NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  
Title: Antivirus Live
Type: Rogue Antispyware

Remove Antivirus Live. Removal instructions


 
Also known as: AntivirusLive
Severity scale:Antivirus Live severity is 72  (72 / 100)
 
Antivirus Live is a rogue antivirus application, fake spyware removal tool that enters a computer with the help or Trojans and other malicious software. It is from the same family as Antivirus System PRO and Spyware Protect 2009. Once installed, AntivirusLive will display fake security alerts and notifications about serious computer security threats or infections. The rogue application will also block almost all programs, especially anti-virus, to protect itself from being deleted. You will see the "Application can not be executed" warning when you launch applications. To make things even more complicated, it will hijack Internet Explorer and change LAN Settings. Antivirus Live enables proxy server for LAN and blocks security related and antivirus software websites.

Antivirus Live graphical user interface
[Figure 1. Antivirus Live graphical user interface]

Antivirus Live is promoted through the use of Trojans that come from fake online scanners and other misleading websites. It is also distributed using social engineering. The main goal of AntivirusLive is to trick you into purchasing the program. In order to achieve its goals, the misleading application will simulate a system scan and report false scan results. Antivirus Live will state that your computer is badly infected with Trojans, worms, spyware and other malware. Then it will ask you to pay for a full version of the program to remove the infections which do not even exist. In other words, this is nothing more but a scam. Do not purchase it!

What is more, Antivirus Live will impersonate Windows Security Center and state that Windows did not find any anti-virus software on your computer and that Windows are not updated. Obviously, the rogue program will suggest you to active Antivirus Live in order to protect your computer. And that's by the way, the main difference between the legitimate Security and the fake one. The legitimate one does not promote any particular anti-virus software. When this fake anti-spyware application is running, you will also see many fake security alerts. Some of them will state:


Windows Security Alert
Windows reports that computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the scan you computer. Your system might be at risk now.


Infiltration alert
Your computer is being attacked by an Internet Virus. It could be a password-stealing attack, a trojan-dropper or similar. Threat: Wind32/Nuqel.E


As you can see, Antivirus Live is totally useless and even dangerous application. Before you can remove this infection you have to end all processes associated with Antivirus Live malware. Otherwise you won't be able to run any anti-spyware/virus software. First of all, you have to disable proxy server for LAN in Internet Explorer or use another browser, for example Firefox or Opera.

How to disable Proxy server for LAN in Internet Explorer:

1. Open Internet Explorer. Click on the Tools menu and then select Internet Options.


2. In the the Internet Options window click on the Connections tab. Then click on the LAN settings button.


3. Now you will see Local Area Network (LAN) settings window. Uncheck the checkbox labeled Use a proxy server for your LAN under the Proxy Server section and press OK.


4. Now download renamed Process Explorer (explorer.com) and terminate Antivirus Live processes. Should be [random]sysguard.exe, for example: wmcqsysguard.exe.

NOTE: Do not reboot your computer after using Process Explorer and terminating Antivirus Live processes.

Now you should be able to download an automatic Antivirus Live removal tool or another anti-spyware application. Most importantly, do not purchase it. If you have already done that, please contact your credit card company and dispute the charges.

Related files: [random]sysguard.exe

Antivirus Live properties:
• Changes browser settings
• Shows commercial adverts
• Connects itself to the internet
• Stays resident in background

Automatic Antivirus Live removal:

remover for Antivirus Live
SpyHunter is recommended remover to uninstall Antivirus Live. You should confirm using free trial that it detects current version of parasite.

Note: Tested and Confirmed means that we have tested spyware remover with multiple versions of Antivirus Live and got the best results. There might be updated or modified version of particular parasite that require manual killing of parasite process or an update. In such case try other removers in the line.

Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove Antivirus Live using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
STOPzilla
download | review
Tested and Confirmed! STOPzilla removes Antivirus Live (2009-12-08 02:21:20)
Malwarebytes Anti Malware
download | review
Tested and Confirmed! Malwarebytes Anti Malware removes Antivirus Live (2009-12-08 02:21:20)
Spyware Doctor
download | review | tutorial
We are testing Spyware Doctor's efficiency at removing Antivirus Live (2011-01-08 15:38:40)
XoftSpySE Anti Spyware
download | review

Antivirus Live manual removal:

Kill processes:
[random]sysguard.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_CURRENT_USER\Software\AvScan
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = ""
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = "http=127.0.0.1:5555"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = ".exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[random]"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "[random]"
HELP:
how to remove registry entries

Delete files:
[random]sysguard.exe
HELP:
how to remove harmful files

Delete directories:
%UserProfile%\Local Settings\Application Data\[RANDOM CHARACTERS]\
%UserProfile%\Local Settings\Application Data\[RANDOM CHARACTERS]\[random]sysguard.exe
Information added: 2009-12-08 02:21:20
Information updated: 2011-01-08 13:01:25

Additional resources related to Antivirus Live:

Attention: If you know or you have a website or page about Antivirus Live removal, feel free to add a link to this list: add url
more resources
0
0
John
excellent instructions ! This thing is a pest.
2009 12 09
0
0
<Guest>
I have Windows Vista and when I uncheck the proxy settings, I can click "OK" but I cannot "APPLY" it on the next step. Any help with this??
2009 12 10
0
0
<Guest>
i would like to note the version i had ran as sihxsysguard.exe thanks for all your help =D
2009 12 10
0
0
nsquid
another method i've found effective is to use msconfig and boot into diagnostic mode and then install and runl malwarebytes.
2009 12 11
0
0
Cad
Thanks a lot, i deleted it manually with success in 10 minutes! mine was : YDUASYSGUARD.EXE

thanks again, saved me lots of time and precious files.
2009 12 12
0
0
<Guest>
I contacted Norton but we were unable to connect to the internet. In the end I rebooted the PC and pressed F8. I select fix Windows and did a system restore from a few days back. When I restarted I repaired Norton and downloaded the Windows updates. I don't think the program is there anymore
2009 12 13
0
0
<Guest>
Thank you so much, I was able to do this from SAFE MODE only, because my version of the malware would not let me enter the task manager.
2009 12 13
0
0
Rob
Thanks very much, I was able to delete it manually in just a few minutes.
It may just have been for my version of the malware, but I found that opening the task manager immediately after startup meant that it didn't have time to disable it, and I could end the process.
2009 12 14
0
0
MHH
Download Process Explorer & renamed. Antivirus live will not let this exe file run - also I cannot boot into safe mode - What other options are there ?
2009 12 15
0
0
<Guest>
The virus will not allow me t change the LAN settings or to open the 'explorer' download file, that I downloaded on Mozilla. Any suggestions?
Thanks in advance for your help.
2009 12 15
0
0
<Guest>
I downloaded Malwarebytes Anti Malware and started it immediately after startup - before the pest had time to load. It did the rest.

Thanks!!
2009 12 15
0
0
<Guest>
I had this virus, downloaded the Malwarebytes' anti-malware software, went into safe mode (by hitting F8 when laptop is loading up). Opened up the software, took about 30-40 mins to scan, found the infected virus's and deleted them. Laptop worked fine afterwards!
2009 12 15
0
0
<Guest>
i dont get it :)
2009 12 16
0
0
<Guest>
thank you loads for this web page, im in the middle of an attack from his virus and im getting annoyed haha
2009 12 17
0
0
<Guest>
When I uncheck use proxy server then verify it is still checked - And It will not allow me to run the process explorer
2009 12 17
0
0
<Guest>
sehr hilfreich
2009 12 17
0
0
<Guest>
Thanks for the help here, I appear to have gotten it corrected by started the process manager immediately after booting as someone else here mentioned.

My version was tlgysysguard.exe
2009 12 17
0
0
SHAM
To get to the Process Manager, press and hold (Ctrl+Alt+Del) just as soon as you are able to upon Boot up. Good Luck !!! /Salute!
2009 12 18
0
0
ryan
this is forcing me to buy PC Doctor...thought it was free trial..??
2009 12 18
0
0
<Guest>
I don't get this at all. Really don't understand # 4. What and where do you type it in ?
2009 12 18
0
0
<Guest>
I have the same problem as number 8.

