How to Remove Antivir | Antivir Removal Guide



Antivir is a rogue antivirus application that is pushed through web site popup ads on unsuspecting users. Basically in web browsing you may see a popup claiming that your computer is infected and you should run a malware scan. Clicking to proceed will probably show an animation of a scan which is really nothing more than an animated lookalike scan. After this it will claim that you need to downlod antivir in order to clean the supposed viruses that it found off your computer. After that the program becomes even more troublesome launching popup warnings and complaints and running scans and then claiming that your system is full of viruses. Read on for how to remove Antivir.


When this rogue is on your pc you will see numerous bogus security popups. Some will read as follows:

Trojan:W32/Inject Activity Detected
Trojan:W32/Inject is a large family of malware that secretly makes changes to the Windows Registry. Variants in the family make also makes changes to other running processes.

Warning! Identity theft attempt detected

or when trying to browse the internet….

We strongly recommend to discontinue the use of this website. This website has been reported to Microsoft for containing threats that might steal personal or financial information from your computer.

Warning! Visiting this site may harm your computer!
This web site probably contains malicious software program, which can cause damage to your computer or perform actions without your permission. Your computer may be infected after visiting such web site.

All of these warnings are falsified with no other reason than the goal of having you pay for their scam.

To remove it, first vsit the control panel and add/remove programs and attempt to uninstall it this way. If it works count yourself lucky and then follow that uninstall up with a download and scan of your computer with malwarebytes antimalware and a trusted antivirus application such as avira/avg/ or maybe trend micros housecall online scan.

You can find a download link for malwarebytes antimalware on my virus removal toolkit page. While you are there you may also want to download process explorer. If you are just starting your removal of antivir you may find this tool useful later on.

If you are unable to install malwarebytes you may have to try the following tricks. 1) rename the malwarebytes installer mbam-setup.exe to something else. try iexplore.exe and then retry the install/update and scan. 2) reboot into safe mode with networking and retry the install/update and scan (using trick #1 if necessary.) 3) proceed with the next step which is to kill off running programs associated with antivir and then retry the install,update and scan with malwarebytes antimalware. Many rogues today prevent security applications from running and or installing if the possibly can because they have been written to protect their “occupation” of your pc.

The following processes should be killed off using the task manager to help make progress in your removal of antivir:

antivir.exe

If you are unable to launch the task manager to kill off the process you may try the following: 1) copy taskmgr.exe to the desktop and then rename it to another filename and try to relaunch it. Try renaming it to firefox.exe for instance. 2) reboot into safe mode and see if the process is running (many will not launch in safe mode.) 3) use process explorer instead to kill off the running process above.

The following files and folders should be deleted for your removal of antivir:

%docs%\All Users\Start Menu\AV
%docs%\All Users\Start Menu\AV\Antivir.lnk
%docs%\All Users\Start Menu\AV\Uninstall.lnk
%docs%\%user%Desktop\Antivir.lnk
%progfiles%\AV
%progfiles%\AV\antivir.exe
%progfiles%\Common Files\Uninstall
%progfiles%\Common Files\Uninstall\AV
%progfiles%\Common Files\Uninstall\AV\Uninstall.lnk
%win%\system32\UpdateCheck.dll

After you have removed the above you should have completed your manual removal of antivir. After this I would install, update and run a malware removal tool like superantispyware or malwarebytes antimalware and after a scan with that follow it up with a reputable online antivirus scan like trend micros housecall or a standalone antivirus that is reputable such as AVG or Avira.

   Send article as PDF   

Similar Posts