work for me, so I was glad when this did. Thanks again!

Thank You ever so much Paula. system back as it was. the AV09 is really a scam!
The Task manager works find., CTRL+Alt+Del
Although, my delete key didnt work, i figure it out at the end. It was so simple to do. Thanks a million!

SuperAntiSpyware worked like a charm. I have yet to try Malwarebytes’ anti spyware.

This is a nasty one to try to remove manually, so I would suggest using one of the above FREE programs to do the trick.

Also, would the guy with bad engrish asking for a reg key for a completely fake program please /wrists.

Thanks

Ok, so this is scam, remember that, you don’t want to register it or anything. I tried to shut it down via task manager, but it didnt show on the processes. My dad was able to find out some of the basic file names that av2009 installes itself in, so i did a windows search for: ieupdate.exe and av2009, several ieupdates popped up, my dad did a cross check on his comp to make sure that i wouldnt be deleting an essential program, and i deleted them (there were about 5 programs in all). I wouldn’t suggest doing it that way unless you know for a fact the you arnt deleting part of the operating system. This has worked for me so far. also, if you can’t surf the web because of this, if you use google as your homepage, av2009 basicly hijacks it, so id suggest making msn your homepage in the meantime, i was able to surf the web without all the pop up’s using msn instead of google, hope this long and badly worded post helps, gl

I downloaded malwarebyte antivirus software and it worked fine and removed “antivirus 2009″ a fake. Do not waste time with a registration key as it is part of the fake antivirus 2009 virus. I will be surprised that anyone will get any money back from these people. Why would they return you money? They are criminals.
If you paid by credit card, I called the cc company to challenge this charge and the credit card company, VISA, immediately refunded my $79.95 without questions. gt

Downloaded and ran the program. Worked like a charm. Thanks!

im lucky i clicked no and it started fake cheqeing the PC i nearly clicked to download but i had an idea to click ignor but i would not go away so I taped an other website in and looked on google about antivirus2009

malwarebytes got rid of virus 2009, free and easy.

OMG!! :D this is the happiest day of my life. lol i was stressing so much about this virus thing and its heaps and heaps of pop ups but now im pretty sure its cured! YAY!! Thanks everyone!

THANKS A BUNCH PAULA GREAT ADVICE

The first step is done on a clean PC.
Download AVG free. Next Install AVG free, and update it. Shutdown Windows. Hang the Hard drive in question as a slave, or use an external enclosure. Boot your PC, and scan the infected hard drive. Remove the files- done. Works perfectly every time.

on your own risk only!!!!
if this problem happened before installing new programs try to reload last system restore that you have.
If not try this solution:
1. go to task manager, end the process av2009.exe
2. search for file av2009*.* on all hd.
3. dell every file that containing av2009
4. go to registry export all of the registry to a file
5. find av2009 dell every match in registry
6. restart computer the computer
Good Luck,
Amir Chen

Hello guys..
Today I finally found the solution to the virus… I fixed half of it yesterday but did not know what to do to get back my programs on start menu… After searching for a while. i fould something that TOTALLY cleared my PC in a matter of 15 min and i just had to run it.. I am OMG soooo HAPPY…. it was a pain in the ass and it was the worst virus I have dealt with… so here is the link if anyone is interested in trying.. http://www.bleepingcomputer.com/combofix/how-to-use-combofix

hope it fixed yours as fast as it fixed mine.. and do share with others..
Cheers

Hi, I had really bad times with this antivirus 2009 and i desperately wanted to get rid of it, i tried everythin i know but nothing turned out to be good

thanks to you pal, I just followed your instructions and everything is just fine now. I really appreciate your help..-:)

If are havving trouble deleting the file folder of AV2009 you can just rename it, that seems to work

malwarebytes is awesome it removes it no problem

i got the problem about my computer
by use antivirus 2009,please help me for result my problem

I spent $79.00 on this “product” is there any legal action I can take?

my friend is also robbed of from Antivirus 2009 professional. He paid through credit card and result found to be a trap ofa fake company. Bank is asked to cancell the card. Menawhile, GBP105 is been transferred. . The company, billed for this, Jettis international is repeatly saying to be paid in week time. but not reliable. Any body can help saying what way he can get money back from this criminals? Let other know how they are operating and going scot free.
how they can work like this?

The tool works like a charm!

It wasn’t in my processes, so i downloaded firefox instead of internet explorer, then did a complete clean with AVG antivirus, CCleaner and then downloaded malwarebytes and spybot search and destroy….nothing like an overkill!!!
I have run the lot and cleaned extensively…I don’t really want to have to format my hard drive.

Anyway, it looks like it’s gone. I tried system restore and it would not let me do it. I know that it’ll be hiding somewhere on my system though….any further ideas?

why do people keep asking for the key for antivirus 2009…..that is the problem!!!!

I aint a pc whizz, but even i know that!!!

malware did the trick. ive been trying to get this crap out of my computer for days now and it is finally gone. it should be illegal for people to make these adware and spyware things that infect peoples computers. i hope one day it is and those who do it go to prison where they can get married to big bubba!

I just called 1-886-905-5126 with my card number and they cancelled the purchase and gave me a confirmatin number. 7-10 days the charge of $109.45 will be refunded to my card. Thanks everyone for the phone numbrer.

I am a computer tech and have removed this cr*p from at least 4 ppl’s comps this week, this trojan can be very sophisticated even blocking removal tools such as hijack this and syninternals autoruns from running. If you were duped into paying 100 dollars or whatever, CALL YOUR Credit card company and do a charge back on the transaction. They will give you your money back and the charge back penalizes the offenders credit card account, if they get enough charge backs the credit card processing will cancel their processing account. I have been in industry for 10+ years, trust me on this. THanks…-Tim

oh come on i wasted $208 dollars just for the 2 laptops which my son wanted one so thats it by the way thanks webmaster and paula i owe u alot, i just removed “The Fake AntiVirus 2009″ thx very much!!!!

the phone number to contact the antivirus 2009 if you purchased it is 866-905-5125

Hope this info works - thanks

Thanks for the anti-malware, best I’ve had and free,
got rid first time. THANKS AGAIN micko

I have not purchased this program but I can’t block their pop-up ad. It keeps popping up several times each day. I used Internet Explorer tools and set to block all pop-ups but I still keep getting the ad.
Any way to block this?

Can i know whether anyone do get their refund. I manage to call the number 1.8004671077 and i spoke to a lady called judy. She said she will refund me in 7 days time. Do i have to wait or is it better to call this no 866-905-5125 instead?

To Lawrence Rasero

I too could not get rid of the pop-up so I bought the program - a bad desicion.

Try their support at support@billingware.net.
Or telephone (USA) - +1.8004671077.

I have not downloaded “antivirus 2009″, however, I still get the “popups”. I want these to stop.
I tried calling the billing number but just got the run around.
Any suggestions to stop the popups?

To Ted

Try using System Restore to restore your computer to a point before the pop=up arrived.

I agree with you Ted…I have NOT downloaded “antivirus 2009″ but I still get the popups…..hope we get a suggestion as to HOW to stop them…..

i go to task manager and and it says it is running and and you right click on it and it goes to a window where you can go to the process and it says i.explore .exe should I delete or leave it alone

Those of you who got taken in start threatening lawsuits and you’ll get your money back (I had to do this with AVG and it worked) for those of you who didn’t but still have problems, I used StopZilla and it worked. It costs 40.00 to get their program (You get a 20.00 rebate coupon to mail in though so it will actually only cost 20.00). Other than that, if you are not comfortable with deleting stuff from your computer I suggest you take it to your local computer doc (not geek squad, they cost the earth) and have it removed professionally. The cost varies, but it is worth it to get your computer cleaned up and functional again.

I once downloaded it when I was browsingon the internet. At first I never realized that this software was a malware itself but when my computer was acting strange and my other virus softwares werent working, I thought I didn’t had any choice. This is the first time I fell for this fraud and never had I heard of a software program that makes false threats. My security center told me that my virus protection no longer worked and that I need to download an improved version. Afraid that my computer was going to crash I’ve purchased it for $49.95 and suddenly my computer was working. But the registration code wasn’t put in and I was afraid that at first I did something wrong. Then I got an e-mail tellin me I gotta pay more money for this to put the registration code in. But I didn’t do it and I’ve decided to research this “antivirus 2009″ software to only found that its a malware and there are people who even uses it to gain people’s credit card information. Luckily I’ve managed to go to the bank to get my money and whateer deductions they charged on my card back and changed my credit card number to a different one and found a video on youtube to remove the antivirus 2009 software off my computer. My other antivirus softwares suddenly worked properly and brought updates to them to the fullest extent. After scanning my entire computer the softwares managed to remove whts left of that threat and since then I’ve learned to take better care of my computer as well as keeping an eye on any malware threats and what other fraud softwares are going on. Remember people, there are people who can hack into your computer and all it takes is any internet connection and a poor security prtection on your computer. So I’m glad that mess was overwith and I hope none of you make the same mistake like I did.

I used 2 free spyware progams first, SpyBot Search & Destroy and Spyware Dr which both identified the 2009 threat. THEN after containing them with these free downloads I could not delete the antivirus2009 without some kind of purchase. Always a SKEPTIC, I researched and found this POST. You were all helpful. I could not find the 2009 file running in my task manager so I went right to the Malwarebytes Anti-Malware site download.com/Malwarebytes-Anti Malware/3000-8022_4-10804572.htm
and downloaded and used it. Even though smart people use their talent for EVIL, there are more good things about the web than bad…THANKS A BUNCH!!!

I am also plagued by AV2009 pop-ups every few minutes on the internet. Be warned that when you try to cancel the pop-up, the site rapidly downloads a trojan virus (Trojan -Downloader.Win32.Fraudload) in about 10 seconds. I only realised this when I upgraded my antivirus software to high alert and found multiple copies of the above virus. The only way to stop this is to close Explorer immediately the AV2009 starts its false scan. If I am too slow in exiting, my enhanced antivirus software now springs into action and deletes the virus. But this is very disruptive every 10 minutes or so ! The pop-up blocker does not stop this very persistent intrusion — ANY SUGGESTIONS that are not too complicated to impliment ??

