Remove Antivirus System Pro (Removal Info)

By Amanda on May 10, 2009 | Reply

OH was that Antivirus System Pro 2009 was ANNOYING! I’m so glad I kept rejecting the pop-up suggestions! The system restore suggestion worked! I had to try 7 different dates (about a full month backwards) to get the computer to restore properly, but my files are all fine and the blasted icon and pop-ups are GONE! GOOD RIDDANCE!!!! I couldn’t find anything in the processes, or through system searching either.

By dicky on May 10, 2009 | Reply

it’s impossible to delete this bitch. i have no ideas how this antivirus system pro sneaked into my laptop, and i have tried all manual removal methods as well as amanda’s system restore method. well, this bitch is still hiding somewhere. i am getting so frustrated that i might just buy a new computer. sucks!!

By nobody on May 10, 2009 | Reply

send those who created Antivirus System Pro to jail for life or even dead penalty.

By TomTom on May 10, 2009 | Reply

Antivirus System Pro is probably the worst spyware I have seen. I got rid of it and it came back after a day. Well, I just spent another 3 hours to clean up this shit. Hopefully they are gone for good this time. Wish me luck please.

By Ali on May 10, 2009 | Reply

I did it! I did it! I removed Antivirus System Pro without any professional help and now I feel like a computer genius. (I am a math teacher.) I appreciate for all the info I can find on this site. God bless you.

By jk on May 10, 2009 | Reply

please take your antivirus system pro away. i didn’t ask for it.

By na on May 10, 2009 | Reply

you guys sick. stop surfing porn.

By Jack on May 10, 2009 | Reply

I hope the peace of shit of inventor gets cancer and suffers to his restof his life. Why people do such a shit? I fucking hate you motherfucker. I hope your asshole burns, burns, burns…

Ok, what to do now? I already slammed one of my screens against the wall. It’s such an annoying peace of shit.

I also wrote an email to my congressman and told him about the fucking virus. Not to mention that I asked him to send this programmer to death penatlty if they ever catch him.

But my fucking congressman didnt answer yet. So annoying.

Arrrrrrrrrrrrrrrrgh

By KB on Jun 1, 2009 | Reply

I got this ‘virus’ from a ‘freeware’ download (unfortunately). I still don’t know if this product being pitched is for real or not. I don’t plan to find out. If they are for real, this is not a good way to do business obviously. I hope the worst for them.

On the other hand, if this is just a virus intended for causing havoc to PC users, then all I can say is “Get a life losers. Get out and find a girlfriend. Oh, you say girls don’t like you? Oh well, that at least explains your pentup adolescence behavior. Might I suggest attaching a hose to your car exhaust, closing the garage door, start the car, ….”

By Andy on Jun 4, 2009 | Reply

I cannot even find the files on my laptop for this. If I ever get my hands on anyone who writes this crap, I will beat the living shit out of him.

Then again, with a MAC this wouldn’t exist. Has anyone experienced this rogue without the file names?

By Debbie on Jun 5, 2009 | Reply

Hey Ali.

This Antivirus System Pro thingy just reared it’s ugly head at me last night. I was reading this and it looks as if you were successful. I was hoping you could point me in the right direction on how you got this thing off your computer. Thanks.

Deb

By stephen on Jun 7, 2009 | Reply

Ali how did you get rid of Antivirus Pro alert? help its running me crazy

By geni on Jun 7, 2009 | Reply

Are you saying that Antivirus System Pro is not legit? I paid for it!! What should I do now? Please advise.

By desmond on Jun 7, 2009 | Reply

I don’t see Antivirus System Pro but instead something called personal antivirus keeps popping up. what the hell is going on here? I haven’t visited any malicious sites other than google.

By Joey on Jun 13, 2009 | Reply

I really don’t know what to do. I removed the trojans that seem to have caused this with my anti-virus software. I have tried to search my computer for files related to antivirus system pro. They are all gone but the pop-ups are still popping up…

By Dee on Jun 18, 2009 | Reply

I finally was able to track back to when I got it. I came after I visited http://www.yellowpages.com
too bad I alway useto use them.

By D on Jun 18, 2009 | Reply

My wife visited whitepages.com today and it started after that visit.

