Remove Antivirus Security Pro (Removal Guide)

Photo of author

Written by: Stelian Pilici

Published on:

Antivirus Security Pro is a computer virus, which masquerades as genuine security software, while actually reporting non-existent malware threats in order to scare the user into paying for this rogue security software.
[Image: Antivirus Security Pro]

What is Antivirus Security Pro?

Antivirus Security Pro is a rogue anti-virus program from the Rogue.WinWebSec family of computer infections. This program is classified as a rogue because it pretends to be an anti-virus program, but will instead displays bogus scan results, report non-existing computer infections, and does not allow you to run your normal applications.
In this case, not only is Antivirus Security Pro going to disrupt your system, it’s going to try and trick you into making a purchase using your credit card.
Antivirus Security Pro appears in the form of a fake Windows warning on your computer system that reads you have a specific number of viruses on your computer (usually in the hundreds) and that this software has detected those viruses. To get rid of them you must purchase the full-version of Antivirus Security Pro. It’s important to remember that by purchasing the “claimed full version to remove the viruses” you will be submitting your personal information to unscrupulous persons and may also end up being a victim of credit card or identity fraud or theft.

How did Antivirus Security Pro got on my computer?

Antivirus Security Pro is distributed through several means. Malicious websites, or legitimate websites that have been hacked, can infect your machine through exploit kits that use vulnerabilities on your computer to install this rogue antivirus without your permission.
Another method used to propagate Antivirus Security Pro is spam email containing infected attachments or links to malicious websites. Cyber-criminals spam out an email, with forged header information, tricking you into believing that it is from a shipping company like DHL or FedEx. The email tells you that they tried to deliver a package to you, but failed for some reason. Sometimes the emails claim to be notifications of a shipment you have made. Either way, you can’t resist being curious as to what the email is referring to – and open the attached file (or click on a link embedded inside the email). And with that, your computer is infected with the Antivirus Security Pro virus.
The threat may also be downloaded manually by tricking the user into thinking they are installing a useful piece of software, for instance a bogus update for Adobe Flash Player or another piece of software.
The Antivirus Security Pro infection is also prevalent on peer-to-peer file sharing websites and is often packaged with pirated or illegally acquired software.

Am I infected with Antivirus Security Pro virus?

Some examples of the interface, fake alerts, fake scanning results, and pop-ups displayed by Antivirus Security Pro are shown below:
[Image: Antivirus Security Pro virus]

[Image: Antivirus Security Pro Alert]

Activation codes for Antivirus Security Pro

As an optional step,you can use any of the following license keys to register Antivirus Security Pro and stop the fake alerts.
Antivirus Security Pro Activation code: AA39754E-715219CE

Please keep in mind that entering the above registration code will NOT remove Antivirus Security Pro from your computer , instead it will just stop the fake alerts so that you’ll be able to complete our removal guide more easily.

How to remove Antivirus Security Pro virus (Removal Guide)

This page is a comprehensive guide, which will remove the Antivirus Security Pro infection from your your computer. Please perform all the steps in the correct order. If you have any questions or doubt at any point, STOP and ask for our assistance.
STEP 1: Start your computer in Safe Mode with Networking
STEP 2: Run RKill to terminate Antivirus Security Pro malicious processes
STEP 3: Remove Antivirus Security Pro virus with Malwarebytes Anti-Malware Free
STEP 4: Remove Antivirus Security Pro rootkit with RogueKiller
STEP 5:  Remove Antivirus Security Pro infection with HitmanPro

STEP 1 : Start your computer in Safe Mode with Networking

  1. Remove all floppy disks, CDs, and DVDs from your computer, and then restart your computer.
  2. When the computer starts you will see your computer’s hardware being listed. When you see this information start to gently tap the F8 key repeatedly until you are presented with the Windows XP, Vista or 7 Advanced Boot Options.
    [Image: F8 key]
    If you are using Windows 8, press the Windows key + C, and then click Settings. Click Power, hold down Shift on your keyboard and click Restart, then click on Troubleshoot and select Advanced options. In the Advanced Options screen, select Startup Settings, then click on Restart.
  3. If you are using Windows XP, Vista or 7 in the Advanced Boot Options screen, use the arrow keys to highlight Safe Mode with Networking , and then press ENTER.
    [Image: Safemode.jpg]\
    If you are using Windows 8, press 5  on your keyboard to Enable Safe Mode with Networking.
    Windows will start in Safe Mode with Networking.