This is driving me crazy!!!!!!!!!
2009 12 17
0
0
Lea
Hi, I have this sh*t too and I can't even go on the 'Tools menu' on internet explorer! How can I do?
Thanks
2009 12 18
0
0
PESHuk
run - regedit - find all keys from above and delete 1 by 1 easy as that, ALL IN SAFE MODE!!! make sure you search and delete the.EXE file!
2009 12 18
0
0
<Guest>
cannot open in safe mode I am being prevented
2009 12 20
0
0
<Guest>
It wont let me open internet options, and is driving me crazy with these dumb security warnings!! AHHH,
2009 12 21
0
0
<Guest>
OMG TY SO MUCH THAT WELP ME A LOT BUT THE NAME WAS FSHSYSGUARD
2009 12 22
0
0
<Guest>
I have the virus atm and im wondering why my Maleweare has a run time error anyone who can help
2009 12 23
0
0
<Guest>
I've downloaded the Explorer App suggested and still can't open the file. This virus is not allowing me to open ANYTHING !! Can someone please help !!! I don't understand what I'm doing wrong and I need help removing this awful virus. I cannot even open me malwarebytes
2009 12 23
0
0
<Guest>
Mine was disguised as a .pf file. The full name was NTSSYSGUARD.exe.pf. I had to search for it but was able to remove. Thank you for the info!
2009 12 23
0
0
<Guest>
Thank you for all the help! My file as disguised - it was NTSYSGUARD.exe - PDF.pf I had to search for it. After I deleted it and the registry entries and folders - all is well. Thanks!
2009 12 23
0
0
<Guest>
mine was disguised as morlsysguard.exe-3b4af561.pf It was also in C:windowsprefetch under morlsysguard.pf
2009 12 23
0
0
<Guest>
When u uncheck proxy blickon automaticially detect settings or it will reset
2009 12 23
0
0
<Guest>
I've been having a hard time trying to fully eradicate the virus that has compromised my system. It works fine after shutting it off using the task manager, manually deleting registery files, local settings..I'm using firefox...what am I missing?
2009 12 23
0
0
<Guest>
Thank you, the Malware program worked great. These forums help with getting the right information to deal with these properly. Greatly appreciated.
2009 12 24
0
0
<Guest>
AV Live keeps killing the explorer.com before as soon as I run it. I don't have time to stop the process.
2009 12 24
0
0
santa
Removal must be done in safe mode with networking, press f8 when computer is just starting, follow intructions above then download malware bytes anti malware which is free, spydoctor is not, run a scan with malware bytes and kiss it goodbye!!
2009 12 24
0
0
<Guest>
Removal must be done in safe mode with networking, hit f8 on the start up of your computer, follow the intructions above to no 4, then download Malwarebytes Anti Malware above which is free, run a scan and wave goodbye to antivirus live!!
2009 12 24
0
0
<Guest>
I can't, I don't have internet explorerwhen i download it and its almost done, AV live keeps stopping it from opening....
2009 12 24
0
0
Aubrey
A good idea for opening process explorer is to rename it to a program you can open, such as 'firefox.exe'. I tried it when i got this and it worked for me.
2009 12 24
0
0
BobFluid
finally got it removed....the process name for mine was kathysgaurd.exe
2009 12 24
0
0
<Guest>
its blocking me from installing the program please help!
2009 12 24
0
0
<Guest>
If you are running Vista, restart your computer in SAFE MODE with networking. Safe mode should deactivate the virus. You can then install and scan with Malwarebytes, anti-malware.
2009 12 24
0
0
bbentsen
You guys saved me.. the manual method in safe mode did it. Thanks guys.
NOW! How do we go about getting these F**KERS banned from teh internet?
2009 12 24
0
0
<Guest>
Thank You....It worked...however the instructions above is a bit confusing thou....i had to rely on the comments...which work wonderfully. Thank yOU.
2009 12 25
0
0
<Guest>
when i went into process explorer it wasnt in there and i started opening things and it had just gone away by itself? is it gone now?
2009 12 25
0
0
<Guest>
thnk u it worked superb
2009 12 25
0
0
<Guest>
thankyou very much.
2009 12 26
0
0
<Guest>
i'm on a different computer googling this. my infected one won't let me open ANYTHING and the only websites it lets me see are the porn ones it brings up and the 'Antiviurs Live' website. HELP!!!
2009 12 26
0
0
Helper Elf
I also found the file "RBIMSYSGUARD.EXE-1D1BB529.pf" in C:WINDOWSPrefetch.

