Hey guys,

Would really appreciate some help here. Last night my laptop suddenly started running a program called 'Vista Internet Security 2010'. It ran a what I presumed is a fake scan and popups kept on telling me to upgrade the program to full in order to remove threats. I ran my Norton anti-virus, but nothing was picked up. I've installed ad-aware, but the program wouldn't run as the 'Vista Internet Security 2010' always seem to start running whenever I tried opening a web browser or an antivirus/malware program. I've realised that in my Task Manager is a process called av.exe and ending that process turn off the popups temporarily. However, I don't know how to remove this completely. Some website said that av.exe is a trojan/virus with high degree of threats, so I'm rather worried about this!Any help would be greatly appreciated. I really hope I don't have to format my laptop! Thanks so much for your help in advance!

Ray

I have the same problem.

After I delete the process in task manager, when I try to open any programs, the av.exe pops up again and I cannot open the program without having av.exe on (i.e. I opened a game called Torchlight, saw that av.exe popped back up on my task manager, ended the process, and then Torchlight wouldn't work. When I opened the game again, and this time did not end the av.exe process, Torchlight worked fine). Also, I've been trying to do a system restore but I cannot open it, either by directly clicking on it or by using the Run command.

I've done several system scans but nothing came up.

Helen

If your computer is infected by "Internet Security" DO NOT try to remove it by yourself.
With this particular type of infection, if the wrong tools are used, your computer may be seriously damaged.

Please, read HERE, and start new topic HERE.

Good news! I found something that helped me get rid of av.exe!

Remove the spaces from the link below:

http :// ww w.bleeping computer. com/virus-re moval/remo ve-antivirus-vist a-2010

My computer works perfectly fine now.

Good news

Ok, i got this crap as well. I also got rid of it. What you gotta do is stop av.exe messing around by killing its registry entries. So I typed the following into notepad:

Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\Software\Classes\.exe]
[-HKEY_CURRENT_USER\Software\Classes\secfile]
[-HKEY_CLASSES_ROOT\secfile]
[-HKEY_CLASSES_ROOT\.exe\shell\open\command]

[HKEY_CLASSES_ROOT\.exe]
@=”exefile”
“Content Type”=”application/x-msdownload”

Then, saved to desktop and renamed it "fix.reg". Name it whatever but it has to be a reg file. Then double-click it. Click yes to the messages that pop up. The registry will be updated, av.exe wont be able to run anymore. To get rid of the av.exe files, get the Malwarebytes Antimalware software (malwarebytes.org) and use that to remove the files.

Worked for me

Step 1 - Use TASK MANAGER to stop "av.exe" in PROCESSES Tab.

Step 2 - Search for & delete "av.exe" (found mine in the \Documents and Settings\All Users\Application Data Directory).

Step 3 - Navigate to windows\system32\restore\ & double-click "rstrui.exe".

Step 4 - From the OPEN WITH pop-up box, browse again to windows\system32\restore\ & double-click "rstrui.exe".

Step 5 - Run the SYSTEM RESTORE Wizard as usual.

i prefer to not use system restore, but if it works for you, go for it

Perhaps not as elegant a solution the typical coder might come up with, but pretty effective for the less-inclined. I suppose its inherent weakness is the assumption that SYSTEM RESTORE is active.

@bds_snowman

So you were able to find av.exe in the Application Data directory? For me, it's nowhere to be seen and I can't locate the .exe anywhere else. (I'm trying to help a coworker take this off her computer--we don't have an IT department so I'm the closest thing to an IT person here...)