Brian~ Download malwarebytes anti malware and yer cpu will b up and runnin again as normal in no time! trust me mate.

My home laptop running XP gets hit with the AntiVirus web page every time I go to Google. I have searched all over for 2009 removal instructions, and all the manual methods say to look for certain executables running, and certain dll’s and registry entries. I can not find any of these on my system.
I thought it may be a new variant, so I went to EVERY executable in Task Manager, and searched for that file on my disk. Every executable had a last-update time of years ago.
It seems I have a new variant of this. I have not installed the software because I recognized it as malware, but it still pings me every time I go to Google.

Has anyone had this issue, and if so, have they had any success removing it. I can’t use the “Paula” method because there is no executable running 2009. I did have a similar issue on my work computer of the 2008 variant, and it was easy to remove.

I don’t ever download anything off the internet. I do a lot of browsing and shopping from trusted sites, but never any downloads and never any porn or games. This thing seems to be able to load itself without an install dialog, making it very scary indeed.

I’ve worked on computers 22 years, and I know what not to do on the internet.

Any ideas? Any way this can run without an executable?

Thanks

THANK YOU FOR HELPING GET RID OF THIS MESS!!!!!!

i dont think the product is good enough why dont you put much updates mto it

Google this; WINDOWS DEFENDER.
Install it.

WINDOWS DEFENDER will STOP THE POP-UPS.

It is the pop-ups that start the UNINTENTIONAL DOWNLOAD.

ok I was at a customer site and she had this onher machine. We removed it. Heres the problem she uses google maps and now she is having a problem with it. When she loads the page it only shows a tiny bit of the map at top of screen

PLease tell me how to fix this

MANY THANKS GAZZI for your excallent suggestion. I loaded the free Malwarebytes and it found and deleted 3 more trojans that my own F-secure antivirus software had missed despite several full scans.
Now the persistent false windows pop-ups for AV2009 have ceased. The only problem was that the Malwarebytes scan took out both my home and workemail access (passwords no longer worked) ! Finally resolved this problem by installing Firefox and using it rather than Google to access my email. At least I am now at last free of those frustrating AV2009
pop-ups, and hopefully the associated trojans.

It seems from my experience and some recent comments on this blog site that either the AV trojans or the removal process can slightly damage Windows Explorer or Google software, but I am not a computer expert.

My task manager has been disabled by the administrator (which is me) so i cant do it that way. I cant download Malwarebytes’ Anti-Malware because it wont let me download it to my desktop. all my program files are gone. what do i do now. this suck i want my desk top back. I have scanned with Mc Afee and the superantispyware and they say there is nothing left on my computer….

please help

i just got this very potent malware.as someone stated above,this one learns what others do to kill it.it has pretty much rendered 90% of my windows disfunctional.i cannot open task manager as it says the administrator has denied access,it renders drive c and d invisible in my computer and has wiped out my start menu.when i had contracted it i cut internet connection and used the power button to restart my computer.it opens endlessly with the a number of different windows making it almost impossible to open any icons on desktop.luckily for me i had already installed NOD and malwarebytes software and was able to run them.it is working at this very moment and i will do a followup posting as to what the results are.i am not surprised that the more recent posts have contracted the more potent version of this as i have.thank god i found this posting and have another uninfected computer to use in the meantime.

i paid 80 bucks for this crap and its not workin. i want some satisfaction. it said for 3 years and it didnt even last a week. its saying cannot find this file. give me some help please.

Got them into $50 for the pro version.. Thanks to Tracey for the 866-905-5126#. Got “Musa” at Royal Billing. He wanted my credit card to locate the order, I refused. He finally got to it through my email address, issued a cancel # and promises 7-10 days. I’m not optimistic. I pressed for company ID and he says its made by computer blocker pro.com(??). I’ll write back if I get my money back. Good luck to all.

Just called the 866-905-5126 number…they promise 7-10 days after some discussion. He wanted my credit card and I refused. They can find your order through your email address. Its a billing company in FL. Good luck to all.

Thanks to all who have posted their experiences. Your sharing boosted my confidence to tackle this task.
Someone should inform Microsoft of the trade mark cloning infringement by these crooks.

Like many who were stucked into downloading this malware, I tried Paula’s method first. It worked fine until reboot and the same problem recurred. I tried system restore and it was not able to restore to an earlier date. Evidently, the crooks had found a way to stay ahead. I finally downloaded Malwarebytes’ Anti-Malware (mbam-setup.exe) and presto! it got rid of 18 corrupted files. Thank you Webmaster for this Threat Center and the free software. Cheers! Teckwah
=========

No answer yet what to do to avoid the pop-ups if you don’t have install the Antivirus 2009. My browser can no visit most websites and i get many pop-ups. Is there a solution ??? I’m 100% sure that i don’t have install the Antivirus 2009. I run more thah 10 softwares to “remove” this but there is no Antivirus 2009 in my system - just the pop-ups and the browser problems - Is there a way to fix ONLY this. I don’t want to run another software just to now that everything is OK - I need a solution!

hi everyone! i’m new here.
i was wondering, about paula’s sugestion,
how can i get into task manager if the av2009
blocked it and also, i can’t get into programfiles
because there is no c: or d: in my computer?
also, i wanted to know what you pros think about
spyware doctor?
is it any good? can it help remove the av2009?

Hey… I was wondering about the people who actually bought this program by accident. Once you gave them your credit info, did the pop ups stop, screwed-up google, etc. stop? I think I put in some incorrect information.. and I haven’t gotten an e-mail from them.. does this mean that it didn’t go through? Is there any way to know whether the charge went through before I get my credit card statement? Has anyone had any luck getting their money back?

Reading all your messages it seems that Antivirus2009 uses manyl different companies to process credit cards. In my case it was Onebills who also trade under the name Billingware. The latter also serves as the email address of Antivirus2009 support. Very suspicious.

Can I ask where you got the telephone number to call to cancel the order on my credit card. When I called the number (1-866-905-5126) they wanted the credit card number…..do you have to give them it to have it canceled…..I also called my credit card company and they said you have to wait till it post to dispute the charge, unbelievable. This makes me so mad…..
Please can anyone help!

the 3rd party billing company behind this scam is
Jettis International,
website > secure.jettisintl.com/support/info.html

here is what you can do to get your money back
1) File a wire fraud complaint at FTC website, just to have to leave a record there first in case you need in future.
2) call their number at the site and demand a payback immediately and tell them you will not cancel your complaint if they do not refund
3) talk to your credit card company to see if they have refund. Once they do, immediately close this account and ask the credit card company issue a new card with new account for you.

Has anyone looked into filing a lawsuit against Antivirus 2009 to get our money back? Is it even possible?

GREAT NEWS EVERYONE!!! I was fully reimbursed for all the money I wasted on this scam. First I claimed it as a fraudulant charge at my bank, Chase Bank. But I also found the e-mail address from their supposed Costomer Care Center that I had saved in my inbox. I sent a threatening but polite reply mentioning lawyers. I’m not sure whether it was the bank or the e-mail that made the difference, but here’s the address: support@paymentbit.net
Good Luck Everyone!

don’t download this it has virus and this is bullshit who ever made this antivirus is bullshit is full of virus wow.

had the same problem with this scam, and was lucky enough to have heard about a FREE DOWNLOAD of
SUPERAntiSPYWare…it worked like a charm and finally found an honest free download system. within i hour it and other spyware, virus’, etc were detected and removed for good. thanks to ANTISpyWare. it works and its FREE

THANK YOU!!!! I too, have been trying to buy it online and at the stores. Thank you for making this information so easy to find!! I am forever grateful!!

thank you webmaster!!! I did what you suggested and anitivirus 2009 is gone. :) best of all it’s free and I’m happy.

i downloaded the malwarebytes but the computert wont let me use it- i put it on a zip from another pc- i get the desktop screen then nada. nothing will click & the task manager wont even come up. any suggestions? thanks

This really, truly worked for me. Thanks a million. God bless the person/company that decided to make this available to the public, you rock. We need more services like this. I truly am grateful.

I’m also very happy with what this company has given to the public. I was seriously starting to worry about what this virus was doing to my laptop! Just wondering though.. this deleted everything that the virus has done to my computer except that the virus had changed my desktop background.. and instead of removing the background this removal system has only changed it to a blank white.
Not sure what to do know.
If anyone could help it would be much appreciated
Tessa
tessa_fields@hotmail.com

thank you very much for suggesting malwarebytes
works like a charm in exactly 12 minutes.
all the rest didn’t help me at all.
best to try webmaster’s solution 1st cause as i wrote
in my last thread(wich no one replied), not everyone
can get into the task manager while infected.

I got the window that said “Webscanner detected dangerous spyware on your system” and to install the antivirus 2009. I “x’ed” out the window. How would I know if I’m infected? And what should I do?

IT’S FAKE
IT’S A TROJAN.
DO NOT INSTALL THAT

I’m locked out of task manager too, I also can’t get into the registry. I have a spyware program, but it can’t get into the registry files either. I’m going to try the malware program. Has anybody else successfully gotten rid of this version?

Click Start/Run and enter REGEDIT
Go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System

Look in the right pane for a value called DisableTaskMgr.

If it exists, it should be set to 0 (zero).
If not, double click it and set it to 0.

If it doesn’t exist, right click in a blank area of the right pane and select New,
DWord value.
Name it DisableTaskMgr and leave it set at 0.