STEP 2: Run RKill to terminate the malicious processes associated with Antivirus Security Pro

RKill is a program that will attempt to terminate all malicious processes associated with Antivirus Security Pro, so that we will be able to perform the next step without being interrupted by this malicious software.
Because this utility will only stop Antivirus Security Pro running process, and does not delete any files, after running it you should not reboot your computer as any malware processes that are configured to start automatically will just be started again.

  1. While your computer is in Safe Mode with Networking ,please download the latest official version of RKill.Please note that we will use a renamed version of RKILL so that Antivirus Security Pro won’t block this utility from running.
    RKILL DOWNLOAD LINK (This link will automatically download RKILL renamed as iExplore.exe)
  2. Double click on iExplore.exe to start RKill and stop any processes associated with Antivirus Security Pro.
    [Image: RKILL Program]
  3. RKill will now start working in the background, please be patient while the program looks for Antivirus Security Pro malicious process and tries to end them.
    [Image: RKILL stoping malware]
    If you get a message from Antivirus Security Pro stating that RKill is an infection, and then closes this utility, leave the warning on the screen and then run RKill again.
    By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that RKill can terminate Antivirus Security Pro.
  4. When the Rkill utility has completed its task, it will generate a log. Do not reboot your computer after running RKill as the malware programs will start again.
    [Image: RKill Report]

STEP 3: Remove Antivirus Security Pro virus with Malwarebytes Anti-Malware FREE

Malwarebytes Anti-Malware Free is a powerful on-demand scanner which will remove Antivirus Security Pro malicious files from your computer.

  1. You can download Malwarebytes Anti-Malware Free from the below link, then double-click on the icon named mbam-setup.exe to install this program.
    MALWAREBYTES ANTI-MALWARE DOWNLOAD LINK(This link will open a download page in a new window from where you can download Malwarebytes Anti-Malware Free)
  2. When the installation begins, keep following the prompts in order to continue with the setup process, then at the last screen click on the Finish button.
    [Image: Malwarebytes Anti-Malware final installation screen]
  3. On the Scanner tab, select Perform quick scan, and then click on the Scan button to start searching for the Antivirus Security Pro malicious files.
    [Image: Malwarebytes Anti-Malware Quick Scan]
  4. Malwarebytes’ Anti-Malware will now start scanning your computer for Antivirus Security Pro virus as shown below.
    [Image: Malwarebytes Anti-Malware scanning for Antivirus Security Pro
  5. When the Malwarebytes Anti-Malware scan has finished, click on the Show Results button.
    [Image: Malwarebytes Anti-Malware scan results]
  6. You will now be presented with a screen showing you the computer infections that Malwarebytes Anti-Malware has detected. Make sure that everything is Checked (ticked), then click on the Remove Selected button.
    [Image: Malwarebytes Anti-Malwar removing Antivirus Security Pro virus]
  7. Once your computer will restart in Windows regular mode, open Malwarebytes Anti-Malware and perform a Full System scan to verify that there are no remaining threats.

STEP 4: Remove Antivirus Security Pro rootkit with RogueKiller

RogueKiller is a utility that will scan for the Antivirus Security Pro rootkit, registry keys and any other malicious files on your computer.