By Michael on Jun 19, 2009 | Reply

I was watching a few youtube clips then noticed my AV icon disappeared…the the malware popped up.
Looks like this version is embedded in a flash clip?

By Chris on Jun 19, 2009 | Reply

How did you get rid of it??? I am having trouble finding out how without having to pay for it. This is such an annoying thing these people did. Awful!

By Wally on Jun 22, 2009 | Reply

Fuck I got it on my school web

By John on Jun 23, 2009 | Reply

Antivirus System Pro is a direct threat to the Internet. How to sue these people so they don’t do any damage to the Internet?

By antivirus pro on Jun 23, 2009 | Reply

Get a real solution – Mac! I never got viruses on my 5 years old Mac. Go figure! antivirus system pro only works in Windows.. not a Mac and not Linux. haha.

By ImAPC on Jun 23, 2009 | Reply

Mac sucks! If you look around, I don’t see any big corporations use a Mac. Windows PC’s dominate the market ’cause they are better. No viruses (such as Antivirus system Pro) in Mac ’cause nobody really uses a Mac so the bad people don’t bother to develop viruses for Mac. It’s not because Mac is better. Mac sucks!And that’s why nobody use it.

By Nuna on Jun 26, 2009 | Reply

Some people seem to know the answer to getting rid of this annoying piece of shit, but no one said exactly what they did. Each time I search for a removal option there’s yet ANOTHER spyware software to purchase, yet another $39.95 to pay.. honestly I don’t believe anyone anymore, it all seems like an enormous bull shit to me!! Is there anyone honest, truly interested in helping people like us, who just want to check an e-mail or two and have to deal with this ridiculous crap because no one has an answer on how to kill this virus without trying to make money on it? For Fuck’s SAKE!!!!!!!!!

By Danielle on Jun 27, 2009 | Reply

I got rid of one exactly like this about a month ago, but it was called something else. Now this shit pops up? Where does this crap come from? Am I clicking on something like a certain advertisement that brings it on? I agree with a lot of you who’d like to beat the living shit out of whoever invented this! Why do they do that? They have way too much time on their hands and they should be in jail!

By antivirussystempro! on Jul 9, 2009 | Reply

can anyone tell me how to remove this “ANTIVIRUS SYETEM PRO”it’s really annoying it keeps taking me to all these porn websites and for viagra please help i’m only a little boy above the age of 10!!!!!! please help

By Steve on Jul 15, 2009 | Reply

Was hit with antivirus system pro yesterday. Traced problem to file “sysguard.exe”. Search files & folders to locate and then delete, seems to have done the trick.

By Karl on Jul 22, 2009 | Reply

Hi there how did you get rid of antivirus system pro any help would be great as I have tried two antivirus systems and they havent managed sucessfully to do it.
Thanks Karl

By monsieur guillotine on Sep 17, 2009 | Reply

Agreed.

By Aggie67 on Sep 30, 2009 | Reply

Jesus H Christ on a popsicle stick.

Cripes, all I did was go online and try to check scrap steel prices. I went to one site and blammo, all this crap pops up.

As soon as I saw it pop up I figured it was bogus, so I didn’t click on anything. Spybot’s instant registry protection feature flagged it, so I denied the changes to the registry. But I still have the original pop ups sitting on my monitor, and every 2 minutes either a Viagra website pops up or a porn site pops up.

I’m running my copy of Spybot right now, and it already found sysguard. Hopefully this nails it.

By Graphic Designer 17 on Oct 1, 2009 | Reply

I am going to stop using my PC entirely. This has cost me money for nothing and has reminded me again how worthless owning a PC can be. Now they boast about how great Windows 7 is?!! How about adding in how crappy every version of Windows has always been! I’m sticking to my Macintosh.

By bibbafs on Oct 17, 2009 | Reply

i’m using malwarebytes anti-malware but it’s taking forever to scan and delete the stupid thing.
the funny thing is, i was reading an article about a really bad virus and why ppl wanna create viruses (on my laptop, not my desktop i’m using right now) and now i’m getting this stupid thing on my desktop.