I disabled System Restore out of habit, but then I’d recommend to

Make sure you have/get a firewall

Then get Avast antivirus to contain the malware

Download Malwarebytes excellent software to detect all the trojans, malware and spawned files, and then *delete* them

Download and install WinXP security upgrade 3

then take the money you would have spent on bogus antivirus software and donate it to these programmers who saved our keisters for free.

oh, and don’t listen to a single pop up. Don’t install. Dont’ agree to a registry change don’t agree to ANYTHING, no matter how desperate the messages get. You wouldn’t recommend for a kid to get into a car with strangers, would you? Deny, Deny, Refuse, Ignore, Close. All of your files are still there. You can access the C drive by going into My documents, putting the cursor on the location bar and typing in C: (took me an *hour* to figure that one out.)
This virus exploits fear, and it knows what scares us.
Don’t give it one single thing it wants.

Thank you, thank you, THANK YOU!!!! I’m finally free of Antivirus2009!!! Bless you!

Good god people stop asking for keys, IT IS A VIRUS< DO YOU WANT A KEY FOR A VIRUS. oh and to someone who posted way up there, we will thank paula if we want, Jerkoff

Hi , i would like to share for this annoying problem. my system was also affected with ths rouge virus Antivirus 2008, but soon i found a way to get rid of it. I tried a software called SmithFraudFix. If u run it it will clear it all.

a fala kurcu vise da san se risija ovoga vise,svaka cast za ovi antivirus,cijelu noc sam se izjebo za ovo..napokon..thank you so much !!!!

how to seacrh tsk manager at my computer….i dont know..please help mee!!!!

I am going to track the people down that made this Virus, and nobody will have any problems with them ever again. Don’t worry this is all over!!!!!!!!!!!!!!!!!!!!

I am Purplexed. this thing sold itself to me. It appeared to be from windows, and my problems were (I thought) over after purchasing it. it even allowed updates, but it never seemed to do anything good!
Except it would overlay a window every 5 or ten minutes. Very Annoying.
I believe I got it at myspace. I did not believe it was a virus, or spyware, but since deleting it, I have noticed no more phony friend requests.
Is that weird or what?

This was amazing. Thank you. The icon is gone from my task bar and there are no more messages. Thank you, thank you, thank you.

paualas suggestion was the best
thanx a bunch

Those rotten skunks got into my PC yesterday and caused me much grief. I then figured out that I could take my computer back to a previous time and so I did that and got rid of this awful scam. Here’s how: Go to Start, then All Programs, then Accessories, then System Tools, then System Restore, . On the Welcome to System restore page click “Restore my computer to an earlier time (if it is not already selected) and click “Next.” On the “Select a Restore Point” page click the most recent system checkpoint in the “On this list,
click a restore point” then click “Next.” A system restore message may appear that lists configuration changes that “System restore” will make. Click “OK.” On the “Confirm Restore Point Selection” page click “Next”. “System Restore” restores the previous Windows XP configuration and then re-starts the computer. Log on to the computer as Administrator (if you can’t get on as previously). The “System Restore Restoration Complete” page appears. Click “OK.” This is not difficult to do.

Ross,

If you ever have anymore trouble with virius etc, use this web site to clear them up and get rid of them. Its a one time free site, then you can purchase it.

Malwarebytes.com

Ps.

It does work.

Wonderful! I got this Antivirus2009 virus today and hoped to get an advice through the internet. I am certainly not a PC specialist but it worked directly. Thanks for advising getting rid of the Antivirus 2009 - and some other hidden things.

Unbelievable how easy it was to get duped by what looked like a legitimate software company cleverly named “antivirus 2009″! Shame on this company!

1) Purchased the download yesterday. Pop ups still came up. Checked the web with search and read the complaints/scams and couldn’t pull up pages for the “antivirus 2009 removal” links.

2) Called the third party biller today (thanks for both numbers) for Jettis International Royal Billing:
1(866) 905-5125 (enter 3 for cancel)
1(866) 905-5126 (enter 3 for cancel)
They could not find the charge. They suggested to call my credit card company.

3) Called my credit card company a few minutes after calling the third party biller, and the credit card company immediately found my charge. Reported/explained this fraudulent charge, and they are reversing this “unauthorized charge”, will cancel this card, and will reissue a new card.

Encourage everyone to try to get your charges reversed/refunded.

The interface of this fake antivirus looks like a clone (or at least very similar) of Kaspersky Antivirus. The GUI looks professional, but program itself is bogus.
People, before paying for software, always make sure you are buying a legit product, not some fake POS which just looks good. At least do a search in google BEFORE you buy, not after you bought.
These bogus software makers should be sued for offering their bogus products. Their contact details are usually very hard to find and they like to change names often.
To remove this software, first of all, kill it’s process using task manager. Delete all registry entries created by this software using registry editor (regedit). Then delete the software itself (remove it’s folder).
Try doing that in safe mode, if it doesn’t work in normal mode.
You can also use some legit antimalware to remove this software.

I had this virus download itself onto my comp but suspected it as being fishy. I did a quick google search, installed this antimalware and removed the annoying pest. However, it has deleted over half of my program files and system restore was disabled recently for other reasons. Anyone know anything I can do? It’s real frustrating to have to reinstalled all these programs again, many of them were very important and others I no longer have the discs for…

webmaster ive been a network engineer for 10 years and this is the first time i have ever contributed to a post-my 21 month old infant son (aka destructo man) was banging away on the keyboard on my home computer (which I never use) and as as result av09 was installed on the machine while i was out working on a major client security breach downtown on wall street in nyc-after coming home and spending 3 hours of troubleshooting registry/ar programs/taskmgr etc etc (while the family slept comfortably lol)-i found this site-you’re approach worked-thanks!shoot me an email if you need help with anything

I have recently decided to go into business for myself. I will be seeking out those responsible for online scams. Before I get started, can anyone provide me with the information needed to track down a real live STREET ADDRESS for the “companies” that engage in malicious activity such as this “AntiVirus2009″? I saw the posts that had the phone numbers, but as you can expect, no one that answers the phone wants to give me the company NAME, let alone the actual address.

I don’t care what country they are in. I think it’s time that we, the victim of this, begin to fight back. Someone need to convince them to get into a new line of work. Enough is enough.

If anyone has an idea, feel free to e-mail me at Lt2210@aol.com (just put FIGHT BACK in the subject line so I know it’s from here). Thanks.

I don’t know how Paula’s worked because it wasn’t allowing me to access the net to download the Spy-ware yall had said. It was taking me to a about blank page and once I got that fixed every window I opened was defaulting by their crap. The spyware programs I had wasn’t evening opening. I had no choice, but to reformat. I wasn’t able to restore either, but I was able to reformat and it fix it.

why the hell would you pay for something that you haven’t even installed in your computer? are you insane or something?
I had the same problem too. All i did was scan with my 2 antiviruses nod and kaspersky. They didn’t work.
Then i made a system restore. That worked for a bit.
Then i had nod32 to check my PC and still i had this virus in my system.
Days later i did a system restore waaaaaaay back in time, added Nod32 to do the scanning all day long and since then i had no problem at all.
Of course Paula’s suggestion would work too but i havent thought of that before.

Awesome!! THANK YOU SOOOO MUCH!!

if malware bytes dont work..use fraud fix.. because there is spyware 2009 too.. malware’bytes cant get rid of that..

[...] programs. The latest program it endorses was called MSx Antivirus and Antivirus 2009. Security Toolbar 7.1 also displays warning messages to mislead users iin downloading the [...]

my pc is infected too from this dam antivirus, i was reading up on all this on my old tower which im having to use at the moment, i got all the information i needed and went to sort it out on my new tower, but the problem is now on my new tower i switch it on then it goes so far then shuts down again before it can even get to the main screen, can anybody help or advise me please as im desperate now, as this old tower is on its last legs n ive important documentssaved on my other tower.

I have had to get this off my daughter’s computer four times now. Anyone know what site(s) this thing is lurking in? I’m a non-violent person but I honestly think I could kill (well, maybe beat them with a baseball bat until they were an inch from death) the people who came up with this thing.

Thanks & GBU.

If anyone has an idea, feel free to e-mail me at myfit.contact@gmail.com

Ok, I received this fun little program a week ago. I have done all scans possible. For all of you out there to know, if you made a mistake and purchased this bogus antivirus program, I highly suggest going to your bank and closing your account. Within 3 days, I had a very huge negative balance with my accounts and switched everything. I have run malwar, norton yet still see performance on my pc very low. To see if it is truely gone, keep a look out at your free space on your HD. Mine went from 25gb to 17 within 6 hours. I have no other choice but to do a complete wipe of my system and start from scratch for 2 reasons: performance (HD space taken), and I dont trust anything that can access my banking..

Although this program might work for some, I highly suggest doing a complete wipe out of your HD and system. In regards to refunds, call your bank and open a fraud case as you have paid for a service and have not gotten the service. My bank had no issue solving the problem.

And make sure you always have your virus protection renewed. Don’t be an idiot like me

I need help getting rid of this antivirus 2009, windows defender, spybot search & destory, windows restore, and process in taask managerhas been disabled

[...] is a website that misleads computer users into downloading and purchasing the fake program Antivirus 2009. powerfullantivirusscan.com also modifies Internet Explorer default homepage settings and set this [...]

i need the licen key 2009 antivirus please regestry.

I think this antivirus pro 2009, is a whole new breed of PC viruses, its all most like aid’s for your pc it seems ?

I have Nort 360, well i did till this AVP2009, they want $99
to remove it by remote, or Norton support web sight might have directions how to manually remove it. gonna check !

Anyone have a complete clean out yet ?

Okay I was stupid enough to purchase this. Was finally able to Malwarebytes’ Anti-Malware to save on my desktop though had to stop part of the scan last night since it was really late. Will start it again when get home tonight. Hope that this works. I also went in to task manager and nothing with 2009 on it was showing up. I have a couple of things that I wanted to add here…the number 1-800-467-1077 has been disconnected. And when i called 1-866-905-5125 they were not able to find me through email to refund my money. I have called my bank this morning as well. So does anyone have any other numbers. One other thing how do I do a system restore? Thanks

how can I register antivirus 2009?