  1. You can download the latest official version of RogueKiller from the below link.
    ROGUEKILLER DOWNLOAD LINK (This link will open a new webpage from where you can download RogueKiller on your computer)
  2. Double click on RogueKiller.exe to start this utility and then wait for the Prescan to complete.This should take only a few seconds,  then click on the Scan button to perform a system scan.
    [Image: RogueKiller scaning for Antivirus Security Pro virus]
  3. After the scan has completed, press the Delete button to remove Antivirus Security Pro malicious registry keys or files.
    [Image: RogueKiller Detele button]

STEP 5: Remove Antivirus Security Pro infection with HitmanPro

HitmanPro is a second opinion scanner, designed to rescue your computer from malware (viruses, trojans, rootkits, etc.) that have infected your computer despite all the security measures you have taken (such as anti virus software, firewalls, etc.).

  1. You can download HitmanPro from the below link:
    HITMANPRO DOWNLOAD LINK (This link will open a web page from where you can download HitmanPro)
  2. Double-click on the file named HitmanPro.exe (for 32-bit versions of Windows) or HitmanPro_x64.exe (for 64-bit versions of Windows). When the program starts you will be presented with the start screen as shown below.
    HitmanPro scanner
    Click on the Next button, to install HitmanPro on your computer.
    HitmanPro installation
  3. HitmanPro will now begin to scan your computer for Antivirus Security Pro trojan.
    HitmanPro detecting for Antivirus Security Pro virus
  4. When it has finished it will display a list of all the malware that the program found as shown in the image below. Click on the Next button, to remove Antivirus Security Pro virus.
    HitmanPro scan results
  5. Click on the Activate free license button to begin the free 30 days trial, and remove all the malicious files from your computer.
    [Image: HitmanPro 30 days activation button]

Your computer should now be free of the Antivirus Security Pro infection. If your current anti-virus solution let this infection through, you may want to consider purchasing the PRO version of Malwarebytes Anti-Malware to protect against these types of threats in the future, and perform regular computer scans with HitmanPro.
If you are still experiencing problems while trying to remove Antivirus Security Pro from your machine, please start a new thread in our Malware Removal Assistance forum.

How to Stay Safe Online

Here are 10 basic security tips to help you avoid malware and protect your device:

  1. Use a good antivirus and keep it up-to-date.

    Shield Guide

    It's essential to use a good quality antivirus and keep it up-to-date to stay ahead of the latest cyber threats. We are huge fans of Malwarebytes Premium and use it on all of our devices, including Windows and Mac computers as well as our mobile devices. Malwarebytes sits beside your traditional antivirus, filling in any gaps in its defenses, and providing extra protection against sneakier security threats.

  2. Keep software and operating systems up-to-date.

    updates-guide

    Keep your operating system and apps up to date. Whenever an update is released for your device, download and install it right away. These updates often include security fixes, vulnerability patches, and other necessary maintenance.

  3. Be careful when installing programs and apps.

    install guide

    Pay close attention to installation screens and license agreements when installing software. Custom or advanced installation options will often disclose any third-party software that is also being installed. Take great care in every stage of the process and make sure you know what it is you're agreeing to before you click "Next."

  4. Install an ad blocker.

    Ad Blocker

    Use a browser-based content blocker, like AdGuard. Content blockers help stop malicious ads, Trojans, phishing, and other undesirable content that an antivirus product alone may not stop.

  5. Be careful what you download.

    Trojan Horse

    A top goal of cybercriminals is to trick you into downloading malware—programs or apps that carry malware or try to steal information. This malware can be disguised as an app: anything from a popular game to something that checks traffic or the weather.

  6. Be alert for people trying to trick you.

    warning sign

    Whether it's your email, phone, messenger, or other applications, always be alert and on guard for someone trying to trick you into clicking on links or replying to messages. Remember that it's easy to spoof phone numbers, so a familiar name or number doesn't make messages more trustworthy.

  7. Back up your data.

    backup sign

    Back up your data frequently and check that your backup data can be restored. You can do this manually on an external HDD/USB stick, or automatically using backup software. This is also the best way to counter ransomware. Never connect the backup drive to a computer if you suspect that the computer is infected with malware.