By computer dominator on Oct 21, 2009 | Reply

antivirus system pro really sucks the only best way i know to remove it is the way i removed it have a professional remove it for you somerset computer removed mine for 10.00 there is no sure anti spyware protection i had mcafee when i got it and it didnt even detect it so my advice is if you get it have a professional remove it.requires your tower to be torn apart. but worth it i reported it to mcafee and there working on a way to stop this dreaded trojan thanks for listening

By Kate on Nov 6, 2009 | Reply

I found the name of the virus it’s called Windows Police pro ink .

By CS on Nov 9, 2009 | Reply

I think a forum needs to be created to post the names and addresses of the people that write viruses.

By Mikki Tackett on Nov 11, 2009 | Reply

I can’t get rid of this stupid thing! I’ve worked for two days, and I believe it’s with the yellowpage website. I was reading on here and I was on yellowpages.com earlier yesterday, then lo and behold I got this damn thing. Time to move my computer back a few days. POS!

By Christy on Nov 12, 2009 | Reply

For the computer illiterate out there,
malwarebytes anti-malware software worked for me (maybe i’m one of the lucky ones).

It’s a free download, if you’re able to use the internet without antivirus pro f***ing you up!

I ran the program’s quick scan a few times, once in normal mode (which didn’t seem to work), then twice in safe mode (press f8 while starting up your computer) and since then i’ve had no problems for the last few days.

So props to Malwarebytes anti-malware!!
Good luck.

By travis on Nov 14, 2009 | Reply

I ran the Malwarebytes program and it found and deleted the problem, until I rebooted this morning and it is all still here.

By Barry on Nov 15, 2009 | Reply

Here’s a 5 minute fix. Click the ASP taskbar icon(the shield) to open the ASP main window. Right click “Properties”. You should be able to highlight the full location of the program ’s *sysguard.exe file. It’s the location listed under “Address (URL)”. You may only see 2 lines of the address, so you’ll need to left click-hold and highlight the address so you can drag down to see the final, randomly named folder and file name (ending in sysguard.exe). Write down the file path, restart in safe mode, then find the folder and file using “My Computer” or “Windows Explorer”. Delete the file, then the folder, then the “windows\system32\iehelper.dll” file. Restart in normal mode, run Malwarebytes and it should be over.

By Barry on Nov 15, 2009 | Reply

Here’s a 5 minute fix. Click the ASP taskbar icon(the shield) to open the ASP main window. Right click “Properties”. You should be able to highlight the full location of the program ’s *sysguard.exe file. It’s the location listed under “Address (URL)”. You may only see 2 lines of the address, so you’ll need to left click-hold and highlight the address so you can drag down to see the final, randomly named folder and file name (ending in sysguard.exe). Write down the file path, restart in safe mode, then find the folder and file using “My Computer” or “Windows Explorer”. Delete the file, then the folder, then the “windows\system32\iehelper.dll” file. Restart in normal mode, run Malwarebytes and it should be over.

By Rick on Nov 16, 2009 | Reply

what the f.uk!!! how can it be that this still exists??? can’t some real hacker destroy the complete site for this evil people. How come credit card companies ENABLES THESE BASTARDS TO EXIST… ! Stil´l fightíng it. Trying what Barry said, looks to half-work for me. the file seems to come back on my drive..

By Barry on Nov 16, 2009 | Reply

Rick,
Try deleting the *sysguard.exe in safe mode, restart and delete the iehelper.dll in normal mode, then run Malwarebytes a couple of times. Unless they’ve rewritten the program in the past 2 days, it should work.

By Justin on Nov 18, 2009 | Reply

Do a system restore to the farthest you can. To do a system restore go to your control panel and click system restore

By Nina on Nov 20, 2009 | Reply

Barry,
tried it your way and seems to be working so far. I had worked on it for three hours and nothing. I told my husband you are my new computer God.
Thank you!

By theo on Nov 22, 2009 | Reply

u guys need to make a video about this..btw can u reboot vista even though u dont have any CDs for rebooting?

By Phillip D on Nov 22, 2009 | Reply

Every time I try to open the Task Manager or regedit, Antivirus System Pro just closes them automatically. Is there anyway around this? Ive searched all around and everything I try gets stopped. Please help!

By harleyless on Nov 23, 2009 | Reply

jhxesysguard is one of the file names

By Bert on Nov 24, 2009 | Reply

The only way I was able to open task manager or regedit was during the re-boot. You have to be quick before the first AntiV window pops up.

