FrEn

Envoyer Imprimer PDF

Free malware removal tool to remove Antivirus Soft
Écrit par Administrator  |  Mardi, 02 Février 2010 17:50
AddThis Social Bookmark Button
There are no translations available.

Antivirus Soft is another rogue Antispyware, a scareware, that tries to get money from users by prompting them to register and buy their fake products. Some old malwares often return to the front of the stage and Antivirus Soft is replacing Antivirus Live. Remove Antivirus Soft immediately from your system.

Antivirus Soft

To remove Antivirus Soft (Uninstall Antivirus Soft)

  • Download this free removal tool for Antivirus Soft
  • Extract it
  • Launch
  • Click on the delete button

Antivirus Soft will be removed from your system in 10s. Restart your computer when it’s finished.

Processes :

  • [random]sysguard.exe
  • [random]sftav.exe

Files :

  • %AppData%\[random]\[random]sftav.exe
  • %AppData%\[random]\[random]sysguard.exe
  • %AppData%\[random]

Registry

Registry keys created

  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments
  • HKEY_CURRENT_USER\Software\Microsoft\Windows Script
  • HKEY_CURRENT_USER\Software\Microsoft\Windows Script\Settings
  • HKEY_CURRENT_USER\Software\avsoft

Registry values created

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    • evbogtwv = "%AppData%\agolui\ceycsftav.exe"
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download
    • RunInvalidSignatures = 0x00000001
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations
    • LowRiskFileTypes = ".exe"
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments
    • SaveZoneInformation = 0x00000001
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • evbogtwv = "%AppData%\agolui\ceycsftav.exe"
  • HKEY_CURRENT_USER\Software\Microsoft\Windows Script\Settings
    • JITDebug = 0x00000001
  • HKEY_CURRENT_USER\Software\avsoft
    • knkd = 0x00000001

Registry value deleted

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
    • AppInit_DLLs = ""

Registry value modified

  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download
    • CheckExeSignatures = ""/ Original value =" yes"

Download

 
 

Articles connexes
Derniers articles
Free malware removal tool to remove Antivir Solution Pro
Free malware removal tool to get rid of Defense Center
Free malware removal tool to remove Protection Center
Free malware removal tool to remove Security Master AV
Free malware removal tool to remove Sysinternals Antivirus
Free malware removal tool to remove AV Security Suite
Free malware removal tool to remove Win Antispyware Center
Free malware removal tool to remove Data Protection
Free malware removal tool to remove Antispyware Soft
Free malware removal tool to remove Digital Protection
Free malware removal tool to remove Antivirus Suite
Free malware removal tool to remove Antivirus7
Free malware removal tool to remove Antimalware Doctor
Free malware removal tool to remove Security essentials 2010
Free malware removal tool to remove CleanUp Antivirus
View all articles...
.
Information | Contact

© All Rights Reserved. net-studio.org 2009