  8. Choose strong passwords.

    lock sign

    Use strong and unique passwords for each of your accounts. Avoid using personal information or easily guessable words in your passwords. Enable two-factor authentication (2FA) on your accounts whenever possible.

  9. Be careful where you click.

    cursor sign

    Be cautious when clicking on links or downloading attachments from unknown sources. These could potentially contain malware or phishing scams.

  10. Don't use pirated software.

    Shady Guide

    Avoid using Peer-to-Peer (P2P) file-sharing programs, keygens, cracks, and other pirated software that can often compromise your data, privacy, or both.

To avoid potential dangers on the internet, it's important to follow these 10 basic safety rules. By doing so, you can protect yourself from many of the unpleasant surprises that can arise when using the web.

42 thoughts on “Remove Antivirus Security Pro (Removal Guide)”

  1. Thanks for your help and advice. The virus seemed to have been through WhatApp which showed a voicemail from my husband. It was not from him but the virus took over. I found your tutorial after tremendous frustration and followed the steps. So now I can use my computer again with one change which is that I had to download a different browser to access my email. Again, thank you very much!

  4. Hello,
    Got as far as step 2 from the instructions above and double-clicked on iExplorer.exe but getting an error msg as follows: “error opening file for writing” and cannot go any further. Can you please assist?

  5. Thank you so much!!! This is a nasty piece of software and I would have been a blubbering wreck if I hadn’t quickly seen this removal guide.

    I saw another version of your advice before you had put up steps 1 and 2, so I actually just went in at step 3 – had an uninfected laptop and downloaded malwarebytes onto a USB and got it onto the infected machine that way, as antivirus sec pro would not let me get access to your website…probably because:

    1) I couldn’t remember my administrator password – the PC is about 9 years old and still running XP

    2) I was using IE8 – I know, I know…I’ve switched over to Chrome now :-)

    So thankfully Malwarebytes stopped it dead and I was able to delete everything. The run with HitmanPro did not pick up anything. I have also being ultra paranoid spent this morning changing all my online passwords in the uninfected machine.

    A couple of questions, if it’s not too much of a problem.

    – I didn’t see the Roguekiller step either – should I go ahead and do that too? To be safe?

    – I’m currently running my Microsoft Security Essentials software as well and it appears to have picked up some trojans and rogues that clearly arrived with the antivirus sec pro package, but both Malwarebytes and HitmanPro didn’t pick them up. However, it states that they are in Quarantine – so they may have been placed there and can be forgotten. Is that wise?

    Again many, many thanks for the guide.

  6. Thank you for all the help My wife made a one click mistake and this piece of garbage got ahold of her laptop. It was locked up until I used your activation number. Now, I” go follow the rest of your clear and concise instructions.

  7. Thank you very very much for your help. Very well explained with all links needed. You made my day :)

  8. Thanks for all yoru help! It worked and my boss was so impressed with how i handled this all by myself xoxoxox

  9. I did it! Thanks so much for posting this information. I stumbled a few times. However, I kept with it and, after 4 hours, I am FREE! :-)))))

  12. Stelian, Super thanks for the fabulous help! I got infected yesterday by an email from “WhatsApp” which said it contained a voice mail… Since I have relatives in other countries who use this app, I thought it might be from them! OMG! Horrible experience… I just spent 9hours dealing with this (lots of data and external drives, etc). Since I work at home your procedures were truly a life saver! Just doing my last (I hope) HitmanPro scan right now…

  14. Seriously cannot thank you enough for saving my new laptop!!! :D thank you so much!!! Your guide is simple to follow and your images definitely made my life a lot easier!!! YOU’RE A HERO!!!

