anti spyware,remove Spyware,spyware remove, free spyware removal,free spyware software

How to Remove “Advanced Virus Remover” free

Posted by egomoo on August 11, 2009
Manual removal instructions, Rogue Anti Spyware

what is “Advanced Virus Removal” ?



Recently, this Rogue Antispyware called “Advanced Virus Removal” has been spreading in the wild. It give user false indication that the PC is infected wanting them to purchase the full version.

Advanced Virus Removal

Advanced Virus Removal

while infected with “Advanced Virus Removal”, a Red x pop up Your computer is infected ! Windows has detected spyware infection!

"Advanced Virus Removal" warning

"Advanced Virus Removal" warning

 

"Advanced Virus Removal" main screenshot

"Advanced Virus Removal" main screenshot


when the  spyware is running you will also see false security alerts appear from the Windows taskbar. These alerts range from warnings that you are infected to a remote computer hacking your computer. Just like the fake scan results, these alerts are just another attempt to scare you into thinking you are infected. The current text of one of these alerts is:

System warning!
Continue working in unprotected mode is very dangerous. Viruses can damage your confidential data and work on your computer. Click here to protect your computer.

application cannot be executed! the file is infected. please activite your anti-virus software.

"Advanced Virus Removal"

"Advanced Virus Removal"



Associated Advanced Virus Remover Files:
c:\windows\system32\winupdate.exe
c:\windows\system32\winhelper.dll
c:\windows\system32\AVR09.exe
c:\Program Files\AdvancedVirusRemover
c:\Program Files\AdvancedVirusRemover\PAVRM.exe
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced Virus Remover.lnk
%UserProfile%\Desktop\Advanced Virus Remover.lnk
%UserProfile%\Start Menu\Advanced Virus Remover.lnk 

How to get rid of  ”Advanced Virus Remover”


Step1: Please download ComboFix from Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved and renamed following this process directly to your desktop**

  1. 1.If you are using Firefox, make sure that your download settings are as follows:
    • Tools->Options->Main tab
    • Set to "Always ask me where to Save the files".
  2. 2.During the download, rename Combofix to Combo-Fix as follows:





  3. 3.It is important you rename Combofix during the download, but not after.
  4. 4.Please do not rename Combofix to other names, but only to the one indicated.


    5. Step 2:Close any open browsers. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix
    Step 3:Open notepad and copy/paste the text in the quotebox below into it:
    or you can download the  cfscript.text here

    File::
    c:\windows\system32\winupdate.exe
    c:\windows\system32\winhelper.dll
    c:\windows\system32\AVR09.exe
    c:\Program Files\AdvancedVirusRemover\PAVRM.exe

    Save this as CFScript.txt, in the same location as ComboFix.exe


    Refering to the picture above, drag CFScript into ComboFix.exe
    More for detail to using Combofix ,please visit here
    Step4: download Regace for other Registry repairing, cleaning errors and problems to optimize your PC. It is an amazing program that I use!

    Additional Steps to keep your PC Clear:

    PS:using Malwarebytes'Anti-Malware to Remove other spyware ,if you don't have one,here it is :Malwarebytes' Anti-Malware Download Link
    good luck!

    Technorati : , , , ,

     

    Share/Save/Bookmark


Tags: , , , , , , , , ,

16 Comments to How to Remove “Advanced Virus Remover” free

Rowdy UNITED STATES Internet Explorer Windows
August 23, 2009 IP:67.166.50.254

Combo Fix was the ONLY solution I could find on the web that wasn’t an advertisement for another fee based malware product. Ad-aware couldn’t touch it, and Norton was absolutely useless. This malware installed while Norton was installed with a live update performed 30 minutes earlier.

Thank you so much for this fix. 38 minutes, start to finish including reboots.

Reply

Shankar INDIA Internet Explorer Windows
August 27, 2009 IP:122.164.166.198

Hello sir,

Thanks for your article.
My machine is infected with this virus.
I found that winupdate.exe was the culprit and removed it. But the other things such as Internet Explorer and Ping command doesn’t worked for me. It says “winhelper.dll is not a valid image .. “, and i don’t know how to fix this. After reading your article, and followed as per the instruction and get fixed the problem. Once again thank you very much.

Reply

Jamie3820 Internet Explorer Windows
September 27, 2009 IP:75.97.235.22

Thank You so much for the article.
This was the second time I had this virus and had to resort to a System Recovery the last time.
This took a little more than 30 minutes and it seems like the virus is completely gone.

