Attentive Antivirus - How to remove?

 

What is Attentive Antivirus?

Attentive Antivirus is rogue antivirus from WinWebSec family (new generation) and direct clone of System Doctor 2014. These parasites share both design and functionality. Both rogues will infect the system through trojans, hijacked pages or malicious advertisements. First you will see a fake warning screen claiming that Windows detected problem with privacy and is looking for a solution. It will claim that it installs antivirus, though the rogue has been preinstalled before and this step puts some links on desktop only.  After that Attentive Antivirus will display lots of popups and alerts to scare you into purchasing its full version. To scare you further, it will block majority of programs and display alert that the files you are trying to launch are infected.
Attentive Antivirus popups look like this:

Warning! Infected file detected
Location: File System
Suspicious activity detected in the application cmd.exe to the behavior of the virus Win32/Conficker.X. For your security and to avoid loss of data, the operation of application xxx.exe has been temporarily restricted.

Warning! Network attack attempt detected.
We strongly recommend activating full edition of Attentive Antivirus for repairing threats.

You can ignore all these popups, as all the threats detected by Attentive Antivirus are fake. However this rogue is dangerous as it comes with rootkits usually and is tough to remove.

Attentive Antivirus special removal instructions

  1. Reboot, press F8. Choose Safe mode with networking from menu.
  2. If you are asked, loggin to your account.
  3. Run msconfig. Disable all startup entries from ProgramData or Application Data folders.
  4. Download http://www.2-viruses.com/downloads/spyhunter-i.exe and other anti-malware programs just in case your browser fails to work in normal mode.
  5. Reboot normally.
  6. Download and scan your PC with http://www.2-viruses.com/downloads/spyhunter-i.exe, hitman, Malwarebytes to remove rootkit and Attentive Antivirus files.

Video version of these removal instructions are below.

If this approach fails, you can try to fake-register it with code : AF03E-902B6E19-6FD491E6-A33AF708-2B4B6DFE or create hitman Kickstarter usb on unaffected PC and booth the infected one from it.

 

Automatic Attentive Antivirus removal tools

 
  Download Spyhunter for Attentive Antivirus detectionNote: Spyhunter trial provides detection of parasite like Attentive Antivirus and assists in its removal for free. You can remove detected files, processes and registry entries yourself or purchase a full version.
 

Manual Attentive Antivirus removal

 

Important Note: Although it is possible to manually remove Attentive Antivirus, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend using Spyhunter or other tools found on 2-viruses.com.

Processes:
Files:

It is impossible to list all file names and locations of modern parasites. You can identify remaining parasites, other Attentive Antivirus infected files and get help in Attentive Antivirus removal by using Spyhunter scanner. 

 

Attentive Antivirus screenshots

 
attentive-antivirus-virus
 
 
 
 
 
 
 
 
 
 
 

3 thoughts on “Attentive Antivirus

  1. Brian Doyle
     

    Is there any way to do this absolutely free? These companies are just as bad as the virus charging large fees to get rid of the virus…

     
    1. You can try scanning with Hitman pro (if you haven’t used it, 30day trial http://www.2-viruses.com/reviews/hitman ) or malwarebytes.

       
  2. joe c.
     

    Start in safe mode. Delete IE temp files. Run msconfig. Uncheck any “unknown”publishers software from starting. Restart

     

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>