  17. Hello,
    Can you please run a scan with these tools:
    STEP 1: Run a scan with RogueKiller
    1. Please download the latest official version of RogueKiller.
    RogueKiller Download Link : http://tigzy.geekstogo.com/roguekiller.php

    2. Double click on RogueKiller.exe to start this utility and then wait for the Prescan to complete.This should take only a few seconds and then you can click the Scan button to perform a system scan.
    3. After the scan has completed, press the Delete button to remove any malicious registry keys.

    STEP 2: Run a scan with ESET Online Scanner

    1.Download ESET Online Scanner utility.

    ESET Online Scanner Download Link : http://download.eset.com/special/eos/esetsmartinstaller_enu.exe

    2. Double click on the Eset installer program (esetsmartinstaller_enu.exe).

    3.Check Yes, I accept the Terms of Use, then click the Start button.

    4.Check Scan archives and push the Start button.

    5. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

    6. When the scan completes, click on the Finish button.

    Next, please perfom a new scan with HitmanPro, and if it will find any malware, please post the log in your next reply.
    Stay safe!

  19. Hello,
    Can you please run a scan with these tools:
    STEP 1: Run a scan with RogueKiller
    1. Please download the latest official version of RogueKiller.
    RogueKiller Download Link : http://tigzy.geekstogo.com/roguekiller.php

    2. Double click on RogueKiller.exe to start this utility and then wait for the Prescan to complete.This should take only a few seconds and then you can click the Scan button to perform a system scan.
    3. After the scan has completed, press the Delete button to remove any malicious registry keys.

    STEP 2: Run a scan with ESET Online Scanner

    1.Download ESET Online Scanner utility.

    ESET Online Scanner Download Link : http://download.eset.com/special/eos/esetsmartinstaller_enu.exe

    2. Double click on the Eset installer program (esetsmartinstaller_enu.exe).

    3.Check Yes, I accept the Terms of Use, then click the Start button.

    4.Check Scan archives and push the Start button.

    5. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

    6. When the scan completes, click on the Finish button.

    Next, please perfom a new scan with HitmanPro, and if it will find any malware, please post the log in your next reply.
    Stay safe!

  22. Hello,
    Can you please run a scan with Combofix and post the logs here so that I can get an idea on what’s going on:

    You can download ComboFix from here: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    VERY IMPORTANT !!! Save as Combo-Fix.exe during the download.ComboFix must be renamed before you download to your Desktop

    Close any open browsers.

    Very Important!!!> Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause “unpredictable results”.

    WARNING: Combofix will disconnect your machine from the Internet as soon as it starts

    Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.

    If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

    1. Double click on ComboFix.exe & follow the prompts.

    2. Accept the disclaimer and allow to update if it asks

    3. When finished, it shall produce a log for you.

    Notes:

    Do not mouse-click Combofix’s window while it is running. That may cause it to stall.

    Do not “re-run” Combofix. If you have a problem, reply back for further instructions.

    If after the reboot you get errors about programs being marked for deletion then reboot, that will cure it.

    Please post the Combofix, so that I can get an idea on what’s going on.
    Next, please run a scan with HitmanPro and Malwarebytes, then let me know how is your computer running.

  24. Hello,
    McAfee is not that great, and I would uninstall it. Malwarebytes Anti-Malware PRO is good however it’s a paid program.
    There are some good free programs that can protect your machine: Avast Antivirus Free and Comodo Internet Security are both top-noch products and free.

    Stay safe!

  25. Hello,
    Lets run a scan with these tools, just to be on the safe side:

    STEP 1: Run a scan with RogueKiller
    1. Please download the latest official version of RogueKiller.
    RogueKiller Download Link : http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
    2. Double click on RogueKiller.exe to start this utility and then wait for the Prescan to complete.This should take only a few seconds and then you can click the Scan button to perform a system scan.
    3. After the scan has completed, press the Delete button to remove any malicious registry keys.

    STEP 2: Run a scan with ESET Online Scanner

    1.Download ESET Online Scanner utility.

