By Even if you’re an avid user of computers and your expeience in this field is quite rich, you still may get your machine infected with some kind of virus. Since these malicious programs are widely spread across the web, getting an infection on your computer is not that complicated. One of the latest viruses computers users have to deal with is AV Security 2012. If you had the bad luck of infecting your PC with it, then here’s a guide to help you remove AV Security 2012 from your computer.
Being part of the Rogue.WinAVPro family,AV Security 2012 is knowkn as being a rogue-anti-spyware program. This will display several false alerts and warnings in an attempt to make you think that there’s a serious problem with your computer.
Its purpose is to trick you into believing that your PC is really infected and thus make you buy the entire package. If you do so, you’ll not only get your computer infected but lose your money as well. Different hacked sites will use exploits to install AV Security 2012 on your PC without your permission. As you can figure it out yourself, getting the infection on your machine is not that complicated.
AV Security 2012 will do a fake scan of your system and will display fake scan results showing you several infections that are present on your machine. Do not believe any of these fake warnings and scan results since the program only tries to make you purchase the whole package.
The malicious program might bundle the ZeroAccess rootkit. In this case you will have to run TDSSKiller in order to remove the rootkit. Most programs you will try to run will be teminated. So, when you want to open an executable, this one will be automatically closed and you’ll see a warning telling you that the program you want to run is infected. Ignore these messages as they are false.
Windows will be configured to use a Proxy Server that will intercept all the Internet request you have. Instead of getting to the websites you want to visit, you will see a fake warning telling you that the website you want to visit is malicious.
In case you’ve purchased the program, make sure you contact your credit card company to tell them that this is a scam and a computer virus. Therefore, follow the steps below in order to get rid of AV Security 2012:
1. The first thing to do is to print out the guide below and that’s because you will have to close all the open windows and running programs at a certain moment later in the fix. It is advisable to use another computer in order to download the programs that are needed in this removal procedure. You can then transfer these programs to your infected computer by using a CD/DVD, USB flash drive or an external drive.
2. Now make sure you reboot your computer in Safe Mode With Networking by turnning it off your machine and then on. When something appears on the screen, make sure you press the F8 key till you see a menu that contains this option.
3. Select the Safe Mode With Networking, hit Enter and make sure you login with the same username you used in the normal Windows mode.
4. As we’ve told you earlier, AV Security 2012 may use a Proxy Server that will stop you from getting to the webpages you want to visit. In this case, you will have to solve this problem before going any further. Thus you will be able to download the necessary tools to remove the infection.
5. Therefore, start Internet Explorer and go to Tools. Click on it and then on Internet Optins.
6. Once you get to the Internet options screen, you will have to click the Connections tab and thus get to the LAN settings button on which you will have to click.
7. By doing so, you will get to the LAN screen where you will have to check the Use a proxy server for your LAN box. Click OK and close the Internet Options screen. Once Proxy User has been disabled, you will be able to get to the Internet pages you want.
8. Now is time to use TDSSkiller in case AV Security 2012 is bundled with TDSS rootkit infection. After TDSSkiller does its job, it might require you to reboot. Allow it to do so and then reboot again in Safe Mode With Networking.
9. The next thing to do is to download Rkill in order to terminate all the processes that are associated with AV Security 2012. Therefore, download the tool and save it to your desktop.
10. Double-click on the iExplore.exe icon and thus run Rkill. Now wait till Rkill finds and ends the AV Security 2012 related files and programs. When it finishes doing this, the black window will be closed and you’ll be able to go further on with the cleaning procedure.
You should know that in order to protect itself, AV security 2012 will dislay fake warnings and alerts telling you that Rkill is a malicious program. Ignore these warnings and do not close them as you will thus bypass the malware. Don’t allow to reboot if it ask you so.
11. Now you’ll have to download Malwarebytes’ Anti-Malware and save it to your desktop. Once the installation begins, make sure you do not change the defualt settings. Before the installation completes, check the Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware options. Now click the Finish button and do not reboot the computer.
12. When you get to the scanner tab, you will have to check the Perform Full Scan and then hit the Scan button. MBAM will now start to scan your PC for all the files that are related to the malware.
13. You will see a message when the scan finishes and you’ll have to click OK. Go back to the Scanner screen and then click on Show Results.
14. You will now see a list of all the infections found. Make sure you select them all and then hit the Remove Selected button. All these files will be deleted and added to the program quarantine.
15. Allow MBAM to reboot if it asks you to do so.
16. Once AV Security 2012 has been removed, you will see the scan log displayed in Notepad. Review it and then close it. You can now exit MBAM as well.
This method should help you remove AV Security 2012 from your computer. To avoid this kind of situations in the future make sure you use a powerful antivirus program or purchase the PRO version of MBAM.