Personal Antivirus
Personal Antivirus is one of the bad strains making the rounds right now. This fake security client is getting harder and harder to remove. This time around it seems to also highjack your desktop as well. How badly you are infected will totaly depend on how you got infected. In many cases people are ticked into installing this software because they are prompted to install an update or fix an error while trying to watch a video online. We are also seeing more and more people not being able to run or updated their security software. If all that was not bad enough, many people are now also getting re-directs and fake warnings when trying to view any website. Searches are also now being re-directed as well to galla-search. If you are infected with Personal Antivirus you do need to take action right away before matters get worse. Be sure to run a full scan using your favorite antivirus and antispyware client.
Some symptoms of personal Antivirus:
* Bogus Scan results * Auto Scans on Start-up * Warning coming out of a fake shield in the system tray * pop-ups and re-directs to the fake software's website * constant warnings of being infected as well as false statements of other trojans
Manual removal instructions for This Virus( Please read our disclaimer bellow )
Kill processes:
- PAV.exe
Once you kill this process you will find that it starts up again so you will need to already browse down to the folder were this file is and delete it right away. You should also remove this process from the start-up menu. Delete registry values:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Personal Antivirus_is1
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PrS”
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Personal Antivirus”
Delete files:
- pav.exe
- Uninstall Personal Antivirus.lnk
- %UserProfile%\Application Data\Personal Antivirus\settings.ini
- %UserProfile%\Application Data\Personal Antivirus\uill.ini
- %UserProfile%\Application Data\Personal Antivirus\unins000.exe
- %UserProfile%\Application Data\Personal Antivirus\Uninstall Personal Antivirus.lnk
- %UserProfile%\Application Data\Personal Antivirus\db
- %UserProfile%\Application Data\Personal Antivirus\db\config.cfg
- %UserProfile%\Application Data\Personal Antivirus\db\Timeout.inf
- %UserProfile%\Application Data\Personal Antivirus\db\Urls.inf
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
- %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iv.exe
- %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
Delete directories:
- c:\Program Files\PersonalAV\ ( Delete this folder and everything within this folder)
Outside Resources:
http://www.bleepingcomputer.com/virus-removal/remove-personal-antivirus
Speak Your Mind