I fell for this scam too. Does anyone know what they try to bill you under at the bank??? I would like to stop payment on this but I don’t know what they are going to bill me under.

I find it amazing that nobody has taken a little vigilante justice out on these idiots…anyone with a little knowledge, time on their hands, and some ambition should be able to really mess with them…

I am having the same problem as raship. I have run Malwarebytes and the virus was not detected. I have also gone to the processes tab and the program is not listed in the programs running. The virus does not seem to have “infected” my computer yet, however I am still being redirected to the Antivirus 2009 site. Any suggestions? It is such a hassle!!! HELP!!

i’ve got this for the second time on my PC- its stopped me using my web browser and also on the task bar it has ‘a new xbox 360 has been detected click to link it to this computer’. Norton and Aware got rid of it last time but ive run them and its not going away.

anyone know why everytime this happens on my Dell desktop machine when i try a system restore it just never works- always unsuccessful. its damn annoying. i’ll join that fella beat the hell out of the idiots who create these things. very possitive work guys!

Anyone found a way to clear it yet?

i just installed this and followed the instructions, it says its been removed but now iv got a big red ‘X’ pop-up balloon which keeps coming up so often its pissing me off! any help peeps!

iv followed the instructions and now iv got a big red ‘X’ pop up balloon at the bottom of my computer! how can i remove it as it keeps on popping up regularly telling me to install their programs! help people

Hey All, just spent an hour fixing this. Thanks to all who helped. Here is what I did, close all programs, then ctr-alt-del to get windows task manager, Then sort tasks by user name, another security alert probably already poped up (bastards), look at tasks under you log in name. List the files and look for something odd, mine was a~.exe I am sure it keeps changing. Make sure to write down the name of the files as you close them. Once you found the file the pop ups will stop.

Then open windows explorer and search by date (search only since you have been infected.) Look for the file name from the task manager. Find the location of the file, mine was in the C:\Documents and Settings\your screen name\Local Settings\Temp. I deleted the whole temp folder. I got an error for a couple of files.

Note, you cannot delete the file until the .exe file in windows task manager is closed.

Then you need to remoe the registry part with run - regedit and here is the location HKCU/Software/Microsoft/Windows/CurrentVersion/Run

file name should be the same.

I think we should fight back. Probably is the spyware companies creating the bugs so there is a need for their product.

Hi, i thought Anti Virus 2009 can be uninstalled at the all programs? But the windows security center keeps asking me to download Anti Virus 2009.. I’ve installed the program above, and scanned: Must i really remove all the infected programs? im afraid that it will remove part of my operating systems, as i read Dave’s Comment at no.75 he said”I wouldn’t suggest doing it that way unless you know for a fact the you arnt deleting part of the operating system. ” so can please someone help me???

When I scan with Anti Virus 2009, They say i have lots of infected files, are they real??? cause one of the files stated is wat i have downloaded afew hours ago!
Please help!!

Will my computer really be effected?(I forgot to write this part at the end of comment number 190)

Grr this thing has had me pissed for a bit glad when I seached the key I saw this lol……ty

Thank you Paula but it stop then there is an red button with an white x and how do I get that off

Hey Im JUn Please help me!!! Read Comments number 188,189,190!!! Please

Hi there, apologies if this is answered somewhere above but I didn’t have time to read the whole trail. My infection of this malware also hijacks my browser as well as giving me fake messages that my computer is infected. When I try to go to a site to help remove the problem my browser either tells me the website cannot be found or it re-directs me to some other fake site (porn, on-line poker, fake anti-virus sites etc etc). I got a friend to save the spybot - search and destroy download onto a disc which I loaded onto my machine. However, when I try to run or save it, I get a message that unable to connect to server.
I am not a great technical person so have been put off trying to delete things manually. Is this my last resort or can someone else help me ?

Hi thank u very much tp paula for making me get rid of the antivirus and saved my money thank u very much once again.

paula is right. it really worked for me. i so happy!

thnks a lot paula…ur simply geniuos! your suggestion helped me.

I’ve gotten a pop up redirecting me to the Antivirus 2009 website a few times now. I only get it when I stay too long in my email account - at hotmail. I’ll click send to send an email, or inbox after sending one and that little box will pop up. I click the X to close it and I get taken to the Antivirus page. I close that, too. I’ve read a bunch of “how to remove” sites. I don’t have any of the exe files for this virus on my computer. I don’t have the dll file on my computer. I don’t have any folders named “antivirus” on my computer.

And the pop up only happens when I stay too long on the hotmail page. Can someone tell me yes or no, if hotmail is distributing this virus? Maybe one of those annoying adverts at the top of the page?

Also, does clicking the red X to close the hotmail pop up infect your computer? Because when I close it, the Antivirus page comes almost immediately after. The first time I didn’t know what it was, but I closed it before it had loaded fully because I hate popups (Firefox usually prevents them). The last time, the page loaded enough for me to see the name - Antivirus 2009 - before I closed it. I want to know if just by seeing that page, my computer can be infected.

Oh, and I use Spybot S&E to check for malware - it’s got Antivirus 2008 and 2009 and Pro in its check list and it’s never found any of them on my computer.

And, since quite a few people have asked about this, does anyone know a different site to ask? If this is a new breed of av2009, catching it early (on hotmail, I’m convinced it’s hotmail) will save others from it.

I have it similar to you, Arigato. I don’t think it’s to do with hotmail specifically as I get redirected from most search engine results. I’ve managed to stop the annoying red ‘X’ coming up and stopped some of the redirecting of web pages by deleting files from my System 32 folder. I know one was called brastk.exe, there other was wini… something.

- There is nothing suspicious displayed in my task manager

- I only know it’s antivirus pro 2009 because when I’m redirected to spam webpages a pop up briefly appears stating antiviruspro2009

- I cannot system restore to an earlier date, the button depresses and nothing happens - really frustrating.

- None of the antispyware/antivirus programs I’ve used have found it

- Cannot use malwarebyte, spybot or update my avg because it blocks it. It also blocks 90% of the websites offering tutorials on how to remove it.

- All the advice I can contribute is search for the brastk.exe file and delete it. I believe it stopped the red ‘x’ appearing which is at least one headache sorted.

- Sorry I can’t be of more help. I’m never downloading porn again =D lol…

I tried Paul’s suggestion-task manager solution, didn’t work. System restore doesn’t let me choose a date. And now that I tried to download Malwarebytes, this antivirus blocks me from Internet Explorer. ANY SUGGESTIONS? Thx.

On Vista Antivirus 2009 gets owned by DEP (if you’ve turned it on for all programs, not just Windows services).

I just wanted to say thanks to all of you. I finally got that crap off my system. I used Paula’s method and then had to run the Maleware but it looks like eveything is ok. Does anyone think we can bring a class action lawsuit against this company?

this is such crap, why is this not illegal? different # that i called 1-954-379-3290.

A friend of mine got this thing on his computer today. I did a Windows search of all files containing “Antivirus 2009″ and deleted all those files. Still symptoms. Tried Task Manager. Functions appear to work, but processes never stopped. Ran Avira AntivirXP, AdAware, and CCleaner (usually seems to do the trick)with results showing various infections, including trojans and browser re-directors, I removed the infections and rebooted. Well, that seemed to cause this thing to get even more tenacious, with popups and very persistent message windows (that won’t close). So, I downloaded, installed, and used Malwarebytes’ Malware Remover, and it removed it all with a quickness. Just like it was never there. I usually don’t take the internet’s advice, but there was a sort of a consensus, so I took a chance and it payed off. I hope this saves someone some time.

AFter two days of trying to get rid of this damn program. My bro who is an IT tech had to do it for me so I don’t have to pay $70 at Staples. Also for those that wants the $$$ back, I suggest you called your credit card company and disputed the charge and cancel/change your account number. FAST!!!

Just F.Y.I. I got roped into this for $79.95. I thought it was a good deal- 1/2 off 3 year service. I wish I did my homework. I called 866-905-5126 talked to 2 different people. They could not find me in their system. We called my credit card company- and found out that whoever charged my card did it through a pharmacy. I have diputed this charge and hope to have it all worked out before Christmas. So Happy Holidays to all and STAY AWAY from Antivirus 2009!!!!

As a result of this virus, I am unable to access any sites offering antivirus downloads to include Malwarebytes. Ive run Spyware doctor but the virus is still on my computer. I have a feeling Malwarebytes would take care of this issue, unfortunately this virus will not let me access the website to download the software. Does anyone have a workaround for this? It’s really frustrating.

Thanks!!

Sean,

I was able to make this work.

1) Downloaded Malwarebytes software to a different computer and then put it on a flash drive
2) Went to start/control panel/system/hardware/device manager, click on view and click on show hidden devices. Look for TDSServ.sys, right click it and disable it.
3) Plug flash drive into infected machine and rename the Malwarebyte file to anything else. Install the program and then run a scan. It should locate and quarantine about 20-25 files.
4) At that point you can update all of your virus software and spyware software.

Good luck! This thing is a &$%#*

I downloaded the malwarebytes program. There was no automatic start up or anything. And when I double click on the icon nothing happens. The program wont launch. Idk why?. But it won’t. Can somebody please help….Thank you.

i purchases this antivirus 2009, installed it. and still continue to have pop ups and viruses detected. i can not “get license” i can not activate, i have my code, it tells me my email is not registered. well it is the one i used to buy my product and even have thank you emails sent to me. it is very confusing. i have baloons popping up etc.

Sandra,

You can try just renaming the malwarebyte program to something else and then try to install. If that doesn’t work you might try the suggestions on Post #208, which worked well for me.

Post #208 did the trick after hours of wrestling with this beast. Thanks.

[...] bestproscan.com is considered as one of the browser hijacker that took advantage of the internet to promote their rogue program Antivirus 2009. [...]

