Hi all - I'm new on here but i thought i'd give you the benefit of my recent (yesterday & this morning), experience of having Fraud Spyguard "Antivirus IS"
on my PC.
I don't know how or when i got infected,but it showed up yesterday & it gave me nearly 8 hours of sheer frustration. It behaved by blocking the opening of almost every application on my PC,everything showed up as 'infected',including the Registry,which it wouldn't allow to be opened with 'regedit' or 'msconfig' etc. It also prevented the booting up of my PC in 'safe mode' by disabling the UP & DOWN arrows used to select the method of booting up.
I had access to the internet using Firefox,IE was disabled - for a reason i suspect. In Firefox,you have to 'save' software downloads to the ''downloads folder'',then open them from there,of course once in the folder,they displayed as 'infected' & wouldn't run. In IE,you can 'run' a software download right at the start,no need to 'save' them - that's why IE was disabled. Cunning little b*****ds aren't they ?.
I contacted the AVG support team (i use AVG Free version) who for a fee of £69.00,offered to help. I paid up & they were indeed very helpful & patient,
but nothing that they tried worked,so my fee was re-funded. I then opted for a home visit from a UK engineer to come & fix it for a fee of £90.00.He was due tomorrow. However,this morning,i booted up my PC (i tried safe mode again to no avail !) & there was the Antivirus IS icon in all it's splendour. I right clicked on it,selected 'properties' & had a look at where the blasted thing was lurking. It turned out to be in my 'Temp' folder,a whole gaggle of bits & pieces which i tried to delete. I managed to get rid of some of them,but others came up with the 'in use by another user' warning a wouldn't go.
Anyway after an hour of further frustration & anger,i shut my PC down. I re-booted & as soon as my desktop icons appeared,i double clicked on AVG &
lo & behold ! - it opened up. I ran it & it detected 15 tracking cookies for nothing spectacular. I then ran Spybot S & D which detected the "Fraud Spyguard"
which was nestling nicely in the Registry HKEY_USER\Software\Microsoft\Windows etc. After Spybot had finished running i used the delete function to
rid myself of the nast little critter.
As of now,i'm clean as a whistle. I thought that i's post this on here for you to read,as some of the methods described on here how to remove this hazard,simply didn't work in my case. It may of course work in yours.
There's quite a lot of info.on how to remove this threat from a PC,but unfortunately it appears to have been written by folk who've never been infected or had experience of an infection with Antivirus IS.
I sincerely hope that this info.may be of use, & equally sincerely hope that none of the other members on here ever get infected with it - it's truly
insidious in it's effect on a PC