Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: WARNING!! PAV.EXE Personal Antivirus

28 Aug 2009   #1
Orbital Shark

WARNING!! PAV.EXE Personal Antivirus

Note   Note
I've not seen this for some time but it seems to be doing the rounds again so I thought i'd give everyone a heads up.

WARNING!! PAV.EXE Personal Antivirus-personalantivirus_img1.png

Personal Antivirus, or PersonalAntivirus, is a rogue anti-spyware program to come out from the company called Innovagest 2000.

Personal Antivirus is installed by a trojan called Zlob, which attempts to trick you into buying the alleged rogue anti-spyware program. Once you're infected with Zlob, a fake security message similar to a Windows notification pops up saying your PC is infected with malware. This Personal Antivirus message is used to lure you into purchasing, downloading and installing their program to remove the imaginary spyware.

Personal Antivirus may also automatically launch at your computer's startup and scan your computer. Personal Antivirus may be difficult to remove manually, and will continue to try to recreate itself. Personal Antivirus is a clone of Internet Antivirus Pro and General Antivirus, which are other corrupt distributed programs. Personal Antivirus should not be trusted and is recommended to be removed.
I have come across 4 machines over the last week that have been infected by this rediculously annoying 'antivirus' software.

Step by step removal:
I have found that advanced removal is the best method for this app.

1, You will need to end the PAV.EXE process in taskmanager. Right-click the taskbar and click 'Task Manager' then the 'Processes' tab. Next, find and right-click the PAV.EXE entry and select 'End Process Tree'. This will kill the process.

2, Delete the following folders from your computer
  • c:\program files\PersonalAV
  • c:\program files\Common Files\Uninstall\PersonalAV
  • c:\windows\tasks\PersonalAV
3, Run 'regedit' from the start menu and do a search for 'PersonalAV' and delete every entry found.
Tip   Tip
It's best to run a second full search once the first has finished

Once all trace of the app has been removed you should re-boot your machine and you will find that the annoying tray notification applet has gone & all processes for PAV.EXE have been eliminated.

My System SpecsSystem Spec
28 Aug 2009   #2

Windows 10 Tech Preview 9926 x64

Thanks for the heads up Orbital. If it's making it's way around again, that means I have to warn all of my volunteers/customers...again. lol
My System SpecsSystem Spec
28 Aug 2009   #3
Dark Nova Gamer

Windows 7 Ultimate, OS X 10.7, Ubuntu 11.04

Good job orbital, made it easy to follow and I have seen that on a few of my friends PC's I'll pass this page along to them.
My System SpecsSystem Spec

28 Aug 2009   #4
mickey megabyte

ultimate 64 sp1

thanks sharky for the heads up.

not seen this one for a while...

*waits for phone to start ringing*
My System SpecsSystem Spec
28 Aug 2009   #5
Microsoft MVP

Win 7 Ultimate x64

Looks like a new variant of this,

How to remove Personal Antivirus (Removal Guide)
My System SpecsSystem Spec
28 Aug 2009   #6
Orbital Shark


Quote   Quote: Originally Posted by stormy13 View Post
Looks like a new variant of this,

How to remove Personal Antivirus (Removal Guide)
Doesn't supprise me mate, thankfully I have 100% success without needing to install other software
My System SpecsSystem Spec
28 Aug 2009   #7
Microsoft MVP

Windows 7 Ultimate 32bit SP1

One thing about ZLob and *fake* Anti-virus or Anti-spyware pop-ups... once you see the alerts, it's already installed on the computer.

Most of the latest ZLob infections include a Rootkit (**Backdoor TDSS and more ...
A remote administration utility which bypasses normal security mechanisms to secretly control a program, computer or network).

These are often hard to get rid of, you can clean up a Rootkit (kind of)... but I am one who prefers not to. It's better to wipe and do a clean install your Windows OS. You cannot be sure that your OS is totally stable again without doing this.

** Virus Description: Backdoor:W32/TDSS
My System SpecsSystem Spec
29 Aug 2009   #8

Windows 7 x64 Professional

Good tip... thanx.
My System SpecsSystem Spec
29 Aug 2009   #9

Windows 7 Ultimate x64/ Windows Vista Ultimate x64

Thanks OS. I'll keep this in mind.
My System SpecsSystem Spec

 WARNING!! PAV.EXE Personal Antivirus

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar help and support threads
Thread Forum
where shall I put my personal documents ?
Hi, At my work place, computers have been upgraded to windows 7 and I'm beginner with this system and I'm trying to find the best practice for my personal documents. So far, like on my old own PCs, I used to partition the disk into a C:/system partition for windows and a D:/data partition for...
General Discussion
Comodo AntiVirus or Kaspersky AntiVirus
Which of these is better? I'm currently using Kaspersky AV plus Comodo Firewall as noted in my sig.
System Security
Just got my first PERSONAL PC
Hello, I used to use the Family PC and whatever my parents used is what I had to use. Now that I'm in charge of my own PC. I was wondering what to use for it? I've checked out the Stickies, and decided on MSE and Kaspersky. I was wondering if I could use both or if that would hinder my PC's...
System Security
A personal request
I thought I'd post this in the 'Customisation' section since this is the place where our talented GFX TEAM like to hang out, so.. basically I've got an idea for a design of my new business cards. What I'm thinking of is a can of paint that has overflowed, the paint has spilled down the side and...
Chillout Room

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:01.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App