[...] Antivirus 2009 can be installed on computers by visiting website anti-virusproscan. This website produces fake alerts on computer to mislead computer users. [...]

webmaster,
thank you so much!! this worked perfectly…the popups had been driving me crazy…

PLz help my computer av2009run register send me plz

FOLLOW INSTRUCTIONS IN COMMENT No208 WORKED PERFECTLY FOR ME, I WAS TOTALLY LOCKED OUT OF MY PC BECAUSE OF THIS 2009 AV THING, SIMPLE STRAIGHT FORWARD PROCESS, AND NOW ITS GONE FOR GOOD I HOPE, THANKS MO.

Thank you Webmaster! I have been struggling all day to get rid of this. Bought a “better” spyware program that did not work. Downloaded Malwarebytes and 2 minutes later it was gone (for good I hope).

What a great thread! I’m so happy to have found out that I wasn’t the only one who got stung by these jerks. I was fortunate to not have downloaded or paid for anything, but the popup ads had me a nervous wreck, being a computer novice not knowing what was happening to my machine. Here I thought I was a safe surfer: I guess there’s no such thing as long as there are cretins in the world who get a kick out of building garbage like this stuff. Anyway, HUGE PROPs to the guys at Malwarebytes! I downloaded the app, loaded it and it had found 14 infected files. I can only assume that the AV2009 popup crap was only one of several worms/trojans that stung me. The app that I couldn’t get rid of was lsass.exe: I could see it while using Task Manager, but I couldn’t figure out how to delete it. To my complete joy, Malwarebytes cleaned me up in one quickscan. I can only pray that whatever fixes were made stay put. Here’s the link (I also saw it in some previous posts here): http://www.precisesecurity.com/tools-resources/adware-tools/malwarebytes-anti-malware/ .Thanks for a great thread & great info exchange on the subject.

I received a pop up from winweb security alerting to virus and trojens in my computer. On futher searching I found it is a fake antvirus site. How can I can remove it from my computer?

Thank you so much. I love you .

Webmaster, I can’t thank you enough…really, I owe you one. That was the most irritating thing I have ever experienced on a computer. I’m still not sure what I did to get it. Anyway, with your instructions and malware, it was gone in 15 minutes!

Thanks again.

AG

I was caught it twice. I used “superantispyware”. it did not reomved it at first. but it is free. It did disable it. I follow with more cleaning from MS one care scanning. I think the virus is still there. but it was rendered useless.

Good luck.

I called the number 1-800-467-1077 and it said it is no longer in service…and I called 1-866-905-5126 (customer service) the guy said my email was not in their system…

Since I am using a Visa-debit card that the transaction cannot be stopped, anyone know what can I do to get back my money?:(

I got a message on my computer saying it was infected with Trojan, it said to download AntiVirus 2009, thank god my Norton caught it and safely removed it from my computer.

Its amazing what people will post in these forums, some of it is quite brilliant!

try avast.com and download the file, then when it asks to schedule a bootscan do that and it should take care of it. if not spywareterminator.com should do the trick, just activate hips control and clam antivirus. you could end process and delete it from program files but that is not recommended as it can delete crutial files that u need and it wont uninstall properly which will leave it in ur registry. any questions then contact me at my email. bandhcomp@yahoo.com

.

[...] computerfastscanner.com is a fake security website that can redirect web browser of infected computers to a site that hosts the counterfeit program Antivirus 2009. [...]

I had Antivirus 2008 install itself after visiting a dubious site (My own fault then) It somehow put a wallpaper on my desktop that looked like a window with the application in, I got rid of that and all kinds of crazy stuff happened! I was advised to install AVG free which worked a treat, I also recommend Ad-Aware free. If you ever download anything that turns out to be trojans, AVG will detect it straight away and allow you to remove it, so long as you keep the icon in the taskbar at the bottom of the screen. If you ever consider installing an anti virus software, check it out first!

I’m helping my friend who has the same problem, his computer wont allow him to visit any website that would possibly remove Antivirus 2009, His computer will freeze any time he attempts to open My Computer, and any of his existing malware programs have been rendered useless (Either Unable to open, Unable to Install, or unable to Scan), Including AVG and Ad-Aware mentioned by Pete, I have been able to Start the computer in Safe mode, and from there I am able to Open My Computer During which point I tried Paula’s Solutions, which allowed me to delete Antivirus 2009 from the Program files and from there I attempted to search the Registry, unfortunately I was unable to find any Registry file. When I restarted the computer The Antivirus 2009 no longer popped up, however He is still unable to open My Computer, or view any virus or malware scan website. Any Feedback will be Greatly Appreciated.

This is on NASTY beast. I work in a corporate environment. A user brought her laptop to me today infected with antivirus2009 ( at least I think that’s what it is), it intermittently pops a fake security center alert, I don’t know if her or her family clicked it, it’s obviously an attempt to extort money.

I ran Malwarebyte’s Anti-Malware and 4 or 5 items were detected and removed. The computer exibited no further systems and seemed to work fine. I applied all XP security patched, rebooted several times and all seemed good. I had been working under a freshly created account with admin rights.

She sent someone to pick it up and a while later she calls and it’s still happening. I am currently controling the system via NetMeeting and the fake warning is popping up. I rescanned with Anti-Malware, nothing found. Still trouble shooting and trying to find the mechanism. No under her login I can’t keep IE or even Firefox portable running, it pops the warning and even if I ignor it the browser is closed before I can do anything.

I suspect that this nasty piece of work is being modified to counter our cleaning efforts.

A adware had gotten into the computer, that creates popups. Anway one of those popups had the antivirus thing and it automatically downloaded. I tried this program and it seem to have gotten rid of both of those programs. As I have not recieved any popups and the antivirus program stopped messing up my IE, thank you.

What if you didn’t realize AV2009 was a scam and paid for it?? Is my credit card number stolen? HELP!!

Joey,

If you follow the steps in post 208 it should work.

Good luck!

Mo

i can invite the registration key, how to get that?

helpp me pleaseeee

it says i need adminadstrative rights to run task manager yet there is only one account on my computer

comment 208, just do that. Worked perfectly. All clean

I just wanted to say ‘Thank You’ to the webmaster for offering the Malwarebytes! I just ran it through and so far, so good. I got taken in yesterday by Antivirus 2009 and discovered what had happened AFTER I paid $49.95 and downloaded it onto my computer. Does anyone know how I can get my money back? I paid for it with a Visa-Debit Card. Once again, thanks so much!

I ahd the antivirus come up yesterday, the way i got rid of it was i had to go to system resore and if you are anything like me not knowing much about comp you go to your start then all programs then accessories, system tools then system restore and choose restore my computer to an earlier time you may have to go back a couple of days or even a week depending on how long its been in your system but very easy and it worked!

I too had this problem. Found the most simple way..
1. go to your start menu
2. go to accessories
3. then to system tools
4. then to system resore
5. go to a date from before this program started popping up.
6. click next.

it will re-boot your computer and put to the settings from before you ran into this probelm!

I hope this helps:))

hya!
I got the same problem like u guys in a some sort of way. the thing was that i tried to download a episode of prison break. the thing that happen was that if i wanted to see that film ( it was on the internet) i had to download som kind of a codec. i thought it looked alright. so i did so. then suddenly i got all this antivirus 2009 pop-ups! it realy scares me alot. i have tried out the software. but it didn’t so any good. i updated it. ran it in safemode, everything! but it didn’t work out. the metode one of the girls at the top of this web-site souded aright. but it didn’t work out eather. for the first thing,i dont know what file i should delete. the second is that i cant find the antivirus thing in taskmananger –> processes.please help me out i cant do a restore. and i cant do a time restore eather. i cant loose my data. please help or e-mail me.
i beg u!

arrgg.. i got the same problem but none of the metodes worked out. pls help me. or e-mail me!

give me your email.. i will walk you through it! i know the frustration!

credit card company is your best bet. they charged mine through a pet store. I called all these numbers, 19 times in total, and none of them could find my order…i bettttt. I’m not sure why no one has taken any legal action, if i had the time, i would in a heartbeat. just stay clear of this scam and use SuperAntiSpyware - it helps a lot and cleared up my system that I apparently paid 80 dollars to ruin with this shit.

Hi,
I cant download any antievirus tools or anything on my computer, seems like some thing is blocking everything i try to download pls help as worried about using my puter without any thanx colleen.

i just bought the antivirus 2009 i have the registration key. i don’t know to instal it. i want you to sand me a link or a webside where i can go to do that.
thank you!

I also bought the antivirus but am having trouble finding the registration key. Could you please assist me on this matter.

i hate this, i dont even have anti virus because i dont want it. But yet everytime i want to go to this website it wont allow me too because the stupid antivirus download keeps popping up. If i wanted your stupid antivirus i would have downloaded it so how about you stop it from popping up on my computer. thanks

Let’s see. I did ccleaner, combofix, malwarebytes, spybot, etc in safe mode. NOTHING would remove it. My husband clicked on this AntiVirus 2009 pop up and we were infected with Win32/zlob trojan. SO, I did a system restore to 2 days before we were infected. SO FAR, we haven’t had any problems. We will see. Has anyone else done a system restore and had this thing come back?

okay so i’m trying to get rid of this antivirus crap but my computer will only run in safe mode! everytime i try to start it regularly i don’t see any icons or start menu or anything! the only thing i can do is open the task manager (ctrl+alt+del)! so im in safe mode, and i tried one of the websites someone suggested on here to remove it, and it found “800″ threats, but since i didn’t pay for the full version only 2 were fixed!! is there ANY way to get rid of that antivirus 2009 and get my computer back to normal w/out having to pay anymore than i already have!!!?? please help!!

Kate you should download spy bot search and destroy it can get rid of way more than 2 threats. However, I don’t think it can get rid of the antivirus 2009 virus but it does get rid of the Trojans that the virus downloads.