By adam on Nov 27, 2009 | Reply

Barry’s solution worked for me. Cheers Ba!

By Ashlee Jensen on Nov 29, 2009 | Reply

I got it last night and have been working all day to get rid of it. What Bert said is right…you have to open the task manager (or anything else for that matter) quickly before the virus program has the chance to load. I hurried up and ran mscongif and was able to find the sysguard program and turn it off to where it wouldn’t start on my initial boot. Than I searched my computer for any files downloaded the day I starte having the virus and deleted ALL of them. I think I got mine from watch-movies.net DivX player. Still don’t think I have the thing completely deleted though cuz I am not able to access my C:\documents and settings\%user name%\application data folders. I deleted the entire profile that was in use when the virus came on my comp instead. BTW, neither ADAWARE nor Symantec could help me… Anyone with any suggestions?

By Bob on Nov 30, 2009 | Reply

We have had the best sucess taking it off with Super Antispyware [It is free.. just Google for it] if you catch it fast enough. Otherwise you may have to redo your whole computer if it gets bad enough. UGH!

Super Antispyware will run in Safe Mode.

Restore to an earlier date worked once.

You can also use an adaptor for IDE/SATA to USB port and run Super Antispyware from another computer to the external hard drive.

This is one of the worst virus…so good luck.

By Thoughton on Nov 30, 2009 | Reply

I support the death penalty for the scriptkid scum that wrote this

By Thoughton on Nov 30, 2009 | Reply

Look in the C:Users/…/AppData/Local folder for remnants of this nasty scurge .. there were multiple versions on my daughter’s machine.

By Stokely on Nov 30, 2009 | Reply

Barry –
I don’t seem to be able to get into “safe mode”.
It just keeps cycling back to beginning and will only start up in “normal mode”. Suggestions?

By DJStowner on Dec 1, 2009 | Reply

Funny how the only anti-spyware software that you can not install once you have this bug is Windows Defender….Why??? because it is free and it kills this thing!! As far as I am concerned all of these other anti spyware companies with their free scans (yet paid removal) are a part of this.
This procedure has worked for me on a number of machines. It assumes that you do not have Windows Defender installed.

Task Manager – stop any services running that contain “guard” anywhere in the name. This should stop the popups and other garbage so you can get some work done.

–regedit
go to hkey local machine/software/Microsoft/Windows Defender
Right Click –Permissions. Give the adminstrators group full control.
Right Click the Windows Defender Key and choose delete.

Reboot your machine. Upon reboot quickly stop the garbage services again. run the Windows Defender installation…scan and remove!!
If you have problems email me at ststoweman@gmail.com — not looking for money or anything else —just hate this kind of garbage.

By Corey on Dec 2, 2009 | Reply

I’m able to stop the *sysguard.exe process and remove the file however on restart it reappears. I can’t find the iehelper.dll or any of the other files that are listed in the removal instructions. Is this rogue storing files under another name if so what should I be looking for.

By kocinaciemna on Dec 3, 2009 | Reply

Listen guys,

I had the same problem and I have apparently just got rid of the f* Antivirus System Pro.
The infection seemed pretty serious since I could neither open the task manager, run regedit, find sysguard, nor boot into safe mode.
Here’s what I did:
- I downloaded SuperAntiSpyware Free Edition on another computer and copied it onto my desktop;
- rebooted my computer and executed the SAS setup file as quickly as possible, before the virus loaded;
- when SAS installation completed, I chose the “quick scan” option;
- in the meantime, I came across Barry’s advice (checking ASP location by right-clicking its main window and choosing “properties”); it turned out that the sysguard file I couldn’t find earlier was hidden in C:\Documents and Settings\(user)\Local Settings\Application Data\jvtroy. I couldn’t delete it, so I used “remove on reboot” shell extension which I installed a long time ago (you can easily google it); yet, I didn’t reboot it straight away because the SAS scan was in still progres;
- after about 15 minutes SAS was done with the scan – it discovered >150 (!!!) threats. I followed SAS’s on-screen suggestions concerning the actions to be undertaken; the last one was reboot, so I did that;
- now my computer seems to work just fine; I’m now running full Malwarebytes’ Anti-Malware scan and my antivirus (the proper one, not that popping-up sob) occasionally spits out trojan alerts;
- sysguard.exe is no more there, but I’m not sure whether it’s thanks to SAS or the “remove on reboot” extension I used.

