AntiVir virus may cause an infected computer to display excessive alert messages alarming users of a possible security threats like spyware, virus, trojan and worm. AntiVir was categorized as a bogus security program because of its fraudulent activities online and once inside the computer. Online, it will automatically scan a visitors computer and display fake threats and viruses that are not really present. While inside the system, AntiVir will launched its own virus scanner that also have similar tactics to attract users into purchasing the registered version of the program.
To remove AntiVir virus from your computer, download a program that are legit and trusted only. Never obtain a licensed version of AntiVir since it will not do any good and is just a waste of money.
What are the Symptoms of AntiVir Infection?
Antivir virus will modify Windows Registry and add the following entries:
- HKEY_CURRENT_USER\Software\EVAACD
- HKEY_CLASSES_ROOT\CLSID\{35A5B43B-CB8A-49CA-A9F4-D3B308D2E3CC}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Explorer\Browser Helper Objects\{35A5B43B-CB8A-49CA-A9F4-D3B308D2E3CC}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\Current Version\Run “AV”
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Internet Settings\5.0\User Agent\post platform “WinNT-EVI 25.11.2009”
The threat will drop the following malicious files:
- c:\Documents and Settings\All Users\Start Menu\AV
- c:\Documents and Settings\All Users\Start Menu\AV\Antivir.lnk
- c:\Documents and Settings\All Users\Start Menu\AV\Uninstall.lnk
- %UserProfile%\Desktop\Antivir.lnk
- c:\Program Files\AV
- c:\Program Files\AV\antivir.exe
- c:\Program Files\Common Files\Uninstall
- c:\Program Files\Common Files\Uninstall\AV
- c:\Program Files\Common Files\Uninstall\AV\Uninstall.lnk
- c:\WINDOWS\system32\UpdateCheck.dll
How to Remove AntiVir Manually
1. Restart your computer in SafeMode
– After Power-On the computer, just before Windows start, press F8
– From the selections, Select SafeMode
2. Remove Registry entries that the threat added. You MUST BACKUP YOUR REGISTRY FIRST.
– Click Start > Run
– Type in the field, regedit
– Navigate and look for the registry entries mentioned above and delete if necessary
3. Delete malicious files that Antivir added:
– Base on the given location above, browse and delete the file
– If no location is given, click Start>Search> and search for the files.
– If cannot be deleted, press Ctrl+Alt+Del to access Task Manager, see if the file is running in the process. If it is, select the file and click End Process. Perform file delete again.
4. Scan computer with Antivirus Program to remove Antivir Virus
– Update antivirus program
– Scan computer and delete all detected threats.
How to Easily Remove AntiVir
1. Download and run Removal Tool to remove AntiVir