Please review and if appropriate add this to your manual removal instructions - probably in the "Delete files" section
2009 12 26
0
0
<Guest>
the antivirus live is stoping me from using the process explorer. and the spyware doctor. so i cant do anything ..
2009 12 26
0
0
Col Kurtz
so can't these filthy sc**bags be tracked back to their ratnest through credit card records? can't something really bad happen to them?
2009 12 26
0
0
Mohegan
I shut off the comp and logged it into safemode option, I then chose to go to systemtools and choose to systemreset the comp to a day earlier. After doing that I found no trace of it.
2009 12 26
0
0
Jonathan
Confirmed if you don't download a removel tool it WILL redownload every deleted file and Regkey. Also as helper elf said there is some files in WINDOWSPrefetch does anyone now by removing this will it damage the computer in anyway?
2009 12 26
0
0
<Guest>
what you can do is log onto a different account and do this it worked for me
2009 12 27
0
0
<Guest>
I love you. Thankyou so much, if it weren't for the kindness and logic of such great human beings life would be really s**t.

Once again, Thankyou :D
2009 12 27
0
0
<Guest>
Awesome stuff
2009 12 27
0
0
L
I downloaded MBAM, but it wont let me open it. Instead I get a Runtime Error message. What can I do?
2009 12 28
0
0
James
Great work, as stated in below just boot into safe mode with network to remove the registry keys and files listed above and then run whatever your prefered cleaner is. Worked like a charm for me.
2009 12 28
0
0
<Guest>
these kind of scammers should have there fingers cut off when caught.
anyhow yea i just push f8 ..go into safe mode and systemrestore then ,,restore to a last restore point..it works
2009 12 28
0
0
<Guest>
If i cant reboot my computer then how will i get it out of safe mode?
2009 12 28
0
0
<Guest>
i got the virus and then i stupidly rebooted my computer, now i can't get on safe mode or any other mode. it automatically restarts the computer at the Windows screen. I used a bartPE boot disk to access my hard drive. Is there a way to delete the registry files from there? Help??
2009 12 28
0
0
<Guest>
when your restart your system press ctrl, alt, delete.(fast) look for "enjoydetection" or "enjoy" something under processes and end process it might appear again so watch and you have to be quick. when you end the process you can then move around online.
2009 12 29
0
0
Gregory
Thanks for the help. Antivirus Live was a headache for me.. thankfully your help helped me get rid of it.
2009 12 29
0
0
Martin L.
Yup ! Worked for me.... Many thanks from Canada !! :)
2009 12 29
0
0
<Guest>
You guys are amazing!!!! I had just told my husband to through our laptop in the trash in the morning. Thank you so much!!!
2009 12 29
0
0
Austin
Please help! I download Spyware Doctor, but now Antivirus Live will not let me open it.. I also can't open task manager because it's infected too. If I go to safe mode, all the annoying pop-ups are there too. Help!!
2009 12 30
0
0
i need help
sooooo i am trying all of this stuff and its not helping me..... can someone please help me walk through a more detailed way of removing this crap off here!!!
2009 12 31
0
0
<Guest>
THERE IS A EASIER WAY TO DO IT. IF YOU CAN GET TO YOUR SYSTEM RESTORE, RESTORE YOUR PC TO THE POINT WHERE YOU DIDNT HAVE THE SPYWARE. ITLL GO AWAY.
2009 12 31
0
0
<Guest>
HI... but what happens when your computer is so infected it can't download process explorer? I can't even get on to a website (I'm on a friend's)... please help I'm so upset and angry!! Thannks
2009 12 30
0
0
<Guest>
How do i put my computer in safe mode to remove all the registry keys???
2009 12 31
0
0
Seth
Hi, I keep trying to do this process but every time I uncheck the "Use a proxy server for your LAN" box it keeps rechecking itself.
2009 12 31
0
0
John
When i tried to use malwarebytes, it got only 1 of the files, and when i reboot the computer, it seems to restore itself. What should I do?
2010 01 01
0
0
<Guest>
Steps above would have worked if it didn't re-enable itself every few seconds. Ctrl+Alt+Del immediately upon boot and then disabeling the sysreg.exe file worked. I then downloaded a Malware tool to seek and destroy per se and it is working fine. Thanks for all the comments and tips to improve.
2010 01 01
0
0
SMB
Manual removal instructions seem to work like a charm.