I’am from the UK and havce cancelled me credit card 2 weeks ago. Now got statement showing CSH £36.09 and CSH £30. What is coming up on people’s statements from thewse fraudsters. I don’t know but i think CSH could be the charge from these fraudsters. So i’AM going to go to my bank and dispute the charge.

Thank you so much Paula, that worked like a charm. Thank goodness I have more than one computer so I was able to look it up on something else and find out how to stop it, without dealing with it at the same time. Thanks again.

Paula’s solution doesn’t work for me because i am unable to find the realted processes and files/programs.

My sis got this on her computer back in July, and the fix was rather easy. A friend got this a couple of days ago and it is proving to be a little more difficult. I downloaded Malwarebytes, but it will not completely install, therefore not run. I have also tried a few other ‘free’ tools but am getting the same results. I can’t connect to free on-line scan sites, I get re-directed. Won’t let me do a ‘restore’ in XP, I don’t have any references to av2009 in the registry nor anything similar in ‘Program Files’. So far nothing has worked. This is evolving…

I downloaded malwarebytes and rebooted. So far no annoying pop ups!! Thanks webmaster.
That sucker popped up while I was on myspace and started downloading itself on my computer. I stopped it before it completed 100% but it still did damage.
Thanks again!

I accidentally had this take over my pc,but thanks to Malwarebytes Anti - Malware,its nolonger annoying me,and all theats have been removed.
BUT when propted by the 2009 antivirus (BEFORE I REALIZED HOW BAD IT WAS) i entered my registration keys and email,can anybody use this info maliciously ?,or have i had a lucky escape ?

I already uninstall the Antivirus 2009,but when i open some website the antivirus 2009 still jump out and say visiting this web site may harm your(my) computer.I also tired wat was Paula say,but i cant find Antivirus 2009 in task manager.anyone help me???

help me please because Virus was attacked my Computer, now almost gone.

oh please, my PC almost died

your Antivirus 2009 make my PC death, please help me…….?

This is what I did to get rid of it.

1. Get on another computer and download the newest version of spy hunter onto a jump drive. Then download the malmare program onto the jump drive.

2. Put the jump drive into your computer and start the spyhunter program. It will prompt you to restart your computer so that it can access a website for updates. Click Ok and once it restarts let it scan your computer and it will find all the spy ware and other malicious programs. DO NOT pay spy hunter to remove the programs.

3. Load the malware from the jumpdrive onto the computer and then run the program and follow the directons as given in one of the first posts.

This worked for me after I wasted hours on everything else.

I did fall for the scam since a blue screen kept popping up saying my comp was infected and windows suggessted antivirus 2009 since it was already installed. Its very smart.

Can someone help me and point me in the right direction to get my money back. I called the above numbers and they had no record of my email adress and I wouldn’t give out my card info.

This is a very intelligent scam they have going here; first of all duping people out of their money and secondly giving them a false sense of security.

Remember, the jerks that make this kind of terrible program have access to the internet too so they read forums like this one and get ideas on how to stop people from uninstalling their money-maker application. Paula’s idea at the top (as simple as it was at the time) has obviously been mutated out of the current versions of this application.

The bottom line here is: be careful what you click on and protect yourself by BUYING PROPER ANTI-VIRUS / ANTI-SPYWARE protection. The free crap just doesn’t work… I’d know: I fix DOZENS of these problems every day and most of them either have NO protection or FREE protection.

System restore worked for me with Vista.
Completely removed.

Beware this AntiVirus is wicked..I just got it for the second time in two weeks..first time I had to do a full destrutive recovery..then installed Malware bites to finally get if off..some how my wife messed around and got it back..only this time the program and its trojen buddys would not let me acess the Malware program to delete all the malware! now i’m not a computer dude to go findin stuff on the c drive in directories and stuff so I just did another full system recovery and dl malware and avg again….I just hope I dont get it again..my poor e machine cant take much more!!!!!!

they got smarter…they no longer put “2009″ on the exe. in the task manager…also why doesnt someone send them over a nice little treat in THEIR email. that’d be kinda funny if the folks scamming and sending virus’s got hacked themselves.

Hey thanks everyone for the help…My computer is back to 100 percent operating condition!!!

Hi, Could someone please help.I or one my lads has somehow managed to get the same antivirus on my computer.I’ve tried all the above methods,but nothing appears to work.It will not allow Malbytes to be down loaded,so I downloaded it on flash drive,dut it will not allow it to run.Likewise with Super Antispyware - keeps saying “encountered problem need to close” It has stopped my Antivirus - Bitdefender from autimatically updating.Will not allow system restore in XP. I have also tried a few other ‘free’ tools like spyware terminator but again it appears to be encountering problems.I have windows defender which will not update either. I can’t connect to free on-line scan sites either, I get re-directed. I don’t have any references to av2009 in the task manager as suggested by Paula. So far nothing appears to work.It is most frustrating,I would be grateful if someone could please help or e-mail me.

I DO NOT LIKE IT I WANT IT OFF MY COMPUTER. I CAN’T GET THEM TO CALL ME OR GIVE ME THERE NUMBER TO CALL THEM CAN ANYONE HELP ME?

Ran Spyhunter scan which identified “vscan.tsi” as Antivirus 2009 infected file to delete.

I’ve been playing with this carp all day! I took #263’s advice and ran spy hunter - it DEFINITELY identified the virus for me!

I’m in the middle of a Malwarebytes’ scan - I suspect it’s one of the few tools that will actually work - keep your fingers crossed!

[...] live-pc-antivirus-scan.com is a browser hijacker that modifies Internet Explorer to redirect infected computers to this website that promotes fake security program Antivirus 2009. [...]

[...] Antivirus 2009 is a popular rogue program that can be obtained by visiting a counterfeit security website called liveantivirusprotectionscan.com [...]

Here is how I fixed the problem this morning. I know those jerks will read this comment, and design something to prevent my solution, but I believe helping those in trouble right now is more important.
. I first used Malwarebytes’Anti-Malware program (free) to scan my computer and removed ALL infections (I had about 189!)
. Then I used SpyBot Search and Destroy to scan again and removed another 19 infections not detected by Malewarebytes.
. That got rid of the popups.
. However, my Internet Explorer, including my Google homepage wa still displaying the annoying Google Tip about Antivirus 2009 “hijacked” by those jerks, and it was impossible to surf without constantly getting AntiVirus 2009 fake pages.
. After working all night on doing searches malicious websites, I found out that all sites named *gmodules.com are the malicious ones implanting anything they want in your computer. So here is what I did:
1) I blocked 3rd-party cookies in my Internet options security
2) I added the sites gmodules.com in my list of restricted/untrusted sites.
3) I deleted all cookies and temp internet files.
4) I restarted my computer.

Now, this morning, my computer is sane again.
I hope this helps you.

[...] scan5new.com is a website that will use unfair scanning method and threat detection to convince its website visitors to download and use the rogue program Antivirus 2009. [...]

[...] professional-virus-scanner.com is a rogue website that will redirect internet users webpage and search results to mentioned URL and will prompt them to download a program which is considered rogue as Antivirus 2009. [...]

all *gmodules.com are those posting the annoying Google Tip on the Google home page. Make sure you include *gmodules.com in your list of untrusted sites. Also, do not allow 3rd-party cookies in your internet options/security. That will get rid of the problem, if you still have it after scanning with a trusted anti malware. Beware of search results offering free virus scanners, for a good number of them are rogue and will introduce more malware in your computer.

Here is how I fixed the problem this morning. I know those jerks will read this comment, and design something to prevent my solution, but I believe helping those in trouble right now is more important.
. I first used Malwarebytes’Anti-Malware program (free) to scan my computer and removed ALL infections (I had about 189!)
. Then I used SpyBot Search and Destroy to scan again and removed another 19 infections not detected by Malewarebytes.
. That got rid of the popups.
. However, my Internet Explorer, including my Google homepage wa still displaying the annoying Google Tip about Antivirus 2009 “hijacked” by those jerks, and it was impossible to surf without constantly getting AntiVirus 2009 fake pages.
. After working all night on doing searches malicious websites, I found out that all sites named *gmodules.com are the malicious ones implanting anything they want in your computer. So here is what I did:
1) I blocked 3rd-party cookies in my Internet options security
2) I added the sites *gmodules.com (all sites ending with “gmodules.com” in my list of restricted/untrusted sites.
3) I deleted all cookies and temp internet files.
4) I restarted my computer.

Now, this morning, my computer is sane again.
I hope this helps you.

Thank you Corinne; your solution worked for me.
Hope the virus does not come back.

how to add *gmodules.com to restricted list?

also, how to block 3rd-party cookies?

do u have MD5 or CLSID of the virus coming in ur PC. I need the CLSID so i can block it with my activeX guard

To add *gmodules.com to restricted sites list:
go to “tools” at the top of the page of your Explorer, then “internet options”, then click on “security” tab, click on “restricted sites”, click on “sites” and add, as spelled: “*gmodules.com” to the list.

To block third-party cookies:
same as above, but click on the “privacy” tab instead of the “security tab”, click on “advanced”, and checkmark “block” in the third-party cookies area.

Thanks Corinne.

I still have problem with entering “*gmodules.com” to the restricted sites. It complaints “invalid widcard sequence”.

[...] bestantivirusproscanner.com is a browser hijacker that tricks computer users and website visitors to download and use its own rogue program Antivirus 2009. [...]

Thank you soooooooo much. I got rid of the virus called ‘antivirus 2009′ with your help.

i got rid of antivirus 2009 all the pop ups etc but i still have one problem that i cant get rid of even using anti malware and paulas method is when i go on the internet it will randomly block my site and say
Internet Explorer Warning - visiting this web site may harm your computer!

Most likely causes:
The website contains exploits that can launch a malicious code on your computer
Suspicious network activity detected
There might be an active spyware running on your computer

What you can try:
Activate Antivirus 2009 for secure Internet surfing (Recommended).

Check your computer for viruses and malware.

