Posts Comments

Anti-Virus-1 Virus Remoal Guide

By admin on May 26, 2010 Leave a Comment

Description: Anti-Virus-1 is rogue security application that uses scare tactics to try and induce users into paying for its license. Anti-Virus-1 reaches the user’s system via Trojans such as Zlob and Vundo that get downloaded by exploiting browser weaknesses as well as fake ActiveX Video codec packs. Once installed, Anti-Virus-1 performs a large number of fake security scans on the system and comes up with a lot of fake infections which it claims are plaguing the user’s computer. An endless stream of fake security pop-ups are also shown from the Windows Taskbar, claiming that the computer is under attack from malicious software. The aim of all this activity is to try and get the user to purchase a license to the ‘full’ version of Anti-Virus-1 by claiming that the currently installed ‘trial’ version is insufficient to remove all the detected ‘threats’. However, the so-called ‘full’ version of this threat is just as incapable of cleaning out any computer system as the ‘trial’ version is.

Anti-Virus-1

Anti-Virus-1

» Download Anti-Virus-1 Removal Software

As soon as you find a copy of this malicious software on your computer, you should take steps to remove Anti-Virus-1. Removal is a process which involves the stopping of processes, the unregistering of DLLs, deletion of files and folders and the removal of registry entries

Anti-Virus-1 Manual Removal Procedures

The first step you need to take in order to delete this is to stop the following processes:

  • Anti-Virus-1.exe
  • AV1i.exe
  • Stage2[1].exe
  • AV1i2.exe
  • StageThree[1].exe
  • svchost[1].exe
  • svchost.exe
  • av1.exe
  • install[1].exe

Next, it is necessary to unregister the following DLL files:

  • QWProtect[1].dll
  • QWProtect.dll

The final step in the file removal portion of Anti-Virus-1 removal is the deletion of the following files and folders:

Windows XP:

  • c:\Documents and Settings\All Users\Application Data\AV1
  • c:\Documents and Settings\All Users\Start Menu\Programs\Anti-virus-1
  • c:\Documents and Settings\All Users\Application Data\AV1\AV1.cab
  • c:\Documents and Settings\All Users\Application Data\AV1\av1.exe
  • c:\Documents and Settings\All Users\Application Data\AV1\AV1i.exe
  • c:\Documents and Settings\All Users\Application Data\AV1\AV1i2.exe
  • c:\Documents and Settings\All Users\Application Data\AV1\QWProtect.dll
  • c:\Documents and Settings\All Users\Application Data\AV1\svchost.exe
  • c:\Documents and Settings\All Users\Desktop\Anti-virus-1.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Anti-virus-1\Anti-virus-1.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Anti-virus-1\Uninstall.lnk

Windows Vista/7:

  • c:\Users\%USER%\AppData\AV1
  • c:\Users\%USER%\Documents \Start Menu\Programs\Anti-virus-1
  • c:\ Users\%USER%\AppData \AV1\AV1.cab
  • c:\ Users\%USER%\AppData \AV1\av1.exe
  • c:\ Users\%USER%\AppData \AV1\AV1i.exe
  • c:\ Users\%USER%\AppData \AV1\AV1i2.exe
  • c:\ Users\%USER%\AppData \AV1\QWProtect.dll
  • c:\ Users\%USER%\AppData \AV1\svchost.exe
  • c:\ Users\%USER% \Desktop\Anti-virus-1.lnk
  • c:\ Users\%USER%\Documents \Start Menu\Programs\Anti-virus-1\Anti-virus-1.lnk

Anti-Virus-1 Registry Removal Procedures

The following registry entries should also be deleted for complete Anti-Virus-1 removal:

  • HKEY_CURRENT_USER\Software\AV1
  • HKEY_CURRENT_USER\Software\AV1\AV1\{F275E931-AFEC-4f70-B0D4-CC2731B945E0}
  • HKEY_CLASSES_ROOT\AppID\{29256442-2C14-48CA-B756-3EE0F8BDC774}
  • HKEY_CLASSES_ROOT\AppID\QWProtect.DLL
  • HKEY_CLASSES_ROOT\CLSID\{70FEAD04-A7FD-4B89-B814-8A8251C90EF7}
  • HKEY_CLASSES_ROOT\Interface\{051C9A06-FB08-486F-B09B-8B33B261637D}
  • HKEY_CLASSES_ROOT\QWProtect.QWProtectBHO
  • HKEY_CLASSES_ROOT\TypeLib\{512E801E-2F02-4ADE-ACAA-58F08A22B2F8}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{70FEAD04-A7FD-4B89-B814-8A8251C90EF7}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Monitor calibration"

Once these steps have been completed, you have successfully removed Anti-Virus-1 from your computer

Anti-Virus-1 Directories:

  • c:\Documents and Settings\All Users\Application Data\AV1\
  • Vista/Win7 c:\ Users\%USER%\AppData \AV1\

Outside Resources:

http://www.bleepingcomputer.com/virus-removal/anti-virus-1-removal

Filed Under: Virus Removal Tagged With: , , , , , , ,

Speak Your Mind

*

RemoveVirus.org cannot be held liable for any damages that may occur from using our community virus removal guides. Viruses cause damage and unless you know what you are doing you may loose your data. We strongly suggest you backup your data before you attempt to remove any virus. Each product or service is a trademark of their respective company. We do make a commission off of each product we recommend. This is how removevirus.org is able to keep writing our virus removal guides. All Free based antivirus scanners recommended on this site are limited. This means they may not be fully functional and limited in use. A free trial scan allows you to see if that security client can pick up the virus you are infected with.