I hope this proves useful for you guys as well.

If not, don’t lose your spirit – there has to be another solution. There always is.

Best of luck!

By Coeli on Dec 3, 2009 | Reply

By opening the task manager right when your desktop shows up, right click on your computer clock(bottom right of your screen and click on task manager. Keep it open and locate the sysguard.exe and end process.

After doing this, backup your files (all or only the ones most important to you) on a DVD or external storage system. Do not shut down your computer since the end process only works for this session. The minute you restart your computer, the Antivirus System PEST will still be there.

After you have finished backing up, if you have your computer’s OS reinstallation disc, reinstall or format your hd to reinstall.

I had to do this last night!

By Chinmay on Dec 5, 2009 | Reply

HI guys,
This antivirus Pro came yesterday, I think they have scary graphics which confuses us. It doesn’t scan anything of find anything. Normaly it doesn’t allow you to go to “msconfig” or “regedit” or restore point, it will give you error. BUT if you can go to restore page as soon as your desktop shows after booting u can restore easily. Basicaly This antivirus Pro takes some seconds to activate after windows is running, it doesn’t start with windows.. so try to be faster then Stupid Antivirus… It worked for me.. the again I went to webpage intentionaly & I got infected, & I tried second time… It worked !!! GOODLUCK

By dead-in-the-water on Dec 5, 2009 | Reply

If I ever find out who wrote this sh*tware, I’d hack off their hands and feet!

By Cheryl on Dec 6, 2009 | Reply

malware worked for me , once I went into safe mode and took it from saved file on pen drive from another pc. but now I cant connect to the internet

By Mike on Dec 8, 2009 | Reply

I got this virus this morning and tried this:

First I went into “safe” mode, because the virus had just about shut everything down in normal mode. While still in safe mode, I then checked add-remove to see if the virus was visible there, but it wasn’t. However, I was able to remove it by using “system restore” while in safe mode.

You can go into “safe mode” a number of ways, the easiest being to push the button on your computer and force quit, letting the black screen come up as it reboots. From there, just arrow scroll into the “safe mode” offering, and then press “enter.” You can also get into safe mode by rebooting and pressing F8 as your computer comes back up.

I then went to “all programs” and found the “accessories” folder. Then I opened “system tools” folder. Inside there, I clicked on the “system restore” icon. From there, it’s pretty much self-explanatory, like going back in time to before the virus happened.

I went back to a point 5 days ago, just to be sure, even though I just got the infection today, a few hours ago. I restarted out of safe mode and came back into the system’s regular mode.

I realize most people know this about safe mode, etc., but a lot of people don’t, so here it is simply put. “Safe mode” is the best way to combat most of these viruses, whatever the solution may turn out to be.

By Cheryl on Dec 9, 2009 | Reply

i got rid of the virus, for the most part, but now my pc wont even go into system restore.

By AnonyMouse on Dec 10, 2009 | Reply

I’m a professional PC tech for 25+ years.
the only way to sucessfully remove AntivirSystemPro is to do a system restore to any point before the time when you first noticed the virus. The reason you can’t remove it otherwise is because it embeds secret code into your registry that reinstalls the program on reboot.
If you try to delete the program it simply reinstalls itself at startup before any of your other software loads up!

Do a cold boot and press F8. Hold the key down until you get the options menu and boot into safemode. This allows your machine to only start with protected mode drivers (won’t load programs you installed after windows). Now go to start/run and type restore. Select the option for Restore UI. You can now restore from a date previous to when the virus wrote itself into your registry.

If you are not sure when you acquired it, I suggest any point 2 days prior to when you first noticed the virus.

your PC will now boot virus free.
Give yourself a handclap.

By Mykey D on Jan 5, 2010 | Reply

While surfing on Jan 2 2010 and looking at movies a pop up came on screen concerning an important Quiktime update was needed to continue. Of course I down loaded and opened it while still online (Dumbas*).Then Bam it struck. Then 15 seconds later Norton Anti Virus had it quarantined. Malware was named guao sys guard.exe . Since then I have added Zone Alarm Pro and Zone Alarm Force Field along with my Norton Antivirus. I hope I am now covered and I promise not to open files while online.