Reply

John Taylor Mozilla Firefox Windows
October 1, 2009 IP:41.177.42.171

Thank you very much for your help. It has appeared to work. I have AVG and also XoftspySE (registered) installed which never picked this virus up never mind remove it.

Your help is very much appreciated. I wonder how did this virus get in my PC as I very seldom download anything. I thought with regular Windows updates and firewalls and these anti virus programmes I was protected. What happened? Anybody got any ideas so I can try to prevent further infections?
Thanks

Reply

Philb316 CANADA Internet Explorer Windows
October 14, 2009 IP:216.59.252.252

Thank you for your software – it ran perfectly, and on a PC which was running the virus. Very impressive. My “avast” AV detected but couldn’t get rid of the “AdvancedVirusRemover” malware. Tell me where to send the check.

Reply

Suleyman UNITED STATES Google Chrome Windows
October 16, 2009 IP:169.226.70.27

Thank you so much. It worked and gave my internet connection back. There are some other removers for that virus but combofix also repairs the connection too.
Love you guys !

Reply

LesLes AUSTRALIA Internet Explorer Windows
October 26, 2009 IP:210.1.199.65

I had an apparent update for Adobe Acrobat and I clicked “install” – but from now on I will go to Acrobat and check for updates from inside the program as after I clicked “install” I suddenly started having problems with Advanced Virus Remover. It wouldn’t even let me open Notepad to use your method of removal and also disabled task manager, but I got around that by using MSWord and saving the file as a txt file.

Seems to have fixed the problem so far.

Reply

Diogo PORTUGAL Internet Explorer Windows
November 13, 2009 IP:85.241.13.38

thank you thank you thank you :D

Reply

Barbara UNITED KINGDOM Mozilla Firefox Windows
November 14, 2009 IP:78.146.201.5

I must say that this solution to the issues regarding these rogue anti spyware is a winner!!. I do thank you for your software and shall recommend it to all that I know who uses a PC. Again many many thanks

Reply

pravin INDIA Google Chrome Windows
November 14, 2009 IP:121.247.79.154

Hi,
Thank You very much for your such a unconditional help,i was realy fed up of Advance Virus Remover stuff.it didnot allow me to use my laptop and most of my applications were not functioning well.i followed few simple steps adviced by you that solved the problem completely.
thanks for every thing……………..
Keep up the good work.
Regardes ,
Pravin

Reply

Jonny UNITED STATES Internet Explorer Windows
November 17, 2009 IP:96.61.60.159

Thanks so much! I downloaded your files to a flash drive on another computer because my internet connection wasn’t working on the infected laptop. Started the infected laptop in safe mode and combined the files as instructed and the ComboFix stopped because there was an antivirus program running in the background that i couldn’t disable. Rebooted normally, logged in and ComboFix took over and cleaned everything out. Thanks!!!

Reply

David Abreu UNITED STATES Mozilla Firefox Windows
November 25, 2009 IP:216.30.206.58

Thank GOD for you!

There are so many people that devote thier lives to evil, It feels good to see some good. You made thiss program not to make money or something fancy, but simple, DOS based from the sweetness of your heart compassion. Thank you so much, I tried Windows defender, spywarebtes, Malawware, and Adaware and NOTHING worked!

I think the rouge had replicated itself on to my other virtual drives and made copy.exe and host.exe files. I would only scan my primary C: so i guess the virus would just keep copying itself and coming back. I truly cant thank you enough after 2 days of fighting this thing. May God bless you for your effort.

A humble Christian,

Reply

jde UNITED STATES Internet Explorer Windows
November 26, 2009 IP:67.242.67.4

Worked perfectly. Thank you very much!

Reply

Al UNITED STATES Internet Explorer Windows
November 28, 2009 IP:71.89.102.140

Well, I have to admit I was skeptical. It is almost 4am and I have been fighting this stupid thing for 3 hours. The above worked well. My only comment is that the virus would not let me open Notepad. To get around that, I found an old note to open and rename. Thanks a lot. I will bookmark your sight.

Reply

Mike UNITED STATES Internet Explorer Windows
November 30, 2009 IP:69.207.43.94

Terrific tool! I thought I was going to have to reformat my C: drive and re-install windows. Thanks to Combofix, I didn’t have to do any of that. Not only that, but my PC runs much faster now. Thanks again, you guys ROCK!!!!

Reply

BJ UNITED STATES Internet Explorer Windows
December 1, 2009 IP:205.188.116.11

You are AWESOME!!!! I am computer stupid and I did step by step what you said and it actually worked.. Thank God for people like you

Reply

Leave a comment

WP_Big_City


 Powered by Max Banner Ads