The key is to reboot into safe mode so it doesn't startup at all.

Thanks!!
2010 01 02
0
0
Someone who can help
Mine has gone this is what I did. Before antivirus live starts up open up taskmanger. Look for the right name and it will stop popping up with warnings. After run and scan with malwarebytes or spyware doctor. I recemend malwarebytes anti malware. There you cured.
2010 01 03
0
0
<Guest>
Thank god for AVG and CCleaner.
As soon as I got the problem, and I got to this site. BAM! AVG cut it, and CCleaner allowed for forced removal. :D
2010 01 04
0
0
TrollBoy
FOR THOSE OF YOU USING MALWARE BYTES: If this trojan won't let you open it, go into my computer and rename "mbam" to just "m." Then the program won't recognize it as a virus program and you'll be able to open it!
2010 01 04
0
0
<Guest>
Thanks so much to the person who said to do system restore- I did that and it worked perfectly!! And it was easy!!! Thanks!!!!!!!
2010 01 04
0
0
<Guest>
system restore only works for a few days. It will come back. I have system restored 4 times now in the last 2 weeks.
2010 01 05
0
0
<Guest>
i bet you these fuk heads created this virus, so we would use their "anti virus" casue NONE of this works, anti virus companys create viruses, or lese they would be outta buissness if they created a fool proof anti virus IDIOTS
2010 01 05
0
0
<Guest>
okay can someone help me i am on delete the regestery valves but it doesnt show HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet Settings "ProxyOverride" = ""
2010 01 05
0
0
Madisyn06OnROBLOX
Uhh i have Antivirus live on my laptop does it work?
2010 01 07
0
0
Nithin Mohan
What is the file is not found ?
2010 01 08
0
0
<Guest>
help, Antivirus live isn't letting me open spyware and the ""Use a proxy server for your LAN" box it keeps rechecking itself.
2010 01 08
0
0
<Guest>
This worked perfectly, best advice ive found on the web for this
2010 01 10
0
0
<Guest>
I agree 100 percent! I followed the manual instructions and it was gone 1st shot. I would just like to know how I got it so I don't repeat the mistake. Thank You for your help!!!!
2010 01 10
0
0
<Guest>
tyvm for your help this trojan was driving me crazy, i downloaded malewarebytes and now fake windows live is now in Quarantine.
2010 01 11
0
0
<Guest>
I have a new one... This program loads a pron site on my Explorer.. that couple has a new use for pepperoni pizza.... OMG...
2010 01 12
0
0
<Guest>
how to open registry
2010 01 12
0
0
<Guest>
without going into safe mode you can open task manager IMMEDIATELY and delete the process that way also.
boy did that proxy server stuff drive me crazy.
Isn't this illegal?????
Complain to the FTC?
2010 01 12
0
0
<Guest>
pimol
2010 01 13
0
0
angry_pc_user
Our staff were infected, these instructions worked great. Thanks

Malware creators should be executed.
2010 01 13
0
0
<Guest>
two lads with computers went on pirate bay both infected in matter of minutes.
2010 01 13
0
0
<Guest>
The key is to start in Safe Mode (press F8 in start up) otherwise you cannot change the internet options. All instructions worked great, thanks!
2010 01 14
0
0
<Guest>
I can't kill the process, I used the program it suggested but it wont run it. Im in safe mode right now running malwarebytes or whatever its called but if that doesn't work is there another option?
2010 01 14
0
0
DellCompany
The best thing to do would be do to download the Malware Anti Virus program. It has a red icon.

Also you can start up normally or on safe mode for some laptops, computers, and PC's.
2010 01 15
0
0
<Guest>
Guys, you ae lifesaver. Your instructions were great. Problem fixed.
I really appreciate it.
2010 01 18
0
0
<Guest>
whenever i turn off the "Use a proxy server for your LAN" it keeps rechecking itself!!

and whenever i try to open task manager, or process explorer, or killbox
the virus closes them

please help
2010 01 16
0
0
<Guest>
i cant open internet in safe mode
2010 01 16
0
0
<Guest>
just got rid of this virus today.
I did it by starting in safe mode AND networking, then downloaded malware bytes anti malware through firefox which will scan your computer and delte the virus for you.
2010 01 17
0
0
<Guest>
I used this instructions and it seems to working fine.

