Antivirus Live
Antivirus Live (also known as AntivirusLive) is the latest Rogue Anti-Spyware creation from the notorious Magic Software stable. Antivirus Live uses malicious cutting-edge techniques, including the use of backdoor Trojans. Once active, Antivirus Live disables the computer's security options, making it extremely difficult to uninstall through the Control Panel or via Safe Mode. Antivirus Live then starts spewing annoying popup ads and runs a security scan which reports the fake detection of numerous viruses and threats. Antivirus Live will recommend buying its licensed copy to solve the alleged spyware problems. Do not fall for Antivirus Live's trickery. This hazardous parasite should be terminated from the system immediately.
File System Modifications
- The following files were created in the system:
# File Name 1 %WINDOWS%\sysguard.exe 2 %WINDOWS%\system32\iehelper.dll
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\AvScanHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}HKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOT\CLSID\{BAD4551D-9B24-42cb-9BCD-818CA2DA7B63}
The Anitvirus Live program they talk about is truly one hell of a program.. It locks out the user completely from programs that would help remove it. It also locks down your internet browser only taking you to their fake website asking you to purchase their phoney program. The only way to remove it is to restart your computer and immediatly go to a restore program. DO NOT mess around, right when your computer goes to windows after restart just go to your restore program and go to a previously safe store date. That was the only way I was able to defeat the BS program. SOOO Frustrating but after 10 restarts, also disabling your internet connection once the virus takes hold bears no conviction... Good luck
im infected with antivirus live but its blocking any and every utility that may help in removing it. im essentially helpless and may have to wipe my hard drive unless theres anything else i can do
hi
since last night my computer screen keeps coming up with this "anitvirus live".
The program we have is Avast. My other computer keeps popping the "live" thing up to scan and I will not do it but it won't let me do anything. Please help and let me know how to get rid of this
If there is also a number I can call later when I get home from work I'd appreciate it.
Thanks
I tried this process, and the only thing that stops me from actually starting it, is the "antivirus live". I cannot open task manager. antivirus opens up with the alert thing and shuts task manager down..... great day.. >:(
I had to remove from one of my computers...it must be a newer version...file name was different... \"nnywsysguard.exe\"...it was probably renamed to throw people off searching for the exact name...I thought I would pass it along...GOOD LUCK!
can you please get this antivirus live off my computer please thank you
i don't like ti at all thank you
You will find these same instructions all over the internet, but they are completely useless. Since "Antivirus Live" will not allow you to start task manager, so you can't kill the process. Also you won't be able to open "Regedit", so editing the registry is not possible...
task manager is blocked
hi,i just wanted to thank the person or persons who publish these instructions on how to get rid of the antivirus live problem that i HAD! THANK YOU,THANK YOU!
I have two computers that one for sure is infected with Antivirus Live so badly that I can't get to the internet to download the scanner. I can run the machine in Safe Mode, but still the Internet explorer won't work. Is there a method of downloading to another drive and then installing via CD or DVD to the infected machine?
Had the problem. Here is a way to remove it that worked for me.
1. Right click on the desktop icon for the problem file and go to properties.
2. Click on 'find target' to locate the file. You will not be able to delete it!
3. Now select the "exe" file and change the file name. I changed the extension to "xxx".
4. Now shut down your computer and reboot it.
5. Your computer should be working OK.
6. Now go to the location of the file you change the name of and you will be able to delete it. Delete the other two files too.
7. Run CCleaner, a free program that is very good at cleaning up your system. Be shre to scan your system and dieete all the files found. Then run the register tool and clean the registry too.
I think this will eliminate the problem. It did for me!