More information

Internet Explorer add-on solved:
This was a royal pain to figure out.
It seems the IE add-on “Research” is causing the blocked messages to appear.
In IE7 Go to Tools -> Internet Options -> Programs -> Manage Add-Ons.
From there you can locate and disable the add-on Research. There should be 2 add-ons with the name research. One of them appears to be legit. The other one has type “browser help object” and filename “winsystems.dll”. This is the one I disabled and the blocked messages disappeared after restarting IE.

I would also suggest deleting winsystems.dll which I found in C:\windows\system32. I used the free microsoft program Autoruns to locate and delete the file winsystems.dll

[...] is a website that has malicious script embedded to infect visitors with rogue program Antivirus 2009. privatewebsystemupdate.com has a fake online scanner which detects non-existent threats on [...]

[...] rogue program Antivirus 2009 can be acquired by visiting a website with malicious scripts such as privacysecuredupdate.com to [...]

[...] Related to: Antivirus2009 [...]

I just reinstalled my friends operating system to give her computer a clean and faster running pc everyone should do this every cou[ple of months just for safety

Um, im looking through all the comments and saying “i wanna download this” but i cant find the download part.. any help? Please?
(waiting for reply)

[...] premiumantivirusscan.com is a bogus computer security website that was created to decieve computer users and convince them to download Antivirus 2009. [...]

Paula you are amazing. God bless u. this problem was annoying for me.that procedure worked. after deleting the file i also went for the system restore &wallah it was normal again.can u also suggest anything for getting rid of genuine advanced notification tag…anyway u rock.

i had this antivirus2009 just today,,i spent whole day trying to remove it,,and i tried paula’s suggestion and it is gone now in my task bar,,so far so good,,,i hope it will not come back again..thanks to paula,,ur a genius,,but will it be really gone?

My wife accidently downloaded the antivirus 2009…. Well my first line of defense I found on internet was rid of it manually through resgistry etc. I did that. Then my internet was still getting blanks on allmost every page I tried to view. So then I found Anti-Malware program and did as dirrected, But still my internet is having problems…….WHAT ELSE CAN I DO……PLEASE HELP,.

thannnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnks

Thanks so much Webmaster! I’d been fighting with this Malware for a couple weeks now and couldn’t find a way to get rid of it without getting rid of most of my files. I tried your instructions and they worked very well! For others trying this, I would recommend doing the thorough scan and not the quick one. It works like a charm!

Antivirus 2009!!!! What a PAIN!!!

John try running a System Resore Wizard (Windows XP Help and Support Centre) accessed through the toolbar at the top of “My Documents”

I tried to delete files manually - You’ll never get them all.
Downloaded Malwarebytes - it seems to find more files…but not all of them. I still couldn’t get onto the internet.
Ran a System Resore Wizard (Windows XP Support and Help) and backdated the system to a later date. Everything seems ok now….

I was able to fix my system by going back a couple of days and doing a system restore.

I would like to add that the AV2009 doesn’t come in alone. I ran the MS Malicious Software Removal Program (the file currently named: windows-kb890830-v2.6.exe) found on the MS site and that found a nice Trojan that McAfee missed. I recommend running that also. Joel-

My thanks to Sam and Corinne for their great advice on 10 & 13 Jan which in addition to the use of Malwarebytes was needed to remove a persistent Antivirus 2009 problem on a friend computer I was helping with.

I work on PC’s:
I had about 2 popup windows come up asking me for AV2009 but immediately hit the red ‘X’ in the top right corner. I didnt get anymore issues with it. I dont use spybot or spydoctor or windows defender & i take care of my PC. the key words here are; ‘TAKE CARE’
You have to ignore, refuse any attempts to download malware on your computer. Dont be fooled by pretty words or a security logo. Watch what your kids download dont leave them in their rooms by themselves!! Its simple! there are worse things attacking your PC than just some silly AV2009!

[...] is another website used by Antivirus 2009 to scam computer users from downloading and paying for the registered version of the said rogue [...]

[...] is a fake security website that hosts the installation file of rogue program Antivirus 2009. liveantivirusscanner.com was created to mislead visitors, the same way how other websites promotes [...]

There is a new version out that nothing will remove it. And Roy, you can go to google and get this Virus. It is dirty. People think it comes from Microsoft and maybe it does. If they have a customer service number why can’t this be shut down? Isn’t it illegal?

The easiest way to remove this accursed virus is to simply uninstall it. The virus is rather advanced and registers itself as a program, allowing a vital weak point if discovered.

I have my friends laptop with me,.. i have tried everything kindly left by people of how to get rid of this beast. it took me 6 hours and i finally got rid of it then,.. went online and bang it was back, now it won’t even let me use malwarebyte or even let me uninstall or re-install it, it just brings up 12-17 windows as soon as you go to ok it to install ar uninstall. i have tried in safe mode the lot,.. HELP PLEASE!!

Virus Remover 2009 downloaded on my laptop behind the scenes sometime in the past few days…i’ve been pulling my hair out…it started out with a gray shield as an icon and somehow morphed into a microsoft looking icon…I thought I was rid of it…before it turned into the microsofr 4-color looking icon…who can help?

Hey everyone, its good to see that not everyone had the problems i had. Antivirus 2009 deleted Task Manager from my computer so “stop process” was unable to work.
quick keys for task manager :ctrl/shift/esc: are disabled. If you have it as bad as i did it would have also disabled the “run” function.
All i can say is good luck removing the program.
but it regards to your $$$$$ call the number 202-436-9063, it’s the number they have registered with the company as a contact. I got it from my credit card company. I’m being fully refunded, within the next 5 days. It doesnt put everything back the way it should be, but its some piece of mind.

The virus has blocked my view of seeing the Task Manager’s tabs. Therefore I can not disable it. I earased the av2009.exe but obviously that is not enough. Therefore even though I installed the Malwarebytes it does not run.

Does anyone knows how to get my Task Manager back so I can see the processes and disable the av2009? Thank you.

I accepted the prompt for this Antivuirus 2009 fake application and it took over my Internet ability - I could not use Internet AT ALL!! This virus blocked me totally. I had to do a system restore and lost a ton of information.

I’ve actually had this virus twice, it’s a real pain in the @$$. The first time i had it, after spending a sleepless night with my tech-savy friend trying to remove it, my Father system-restored our computer. Thank god because I was so upset. Especially since I had done something so stupid and downloaded the adobe reader thing, which turned out to be the antivirus program.

Unfortunately, I will tell you this now, either system restore only works for so long, or the program is finding other ways onto the computer. Today, I was just chatting on yahoo! when, wouldn’t you know it, AntiVirus started up telling me all bout the false threats. I am currently running the Malwarebytes’ by popular demand, and no offense to Paula, but i do not believe your method will work in the long run. Simply ending this program is not enough, and it WILL come back to haunt you later.

Malwarebytes’ is a slow and tedious preogram if you run the thorough scan, but i think that it’s best. I’m unsure yet, after reading the most recent comments, if it will be able to completely remove the program, and I am worried very greatly because this virus is just unnecessarily annoying. Whoever created this skrew up of a virus must be waist deep in money by now, as I can vouch it’s looks very legit in many ways.

Because I don’t know how long yet this will take, I will end this comment now and post another, regardless of whether the problem is resolved or not. My only advice: BE SMART AND CAREFUL! THIS VIRUS IS NOT A GAME, IT’S SERIOUS BUSINESS AND IS LIKE NO OTHER VIRUS, WHEN IT GETS YOU, ALL THERE IS TO SAY: GOO LUCK!

this antivirus crap is messing with everything on my computer war ever i have up it will take it off the screen and then it will come up and it is now getting anoying and i really want to get rid of it so plz let me know if you know of a way

Is there a way we can kill those stupid SOBs who created the virus? Please help

For those that can’t get Malwarebytes to install, do not use the mouse to click through the dialog.
Use your arrow keys, tab, and enter key to go through the install windows.
I found this tip on another site and it worked for me.
I used the quick scan option which took about 10 minutes and all seems fine.

Paula…you are THE BEST. We have had this annoying thing on our computer since the summer…..argh!!! We are not computer savvy and had no idea how to get rid of it. I so appreciate your help.

[...] Antivirus 2009 ca be acquired by visiting the unsecure website freeantiviruswebscan.com. Users will be prompted [...]

Webmaster-Thanks so much!! I’d been fighting with this Antivirus 2009 (fake) for several weeks now and couldn’t find a way to get rid of it. I tried your instructions and they worked very well! For others trying this, I would recommend doing the thorough scan (about 45 minutes) and not the quick one. What is so sweet is that the Webmaster suggestion didn’t cost me a dime. :):) Thanks again!!

I need to get the sytem security icon off my computer it is on the right on the buttom it keeps popping up when i am on the computer i have an anti virus on my computer already so i need to get that icon oo please.

I am so very greatful for the advice on how to be rid of AV09. I got an estimate of $199.99 from the geek squad to remove it and did it for free within a few hours with the help of the posts. I did a combination of the posts, I downloaded the malwarebytes anti malware on my external harddrive because I couldn’t get on line any more, then I transferred it to my infected computer and followed the directions in the posting # 1 and that worked like a charm. I was a little skeptical because I didn’t want to infect my working computer, but I am glad I took the chance. Thank you so much for all the great advice. Try a combination of these ideas and see what is the best remedy for your particular problem.
199 thanks.
Dainety

about 4 times I have been on myspace and it will remove everything I am doing and try to install y myspace? can anyone tell me y

Can someone explain the step following the ctr/alt/del and ending the av2009…what is the program file that paula talks about where can i find it?

I’ve run Malwarebytes and it seemed to take it off, but it didn’t. At first it was MS virus remover 2009 … now it’s called Virus Remover 2009. I can’t seem to get it off. HELP!!!