Thanks for taking time and creating these instructions. God bless you.
2010 01 17
0
0
<Guest>
Awesome! Followed the instructions above and my system is clean now! Thanks
2010 01 17
0
0
<Guest>
I followed the instructions but nothing is working! It's a bad one please help
2010 01 18
0
0
<Guest>
hollly mollly it worked but now everytime i restart my comp it comes back and i have to delete it everytime.. whut do i do to get rid of all of it and never see it again ??
2010 01 18
0
0
<Guest>
WHAT A LIFESAVER!
Thank you SO much for documenting this. Worked like a charm.
2010 01 18
0
0
<Guest>
I think they've updated the virus since then, cuz now I can't run the Process Explorer. Help?
2010 01 19
0
0
<Guest>
Downloaded spy doctor, it scanned, and when i go click ''fix checked items'' it redirects me to buy spydoctor...
2010 01 19
0
0
<Guest>
Thank GOD this was here! I knew it was bad, but I didn't know how to get it off the damn computer. Thanks! It was REALLY annoying.
2010 01 19
0
0
me
you forgot to mention the headache it gives you in the description.
2010 01 19
0
0
<Guest>
I have already used these instructions on my own pc and laptop as well as multiple computers at my work place. After running explorer I simply ran AVG and it found the little bugger. Nasty spyware; thanks for the work put into this page.
2010 01 19
0
0
Dan
It actually seems to be working. I was dubious if this was a scam its self but its not and it actually helped. This was a g-d send. DEATH TO THEM PEOPLE WHO CREATED THIS!!!!
2010 01 19
0
0
<Guest>
antivirus stops program before it even starts this did not help
2010 01 19
0
0
<Guest>
Mine cannot open anything not even one of my folders
2010 01 19
0
0
sunday mornin
that was easy, thanks a million. Safe Mode + Malwarebytes is all it took.
2010 01 19
0
0
<Guest>
All I did is start windows in safe mode and used a restore point before I had the virus, no sign of it now!
2010 01 19
0
0
<Guest>
In SAFE MODE to remove virus is trhe best way to start. Worked for me!
2010 01 20
0
0
<Guest>
Thank god for this page that antivirus live crap got on my laptop at first it kept opening internet explorer and going to porn sites whenever i clicked no when it asked me to buy it but when i followed the instructions on this page it actually helped. that anti virus crap sucks
2010 01 20
0
0
<Guest>
this great thing but ... im on my pc with it, *it doesnt stop me from using firefox * haha* but i can't open up explorer.exe thing and also, it changes my settings back to use to use prox yand keeps opening up porno's ...
2010 01 20
0
0
<Guest>
thanks. this seems to have worked.
2010 01 20
0
0
<Guest>
Thank you so much - it worked great!
2010 01 20
0
0
<Guest>
Son of a gun, if this is a scam you should be ashamed of yourselves.
2010 01 20
0
0
<Guest>
thanks it seems to have helped
2010 01 21
0
0
<Guest>
It still wont let my yahoo messenger open
2010 01 21
0
0
<Guest>
I can't connect to the internet when using safemode (in order to download the file to kill the virus). any suggestions??

When not in safemode, i can at least have a connection, just can't use the internet because of the virus. but in safemode, it won't even let me connect.
2010 01 21
0
0
<Guest>
c:windowssystem32configsystemprofilelocal settingsapplication datarandom named folder*****sysguard.exe
2010 01 21
0
0
to 2010-01-21 07:01:07
You have to reboot your PC in "Safe Mode with Networking" not just "Safe Mode".
2010 01 21
0
0
<Guest>
thank you.
2010 01 22
0
0
<Guest>
It worked for me, took a while, but, it was worth it, on a side note I will not keep my current anti-viral that i have now. it took about an hour and half to do. the "viral" would not allow me to open anything, such a pain.
2010 01 22
0
0
<Guest>
This is from Vegas... thank you for posting the process and the steps in getting rid of AntiVirus Live. Yes, it took awhile to get it done, but it sure was worth it. My computer is back to life again, almost like brand new again. thank you. thank you. thank you.

