How to remove Antivirus 2009

The antivirus 2009 is a nasty virus and a more recent version of Antivirus 2008. Like its predecessor it will slow your system, cause unwanted popup windows
Don't waste your time with other methods of removal - they just don't work, and even the novice computer user can use this simple step by step method to remove the threat and avoid further infection through so called removal programs like Spy Hunter which just add to your infection troubles by adding their own spyware to your system.

Antivirus 2009 Removal Instructions

Search and kill the following processes
Antivirus2009.exe, av2009.exe

Remove Antivirus2009 files & dlls files

%UserProfile%\Desktop\Antivirus 2009.lnk
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Antivirus 2009.lnk
%UserProfile%\Local Settings\Temporary Internet Files\Content.IE5\S96PZM7V\winsrc[1].dll
%UserProfile%\Start Menu\Antivirus 2009
%UserProfile%\Start Menu\Antivirus 2009\Antivirus 2009.lnk
%UserProfile%\Start Menu\Antivirus 2009\Uninstall Antivirus 2009.lnk
c:\Program Files\Antivirus 2009
c:\Program Files\Antivirus 2009\av2009.exe
c:\WINDOWS\system32\ieupdates.exe
c:\WINDOWS\system32\scui.cpl
c:\WINDOWS\system32\winsrc.dll

Remove/Modify corrupt Registry Entries

HKEY_CURRENT_USER\Software\Antivirus
HKEY_LOCAL_MACHINE\SOFTWARE\Antivirus
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\
”Antivirus” = “%ProgramFiles%\Antivirus 2009\Antvrs.exe”
HKEY_CURRENT_USER\Software\75319611769193918898704537500611
HKEY_CLASSES_ROOT\CLSID\{037C7B8A-151A-49E6-BAED-CC05FCB50328}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{037C7B8A-151A-49E6-BAED-CC05FCB50328}
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "75319611769193918898704537500611"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "ieupdate"

View blog reactions

How to Choose Anti-Spam Filter?

The damage spam brings you is huge: loss of time, bandwidth and money, risk to delete a legitimate message together with junk emails. So, an anti-spam filter is not a whim but a necessity for almost all PC users who actively use email.

What criteria should you follow to choose the right spam filtering program? What capabilities must an anti-spam tool have to filter and cut off spam mail in most effective way?

Here are the main features a good anti-spam software must have to block spam effectively:

1) it should be a standalone spam filtering tool, which checks all incoming emails on the server, detects and deletes spam messages.

2) deletion of spam without receiving it in your inbox. This way you won't download all the superfluous kilobytes into your inbox and you won't see annoying spam mail.

3) powerful antispam filters built in one program that analyze the message from "outside" and "inside": message header, message body, and message source. Flexible whitelist and blacklist easy to edit and update are also very useful as they help save much time when filtering emails. Good anti-spam software must also have the Bayesian filter in its arsenal of spam filtering tools.

4) easy and safe method to preview emails marked as spam. Inherent in antispam technology is the fact that there will be false positives and false negatives, i.e., email can be flagged as spam even though it is not actually spam and vice versa.

5) flexible spam filtering. Spam emails should be moved to a separate folder. A good spam filtering software should provide the ability to recover an email if it was accidentally marked as spam and trashed.

Simply put, an anti-spam program must be a standalone, easy-to-use software supplied with powerful anti-spam filters able to be adjusted by every user for his personal needs. Now with all that said above you can choose the right anti-spam software among all spam filtering programs available on the Internet.

Article Source: http://EzineArticles.com/?expert=Jilia_Gulevich

View blog reactions

How to remove RVHOST.EXE malware

Follow these steps to completely remove this worm:
1-Start>RUN
2-Write CMD
3-In CMD,write "Taskkill /T /IM "RVHOST.EXE"
then open a Notepad Start>RUn
4-Write "NOtepad"
5-in notepad paste these lines below
On Error Resume Next
Set shl = CreateObject("WScript.Shell")
Set fso = CreateObject("scripting.FileSystemObject")
shl.RegDelete "HKEY_CURRENT_USER\Software\Microsoft\Windows\
CurrentVersion\Policies\System\DisableRegistryTools"
shl.RegDelete "HKEY_CURRENT_USER\Software\Microsoft\Windows\
CurrentVersion\Policies\System\DisableTaskMgr"
shl.RegDelete
6- save the notepad as "Enable.VBS" and the change the file type to "All"
7-double click "Enable.VBS"
8-now Start>Run. Write "Regedit" in it and press enter
9- Do the following changes in Registy

In the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>
Windows>CurrentVersion>Run
In the right panel, locate and delete the entry:
Yahoo Messengger = "%System%\RVHOST.exe"
(Note: %System% is the Windows system folder, which is usually
C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, and C:\Windows\System32 on Windows XP and Server 2003.)-->
Removing Other Entry from the Registry

Still in Registry Editor, in the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>Windows>
CurrentVersion>Policies>Explorer
In the right panel, locate and delete the entry:
NofolderOptions = "1"
Restoring Modified Entries from the Registry

Still in Registry Editor, in the left panel, double-click the following:
HKEY_LOCAL_MACHINE>SOFTWARE>Microsoft>Windows NT>
CurrentVersion>Winlogon
In the right panel, locate the entry:
Shell = "Explorer.exe RVHOST.exe"
Right-click on the value name and choose Modify. Change the value data of
this entry to:
Explorer.exe
In the right panel, double-click the following:
HKEY_LOCAL_MACHINE>SYSTEM>CurrentControlSet>
Services>Schedule
In the right panel, locate the entry:
NextAtJobId = "2"
Right-click on the value name and choose Modify. Change the value data of
this entry to:
1
Close Registry Editor.
Deleting the Malware File(s)

Right-click Start then click Search... or Find..., depending on the version of Windows you are running.
In the Named input box, type:
AT1.JOB
In the Look In drop-down list, select My Computer, then press Enter.
Once located, select the file then press SHIFT+DELETE.
Note: AT1.JOB is a Sheduled Task so you can find this in C:\WINDOWS

View blog reactions