Fake AVG Antivirus 2011 is a rouge antivirus program which is designed to mislead people. At first the software may give you the impression that it is the legitimate antivirus program AVG, but in reality it is only a fake version of the original software. Usually this rouge software gains access to a system with the help of bogus online scanners, insecure websites and Trojans.
WE NEED TO STESS THAT THIS IS A FAKE AVG CLIENT. AVG Antivirus is a great provided of real antivrus clients and they are as much a victim in this scam as the person infected with the fake security client.
If fake AVG Antivirus 2011 gets installed to your system, it will launch a false system scan and will come up with a list of infections. Then the program will suggest you to purchase the paid version of the software to cure your machine from these infections.
But the truth is, this rouge software is only trying to force you to spend money for a product that is not capable of doing any good to your system. So you should just ignore the recommendations provided by fake AVG Antivirus 2011.
Another characteristic of this rouge program is that once it infects a system, it terminates the task manager and other programs. It is also capable of hijacking Internet Explorer and redirecting the users to insecure websites.
What is Fake AVG Antivirus 2011 Doing to your Computer Right Now?
- Blocking legitimate software programs from running
- Showing false error messages
- Constantly Bothers You and WILL NOT CLOSE
- Cannot Un-Install Fake AVG Antivirus 2011 normally
- May be blocking internet access
- Users may see pop-ups and re-direct
Once your system gets infected by fake AVG antivirus, these are some of the security alerts that you may receive:
Warning!
Once installed on your machine, NetPumper may start monitoring your web browsing habits, such as what pages you usually load and what search terms you usually type in the search page. NetPumper may also deliver excessive pop-up advertisements even when you are not browsing the Internet. NetPumper also an ability to slow down your computer performance by using your hard drive recourses in order to deliver advertisements on your computer screen.
Warning! Identity theft attempt detected!
Attacker IP:
Attack Target: Microsoft Corp. Keys
Description: Remote host tries to get access to your personal information.
Warning! Active Virus Detected!
Threat Detected: Email-Worm.Zhelatin
Infected file:
Action taken: Application Blocked
Fake AVG Antivirus 2011
» Download Fake AVG Antivirus 2011 Removal Software
Once you discover fake AVG Antivirus 2011 running in the machine, it is important that you take necessary steps to get rid of it. Luckily there are reliable fake AVG Antivirus 2011 removal guides and legitimate antivirus programs available that can assist you to remove fake AVG Antivirus.
Remove Proxy Setting so You Can Connect to the Internet Again.
How to remove Fake AVG Antivirus 2011: the Manual Procedure
In order to delete fake AVG Antivirus 2011 from your computer manually, first you should kill the following process(s):
- AVG Antivirus 2011.exe ( PLease note these processes may change over time )
- C:\Program Files\AVG Antivirus 2011\avg.exe
To stop the above mentioned processes, at first you need to go to the location of the file and rename the file. After that you will need to restart the system and get back to the file location. Then you will have to remove the file.
After that, you should delete the following files:
For Windows XP
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\
C:\Documents and Settings \All Users\Start Menu\AVG Antivirus 2011.lnk
C:\Documents and Settings \All Users\Start Menu\AVG\AVG Antivirus 2011.lnk
C:\Documents and Settings \All Users\Start Menu\AVG\Uninstall.lnk
C:\Documents and Settings\All Users\StartMenu\AVG\AVG Antivirus 2011.lnk
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\AVG Antivirus 2011.lnk
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\Uninstall.lnk
C:\Documents and Settings \[UserName]\Desktop\AVG Antivirus 2011.lnk
C:\Documents and Settings\Desktop\AVG Antivirus 2011.lnk
C:\Documents and Settings\YOUR USER NAME\ApplicationData\Local\Temp\OQ4C92F6.exe
C:\Program Files\AVG Antivirus 2011\AVG Antivirus 2011.exe
C:\ProgramFiles\AVG Antivirus 2011\AVG Antivirus 2011.exe
C:\Program Files\AVG Antivirus 2011\avg.exe
C:\Program Files\AVG Antivirus 2011\
C:\WINDOWS\system32\iesafemode.exe
%Desktop%\AVG Antivirus 2011.lnk
For Windows Vista/Windows 7
C:\Users\All Users\Start Menu\AVG Antivirus 2011.lnk
C:\Users\All Users\Start Menu\AVG\AVG Antivirus 2011.lnk
C:\Users\All Users\Start Menu\AVG\Uninstall.lnk
C:\Users\[UserName]\Desktop\AVG Antivirus 2011.lnk
C:\Users\Desktop\AVG Antivirus 2011.lnk
C:\Program Data\Microsoft\Windows\Start Menu\AVG Antivirus 2011.lnk
C:\Program Data\Microsoft\Windows\Start Menu\AVG\AVG Antivirus 2011.lnk
C:\Program Data\Microsoft\Windows\Start Menu\AVG\Uninstall.lnk
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\AVG Antivirus 2011.lnk
C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\Uninstall.lnk
C:\ProgramFiles(x86)\AVG Antivirus 2011\
C:\ProgramFiles(x86)\AVG Antivirus 2011\avg.exe
C:\ProgramFiles(x86)\AVG Antivirus 2011\AVG Antivirus 2011.exe
C:\WINDOWS\system32\iesafemode.exe
C:\Users\YOUR USER NAME\AppData\Local\Temp\OQ4C92F6.exe
%Desktop%\AVG Antivirus 2011.lnk
Fake AVG Antivirus 2011: Deleting the Registry Files
You should delete infected registry files too in order to clean fake AVG Antivirus 2011 from your system. You might have to delete these registry values:
HKEY_CURRENT_USER\Software\AVG Antivirus 2011
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “AVG Antivirus 2011”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Antivirus 2011
HKEY_CURRENT_USER\Software\A88246
HKEY_CURRENT_USER\Software\Mon246
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “AVG Antivirus 2011” = ‘C:\Program Files\AVG Antivirus 2011\avg.exe’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\opera.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safari.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “WinNT-A8I 28.01.2011”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe “Debugger” = ‘iesafemode.exe -sb’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe “Debugger” = ‘iesafemode.exe -sb’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe “Debugger” = ‘iesafemode.exe -sb’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\opera.exe “Debugger” = ‘iesafemode.exe -sb’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safari.exe “Debugger” = ‘iesafemode.exe -sb’
Again we would like to emphasize on a complete virus scan of the machine once the files are deleted to ensure that the system it is completely clean of viruses. For that, we suggest using Spyware Doctor with Antivirus.
Fake AVG Antivirus 2011 Directories:
Windows XP
- C:\Program Files\AVG Antivirus 2011\
Windows Vista/Windows 7
- C:\Documents and Settings\All Users\Start Menu\AVG Antivirus 2011\
Outside Resources:
http://www.2-viruses.com/remove-avg-antivirus-2011-fake
http://deletemalware.blogspot.com/2011/01/how-to-remove-fake-avg-antivirus-2011.html
Everything time I try to end any process with AVG in the line text, it just reappears at the top. Advise please!