Michael
2010 01 23
0
0
<Guest>
Be patient, it works! Thanks so much!
2010 01 24
0
0
<Guest>
I was the proud recepiant of Antivirus Live. As it stated, I was unable to do anything on my computer.
I rebooted into Safe Mode and ran Malware and Supra. Lucky fir me it did the job.
Now that everything is back to normal, I intend to purchase the programs.
2010 01 24
0
0
<Guest>
When I try to reboot in safe mode with networking, the system restarts and stays in the safe mode option screen.
2010 01 26
0
0
<Guest>
can i ask what antivirus program you all use.?
2010 01 26
0
0
<Guest>
Used a BartPE Boot Disk...then searched for *sysguard.exe ... then deleted all *sysguard.exe. This then allowed me to boot the OS and comb out the registry entries. Thanks for Identifying the "bad" file.
2010 01 26
0
0
<Guest>
I found that after getting rid of this, it would return the next day when I would turn my computer on again. So I simply did a system restore to a couple days before it happened, and all is fine now. (by the way, I use Malwarebytes' Anti-Malware. It works great and is free.)
2010 01 27
0
0
<Guest>
The only way I can get rid of this is to boot to safe mode and then search for sysguard and delete the files. After doing this, it worked fine. Thanks for letting me know which file to look for.
2010 01 27
0
1
<Guest>
Ahh !!
Some of the he joys of running Linux.
NO spyware
NO viruses
NO nasties
And best of all, NO Microsoft
Joy !!!!
2010 01 28
0
0
EVILx13
newer version activeley scans and closes processes in in if alternate windows instalation exists logon to it search for *guard*.exe* rightclick when found take away ntfs perrmisions from "everyone"
2010 01 29
0
0
<Guest>
Check
2010 01 29
0
0
Keke
It worked! -3- lawl, I'm 15 and a expert at computers. :) thank you.
2010 02 06
0
0
cjg
OK... but what do you do if you can't get your computer to boot, even in safe mode or with command prompt? I've tried Trinity, but not good enough with it to edit registry... Any suggestions?
2010 02 09
0
0
<mustafa>
its good
2010 02 19
0
0
<Guest>
all this worked... but now no internet explorer or firefox works. The PC says that the application does not exist.

How do I get online to reload IE orfirefox or anything.
2010 02 24
0
0
lita
thank you
2010 02 26
0
0
<Guest>
HI, is anyone there??
2010 02 26
0
0
<Guest>
The version I ran into turns off the Start Bar and Task Manager. No way to stop it. No way to correct it. Pray you have a good back up and reload...
2010 03 09
0
0
<Guest>
why when i download spyware doctor it doent help me it just want me to buy something
2010 03 13
0
0
<Guest>
please if u know how to remove antivirus 7 post a comment hir
2010 03 13
0
0
<Guest>
Can someone tell me about step. 4 i don't really know what to do...
2010 04 25
0
0
<Guest>
I can't seem to find the program on the process explore. what should i do?
2010 04 26
0
0
<Guest>
remove security tool
2010 04 30
0
0
java-forums.org RanLineR
LAWL.use your mind use the expert anti virus like. kaspesky, mc afee. its free for 30 days.dont download such a non licensed product.crap
2010 10 20
0
0
<Guest>
Mc doesn't work when you have the virus. Nothing does. I have mcafee fully updated and the virus got right past it
2011 01 08
0
0
<Guest>
Unchecking the LAN settings is blocked, taskmanager is blocked, USB ports are blocked, safe mode is blocked mcAfee is blocked, all Internet is blocked, powershell is blocked, the only thig that will show is pornographic sites but you can't change the URL.
2011 01 08

Post Comment:

Attention: Use this form only if you have additional information about Antivirus Live parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Latest spyware news:
Subscribe to news

Similar parasites:
Related discussions:
Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2 HijackThis Log Analyzer Beta 2

I failed to remove Antivirus Live using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Latest Spyware Threats: Internet Security 2012 | Win 7 Total security 2012 | System Check | Win 7 Internet Security 2012 | Win 7 Home Security 2012 | Win 7 Antivirus 2012 | Win 7 Antispyware 2012 | Vista Security 2012 | Vista Antivirus 2012 | Vista Antispyware 2012 | XP Antispyware 2012 | XP Antivirus 2012 | XP Security 2012 | XP Home Security 2012 | Security Shield
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2011 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.