What we do here in our shop is run:
Malwarebytes (free)
SuperAntiSpyware (free)
AVG 8.0 (free)
Spy Hunter.
Run these in safe mode and 9 out of 10 times it will get rid of the virus, if it has been on the computer too long, it has spread everywhere, and simply deleting the program file will not fix it. I have also run into instances where it will not let me run virus removal programs. For that we have to connect the HD to a different computer with a USB HD reader and run scans, just to free it up. SpyHunter I think costs like $30 a year but is my go to virus removal software. I F’n HATE this program, the university I work at has been bombarded with this crap. I hope this helps eradicate this evil program.

I also got infected by this scam. However for all those poor souls who think they lost their money, I would like to add that there is pretty easy way how to get it back. One just needs to collaborate with your bank or credit union and they can issue a charge back since you in fact did not receive the “promised product” but something else. It worked for me and I got back my 49$.
I wrote little more detail explanation with a sample letter for your bank/credit union here:

hxxp://www.ehow.com/how_4695526_fall-victim-antivirus-antivirus-scam.html

Good luck everybody

MADARCHOD Antivirus my HArd Drive Got Corrupted i had Bought Just 1 Month Ago

I have been getting these pop us from Antivirus 360. It looks just like the screen webmaster has on here, except instead of it saying Antivirus 2009, it says Antivirus 360.

It tell me a I have all these sort of worms, trojans, etc. I have a lot of trouble even getting connected to the internet. It blocks almost every page, that I have to constantly be opening a new tab.

This is what comes up if I open a tab lets say to the Yahoo homepage:
Internet Explorer Warning - visiting this web site may harm your computer!

Most likely causes:
The website contains exploits that can launch a malicious code on your computer
Suspicious network activity detected
There might be an active spyware running on your computer

What you can try:

Activate Antivirus 360 for secure Internet surfing (Recommended).

Check your computer for viruses and malware.

More information

I have tried numerous things to end this but can’t. Can someone help me!!??

Paula’s suggestion might not work if the malware is in its later stages. It blocks Task Manager. Try the Marwarebytes solution.

This is how I did it and it worked perfectly. But then again I didn’t install anything. I’m not quite sure if I removed everything, but it worked.

spyware Protection 2009 Removal

1. Open TASK MANAGER(CRTL+ALT+Delete)
2. Click Process tab
3. Click names to make it alphabetical
4. Find sysgaurd.exe
5. delete it

*this will stop the annoying pop-ups for now, but if you restart your computer it will return.

to get rid of files….

1. search for SPYWARE PROTECTION 2009
2. delete any files with that name
3. go to run and type in “regedit” to get to registry
4. press CRTL+F and type in “sysgaurd”
5. delete “sysgaurd.exe”
*this totally gets rid of the pop-ups
6. press CRTL+F
7. type in SPYWARE PROTECTION
8. delete “spywareprotection2009″ and “av2009″
*look in the files section of the list if you aren’t sure you
should delete it. If it has anything related to
AV2009 or Spyware Prtection 2009, delete it.

There you have it. No more Spyware Prtection junk. Took me awhile to figure it out because I’ve never done anything like this before.Found it really easy to do, even if you’ve never done it before.

Found a way to get rid of it fast.Pull up task manager applications, wait till one of there windows pop up and end task. I then got zone alarm free trial from snap files and then went to Safty.live.com and did the free scan. The scan takes a few hours so…Zone alarm quarintied a few and safty.live got some other areas. Open zone alarm and it will now let you remove those and then go back to safty and see if one or more is in system restore file, shut off system restore ,deleteviruses from safty.live. Exit and reboot. Go back and run safty.live scan, you should be clean. Good luck.

Catched:

- sysguard.exe
- svcho.exe
- syssvc.exe
- elaxa*.dll
- dqadit*.dll
- downloader.MisleadApp
- Infostealer.Banker.C
- Packed.Generic.200
- Suspicious MH690.A
- Trojan Metajuan
- ErrorSafe
- SpywareGuard2008
- SpywareProtect2009

Antivirus 2009, after becoming so discredited in 2008, just came back in february 2009 with a new name, Spyware Protect 2009, using a much improved malicious code over its predecesor, with new names given to the infecting files almost every day (this spyware is mutating on a daily basis). Since people are being stolen through the Internet across state boundaries, I believe a very serious federal crime is being committed here; why the FBI or the Federal Trade Commission have not acted yet to throw the people behind this to jail is beyond me. In the meantime, while they act, here are a couple of things you can do.
After disconecting your PC from the Internet and booting the computer into Safe Mode (with key F8), the first thing to do is to locate all of the files that where created on the infected computer the precise day the infection took hold, this is the most important piece of data that not even the best malware removers have at hand. Windows Explorer allows you to search folders with dates of creation and modification put by Windows itself and it even allows you to arrange them by date of creation. You will be looking for files with extensions such as exe, bin, dll, htm, html, js, pf and tmp. Look first into the C:\WINDOWS folder and then deeper into the system and system32 folders. Also look into the Prefetch folder, remember that all of the files here should be deleatable with no consequences whatsover to Windows itself. Look also in the root directory of the hard drive. Look also in the Temp folders you may have. Look everywhere. I have found that iehelper.dll placed into the system32 folder is the one that pops up the fraudulent webpage mentioned here by commentator Frustrated1 on March 5. Once you have deleted manually all of the files you can find created the day the infection took place, the next step is to reinstall a recently downloaded version (on another non-infected computer) of the Mozilla Firefox browser. The next step will be getting hold of a Registry cleaner (frequently packaged with Internet speed optimizers) in order to get rid forever of all those registry entries that now point to nowhere after the malware files deletion procedure. Thereafter, you may try to reconnect you computer to the phone line and boot it on Safe Mode with Networking to get more help online in purging Spyware Protect 2009 forever from your PC together with all its associated trojans. You might wish to dump your antivirus company since it proved worthless in protecting you. After this has been done, don’t forget to spread the word here and everwhere else on the names of the malicious files you found manually, for this information may prove valuable to others. And don’t forget to report what happened to you to the FBI and to the FTC!

I downloaded windows live antivirus software and it totally removed spyware protect 2009 after i tried working with norton antivirus. man i am soooooo pleased with windows live. not only that but it was during the free 90 day trail so no more spyware for me. Thanks alot for alerting me that spyware protedct 2009 is a fake.

The moment I got the popup and i couldn’t exit I immediately shut down. Does this mean that it installed itself anyway??? Please help.

Paula! After 5 wasted hours and numerous phone efforts-it seems to be gone. Thank you

i’m having a problem getting sign in 2 facebook can you help please

JUST SAY NO TO UNSOUGHT HELP ……….

If you get a pop-up or screen offering you any kind of
Antivirus service that you know you didn’t ask for,
close the window, or click the “back” button on your
browser, and if that didn’t get rid of it use the
“Control-Alt-Delete” key combo and “END TASK” your
browser.

After that, run Diskclean and/or CClean to wipe the
net buffers, so it’s safe to log on again……..

It may also be a good idea to remember what website
you were at when the pop-up occurred, and not go
back there again, since they sponsor it………

this software has now gotten much smarter. You can no longer run task manager, you can not download anything from the internet, it blocks all programs but their product so you can’t even run command, ie, firefox or anything. It also blocks you from rebooting in safe mode and blue screens when you try.

The Federal Gov. should stop these scam viriuss but we know it will not happen.

Anothr solution is a class action suit. I would be happy to contribute to the cost to get one started.

[...] to another website that was solely created to promote a rogue security application including Antivirus 2009 among any others. anykuy.com will popup alert message that [...]

The 2009 Anti Spyware came on my puter, and I tried ot shut it down, but it eventuallly left a black warning on my screen.
I tried to do a system restore but it would only go to the current time a date. Then I was able to run Spybot and it showed 3 different malwares, but after I shut my computer down and tried to restart…no Start or upper or lower tabs came up only a message saying I needed to contact my technical advisor. I tried to get my nephew to this site but he said all of them only want to sell you their program, and they don’t work. So he hauled my computer off after working on it for two hours. Left my HD here. Has anyone else had all their tabs and Start disappear If so, what did you do
I did do a Lava Adaware, SpyBot, have AVG, and I think my problem may have been caused by one of the two registry cleaners, I’ve been using for quite some time.

I agree with adam that although paula’s suggestion works it will not for a long time, as i have done this and it keeps coming back again and again. although the antimalware works like a charm it takes along time for the moment but again it comes back. i have avg, spybot search and destroy, spyware blaster, ccleaner but no use, it keeps coming back and back, all i am doing right now is open the task manager and deleting as soon as it comes in and in the process tab deleting the svchast.exe which stops from repeting the anitvirus installation. Its not svchost.exe but svchast.exe. I dont know if i am right but it gives me a piece of mind for a week and then i have to do it again. haha
any suggestion to completely stop it please do let me know. thanks

i downloaded the software like an idiot 2 days ago under my dads credit card. i hope they dont charge ridiculous things to it. i told him to check with his bank and freeze his account. how bad did i screw up? how bad do they charge the cards? how worried should i be?

The Losers the Created these Programs live in Brampton, Ontario. Canada, I will Be back With a more precise location and possibly a home address and phone #

I got duped into buying this Antivirus BS and the numbers given in previous statements aren’t doing anything. 1-800-467-1077 is disconnected I’m guessing b/c it’s telling me “The service you requested is unavailable from your calling area, SDN98″ What is that supposed to mean I thought 800 #s where good to call from anywhere. I don’t know about the 1-866-905-5126 they’re telling me that my Card number isn’t on file. Now that right there is some Bull. I guess I just got scam for my $49.95. I hope somebody catches these punks and take them to court. This is crazy. Some how they pop up on your computer and make you feel like you better buy the product or else your computer will have all kinds of viruses and whatnot. They even kept kicking me off of my home screen. I need a real number with the actual SCAM ARTIST who took my money and on top of things now I’m in the “Dog House” with my girl. Can I get a break??? If anybody can help it would be greatly appreciated. Thanks…