    ESET Online Scanner Download Link : http://download.eset.com/special/eos/esetsmartinstaller_enu.exe

    2. Double click on the Eset installer program (esetsmartinstaller_enu.exe).

    3.Check Yes, I accept the Terms of Use, then click the Start button.

    4.Check Scan archives and push the Start button.

    5. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

    6. When the scan completes, click on the Finish button.

    Stay safe!

  26. Eh, I ran both of em and now when my laptop restarted the icons WERE still there. I deleted them and also deleted the icon from my startup menu. I checked the program data folder and the 7xxx_old folder IS still there. I ran Hitman again and it shows I have no threat but I am scared that the virus will come again.. Is it fixed or do I have to do anything else??

  27. Thank you so very much for this information, it has “saved” my computer very successfully. I currently run McAfee which obviously wasn’t effective in keeping this virus from getting through, although I must say I have never had any trouble before. Should I replace McAfee with Malwarebytes or run it in conjunction with McAfee? I would appreciate your advice. Thanks again, I am very grateful.

  30. Hi, I followed the removal instructions, starting with renaming the folder and then running the scan programmes, removing what they found. Antivirus Pro has seemingly disappeared, the icons are no longer on my desktop and it is gone from the start/programmes menu, but the (renamed) folder and the files inside are still in Application Data. Further scans are telling me that my computer is clean. Admittedly I’m still a beginner when it comes to sorting computer problems!

  32. Hi..Same problem with antivirus pro deleting malware files. Followed above, but got error when trying to rename hp7pDns3 file, “action can’t be completed because the folder or a file in it is open in another program.” Clicked on this file’s properties, and security tab, surprisingly there was a user called “creator owner” that had full permissions on my computer. Could not remove those permissions (this creator owner subsequently disappeared upon a return). Any ideas what to do next? (Can not do a system restore even in safe mode.)

  33. Hello Blue,
    You’ve got a ZeroAccess rootkit infection on your computer.
    Can you please run a scan with Combofix and post the logs here so that I can get an idea on what’s going on:

    You can download ComboFix from here: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    VERY IMPORTANT !!! Save as Combo-Fix.exe during the download.ComboFix must be renamed before you download to your Desktop

    Close any open browsers.

    Very Important!!!> Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause “unpredictable results”.

    WARNING: Combofix will disconnect your machine from the Internet as soon as it starts

    Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.

    If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

    1. Double click on ComboFix.exe & follow the prompts.

    2. Accept the disclaimer and allow to update if it asks

    3. When finished, it shall produce a log for you.

    Notes:

    Do not mouse-click Combofix’s window while it is running. That may cause it to stall.

    Do not “re-run” Combofix. If you have a problem, reply back for further instructions.

    If after the reboot you get errors about programs being marked for deletion then reboot, that will cure it.

    Please post the Combofix, so that I can get an idea on what’s going on.
    Next, please run a scan with HitmanPro and Malwarebytes, then let me know how is your computer running.

  34. I have gone thru all the steps you did with Big Al but the virus is still there. I have the hit man log ready but didn’t know how you would like me to send so I attached a JPEG. Please help!!!

  35. Omg u are a life saver.I actually thought my moms computer was a goner but in the same time it was fishy.I sat there crying but then i search on my phone about antivirus secrurity pro an these come up.I click and follow step by step the intractions.I am so relieved about this.Saved me cuz my mom doesn’t know anything about a laptop and that she owns one hahaha but anyways u save my butt from an asswhoop.Love ya,I’m glad a find this.Thnk u very very much.

