ave.exe

[SteamWake]

Check your processes and if this rascal is in there do everything in your power to get rid of it.

This is one of the most insidious pieces of malware I have ever come accross.

If you simply delete the ave.exe file you will lose all associations for all programs and not be able to run anything

It is a root kit virus "Rouge Antivirus" that pops up stern warning about how your machine is a seething pit of viruses and spyware. It is of course bull **** and just trying to scare you into buying their 'protection'.

It looks very 'offical' and very much like a windows operating system warning.

I'm running malwarebytes on the afflicted machine right now but I will probably have to go do some manual registry edits.

[krashkart]

Ouch! Thanks for the heads-up, SteamWake.

[SteamWake]

Malwarebytes (MBT) got rid of it and its registry shenanigans.

You have to play a bit of cat and mouse with ave.exe with the task manager stopping its process a few times while getting MBT installed.

I saved some grief by downloading MBT on a clean machine then copying the install file for MBT to a disk (or a thumbdrive). You can then load MBT on the afflicted machine with a lot less fuss. You will still have to joust with ave.exe as it starts when explorer is started to open MBT's install file.

Oh this was on a Vista machine.

[stabiz]

Knock on wood, I have not had any (unintentional) crap on my computer since 2004 (yeah, i really remember that one). Maybe because I reinstall Windows at least twice a year.

Good to hear you killed the bugger.

[Arclight]

Think I tangled with that one once, 1.5 year ago or so.

Took me longer to restore all my shortcuts than to kill the bugger.

[kiwi_2005]

I just fixed a PC last night that had that PC security virus, i mention while back on here of a pc i fixed that was riddled with trogans 300+ all up, this one was the same except far less Trojans and in desperation they must of got conned into thinking by installing PC security scanner you can grab online they would be safe - little did they know that pc security you can download for free is a scam that installs a trogan and disables your desktop in a way where you have to right-click and choose in the menu 'Open' if you want to run a program, will also give the user a hard time using the internet with timeouts every couple of minutes, you also cannot delete PC scanner in add/remove it wont let you instead numerous windows popup trying to get you to pay and if you check the install folder there's only 1 file (PC.exe) in their that is a pain to delete - keeps coming back on restart.


I think im getting popular these people i help are from the poor side of town they can't afford to pay the local tech $65 an hour so they bring their sick pcs to me and i just charge them $20 for the whole job. Scan pc get rid of viruses, download and install Avast free edition, and ccleaner, defrag hdd, update anything that needs updating like windows updates and double check that the pc is clean before they pick it up.

[SteamWake]

Quote:

Originally Posted by kiwi_2005

I just fixed a PC last night that had that PC security virus, i mention while back on here of a pc i fixed that was riddled with trogans 300+ all up, this one was the same except far less Trojans and in desperation they must of got conned into thinking by installing PC security scanner you can grab online they would be safe - little did they know that pc security you can download for free is a scam that installs a trogan and disables your desktop in a way where you have to right-click and choose in the menu 'Open' if you want to run a program, will also give the user a hard time using the internet with timeouts every couple of minutes, you also cannot delete PC scanner in add/remove it wont let you instead numerous windows popup trying to get you to pay and if you check the install folder there's only 1 file (PC.exe) in their that is a pain to delete - keeps coming back on restart.


I think im getting popular these people i help are from the poor side of town they can't afford to pay the local tech $65 an hour so they bring their sick pcs to me and i just charge them $20 for the whole job. Scan pc get rid of viruses, download and install Avast free edition, and ccleaner, defrag hdd, update anything that needs updating like windows updates and double check that the pc is clean before they pick it up.

Heh I got two or three that could use a good cleaning... I'lll be right over

[AVGWarhawk]

My daughters computer go this. It comes in two names AVE.EXE or just AV.EXE. We got both. Yes, shutting it off in task manager works. This exe file is found in your prefetch folder. You can delete it there. There is a small .exe file that you can put on a thumb drive or burn to DVD that will make the registry entries to shut this muther-fer off. I forget the name of it. Anway, I used that the first time. The second time it I just deleted the exe file in prefetch and ran Malwarebytes. I think I will purchase MWB so it protects real time. My daughter got the damn thing twice while looking at Facebook. Facebook is a fun place for virus makers to get their jollies in placing viruses on links and crap.

[kiwi_2005]

Quote:

Originally Posted by AVGWarhawk

Facebook is a fun place for virus makers to get their jollies in placing viruses on links and crap.

Why you should not invite friends to My Space...

[AVGWarhawk]

That is about what it is Kiwi! People take such a simple friendly site and completely destroy it with a virus or dumb groups to join.

[Task Force]

Lol, no issues here, ever infact... (*knocks on wood, guess particalboard counts as wood)