Computer Tips -Tech Info

This should not be confused with Norton 360 which is a legitimate antivirus program (although if you need help removing Norton 360 to reinstall it or another antivirus program you may want to visit my antivirus removal tool list.)

What we are talking about this time is a rogue security application known as Antivirus 360. Like many other rogue security applications (wolves in sheeps clothing as I used to call them), Antivirus 360 may have installed itself on your system by way of a security flaw in your browser or some other less than admirable method. Such avenues include aggressive popup ad advertising after a system is infecting with a trojan such as vundo. It seems to be the successor to the Antivirus 2009 rogue application.

Among the things it does after install is popup and run after the system reboots and claims to find infected files which may actually be legitimate windows files. If a user follows through and manually deletes these files they will have a very badly damaged windows install.

C:WindowsSystem32svchost.exe
C:WindowsSystem32alg.exe

The above files are some legitimate windows files that antivirus 360 claims are infected.

It also raises multiple bogus security alerts.

For this software, you may want to download malwarebytes antimalware (take a look at my virus removal toolkit page.)

You may be able to get malwarebytes antimalware installed and updated and then just let it run a scan and clean up any files that it finds. If however the system is too sluggish and obstinate with this pest of antivirus 360 you may need to undertake some manual removal steps.

To manually remove you will first want to kill off any running processes in task manager that resemble Antivirus 360. AV360.exe is the name that this application runs under. Then you can look at removing the following files:

%ProgramFiles%A360
%ProgramFiles%A360av360.exe
%User%Application DataMicrosoftInternet ExplorerQuick LaunchAntivirus 360.lnk
%User%DesktopAntivirus 360.lnk
%User%Start MenuAntivirus 360
%User%Start MenuAntivirus 360Antivirus 360.lnk
%User%Start MenuAntivirus 360Help.lnk
%User%Start MenuAntivirus 360Registration.lnk

There are a couple registry keys with a long string of random numbers created at
HKEY_CURRENT_USERSoftware
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun

It’s best to avoid the registry edit and after the deletion of the files run malwarebytes anti-malware to clean things up and make certain everything is clean.

Popularity: 1% [?]

   Send article as PDF   

• How to Remove AntiMalware | Antimalware Removal Guide Antimalware is the name of a particularly interesting rogue antivirus and rogue antimalware application. One tip off that it is a rogue application is that one of it's first actions is the attempted removal of the following trusted and legitimate antivirus, security and antimalware applications: AVG, Nod32, Agnitum, Sophos, Avira,......
• How to Remove SafeFighter | Safe Fighter Removal Guide SafeFighter is a rogue antivirus application in the same family as TrustCop (TrustCop Removal Guide), SecureWarrior (SecureWarrior Removal), SecurityFighter (SecurityFighter Removal), SecuritySoldier (SecuritySoldier Removal) and it also has gone under other names. It is a rogue application because it installs through either web popups or trojan horse activity, makes false......
• Remove Total Security 2009 | TotalSecurity 2009 Removal Total Security 2009 is also known as TotalSecurity 2009 or TotalSecurity2009. It is a newer version of the Total Security Antivirus which we highlighted just a week or so ago. It is a more troublesome variant of this rogue security software. In addition to the false warnings about problems on......

• Ten Steps To Become a Linux/Unix Geek Until recently, Linux/Unix was considered OS of the geeks. However, with GUI and more desktop Linux distributions, things have simplified on both Linux and Unix. Still you can geek out with Unix/Linux using its terminal. Just follow the steps below to master the terminal. 1. Never used Linux! Get Ubuntu......
• Buying Guide to Dobros - Wooden Resonator Guitars Consult different buying guides for buying a Dobro, and you will find yourself getting different opinions from different people. Dobros are wooden body resonator guitars, which are a unique piece of musical history and an intriguing instrument for you to play. These Dobros do not have to be expensive, as......
• Victory Poker VictoryPoker.net is host to a virtual poker card room service for those who wish to test their skills against others for fun, prizes, or money and does not participate in betting or wagering. It is duly regulated and licensed by The Cake Poker Network. Cake Poker Network is licensed......

Similar Posts

• How to Remove BlockDefense | Block Defense Removal
• Remove Antivirus Pro 2010
• How to Remove Ghost Antivirus
• Remove Proof Defender | Proof Defender Removal
• How to Remove SystemCop | System Cop Removal

This entry was posted on Tuesday, September 1st, 2009 at 11:26 pm and is filed under antivirus, Rogue Security Software. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.