  36. Hello Sath,
    Lets try to manually kill this infection:
    You can follow these instructions: http://malwaretips.com/blogs/attentive-antivirus-removal/#manual
    OR
    1.Right click on the “Antivirus Security Pro ” icon (which should be on your desktop), click Properties in the drop-down menu, then click the Shortcut tab
    2. In the Target box there is a path to the malicious file.
    3. The path to the malicious files should be in the Application Data folder:
    File location, Windows XP:
    C:Documents and SettingsAll UsersApplication Datarandom folder name (something like hrtadsx)
    File location, Windows Vista/7 and 8:
    C:ProgramDatarandom folder name (something like hrtadsx)
    NOTE: by default, Application Data folder is hidden. Malware files are hidden as well. To see hidden files and folders, please read : http://windows.microsoft.com/en-us/windows-vista/show-hidden-files
    4. Rename the malicious folder to malwaretips or whatever you like.
    5. Restart your computer. The malware should be inactive after the restart.

    6. Scan with Malwarebytes and HitmanPro.

  37. Thank you it’s nice to use a program that does exactly what is needed and is easy to use. Well done!!!

  38. Hello Big_Al,
    Lets run these scans:

    STEP 1: Run a scan with ESET Rogue Application Remover

    1. Download the ESET Rogue Application Remover by clicking the appropriate link for your system version below

    For 32-bit (x86) – http://download.eset.com/special/ERARemover_x86.exe

    For 64-bit (x64) – http://download.eset.com/special/ERARemover_x64.exe

    2.Save the file to your Desktop. When the download completes, navigate to the file, right-click it and select Run as administrator.

    3.Click Accept to accept the End-User License Agreement (EULA).

    4. Please be patience while this utility scans for malware, then press any key on your keyboard to exit the tool.

    STEP 2: Run a scan with Emsisoft Emergency Kit.
    1. Please download the latest official version of Emsisoft Emergency Kit: http://www.emsisoft.com/en/software/eek/
    2. After the download process will finish , you’ll need to unpack EmsisoftEmergencyKit.zip and then double click onEmergencyKitScanner.bat
    3. A pop-up will prompt you to update Emsisoft Emergency Kit , please click the “Yes” button.After the Update process has completed , put the mouse cursor over the “Menu” tab on the left and click-on “Scan PC”.
    4. Select “Smart scan” and click-on the below “SCAN” button.When the scan will be completed , you will be presented with a screen showing you the malware infections that Emsisoft Emergency Kit has detected.Make sure that everything is Checked (ticked) and click on the ‘Quarantine selected objects’ button.

    STEP 3: Run a scan with Eset Online Scanner.
    1.Download ESET Online Scanner utility.
    ESET Online Scanner Download Link (This link will automatically download ESET Online Scanner on your computer.)
    2. Double click on the Eset installer program (esetsmartinstaller_enu.exe).
    3.Check Yes, I accept the Terms of Use, then click the Start button.
    4.Check Scan archives and push the Start button.
    5. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    When the scan completes, push Finish

    STEP 4: Run a scan with Kaspersky Virus Removal Tool:

    1. You can download from Kaspersky Virus Removal Tool from here : http://www.kaspersky.com/antivirus-removal-tool?form=1
    2. Double click the setup file to run it, then follow the onscreen prompts until it is installed
    Click the Options button (the ‘Gear’ icon), then make sure only the following are ticked:

    System Memory

    Hidden startup objects

    Disk boot sectors

    Local Disk (C:)

    Also any other drives (Removable that you may have)
    3. Then click on Actions on the left hand side
    4. Click Select Action, then make sure both Disinfect and Delete if disinfection fails are ticked
    5. Click on Automatic Scan, then click the Start Scanning button, to run the scan

    NEXT, run a scan with HitmanPro. If it will still detect malware on your machine, post the log from this scanner. (you can get the log by clicking on the “save log” button, once the scan is completed)

    Stay safe!

  39. Malwarebytes does not remove this. Can’t use Hitman pro due to being in a domain. Any other suggestions?

  41. This is by far the best malware removal guide! Thank you Stelian!
    Keep up the great job that you are doing!

    Thank you! Thank you! Thank you!

Comments are closed.

Previous

Remove KeyBar Toolbar (Uninstall Guide)

Next

Remove TrustWorthy Toolbar (Removal Guide)