Yahoo Answers is shutting down on May 4th, 2021 (Eastern Time) and beginning April 20th, 2021 (Eastern Time) the Yahoo Answers website will be in read-only mode. There will be no changes to other Yahoo properties or services, or your Yahoo account. You can find more information about the Yahoo Answers shutdown and how to download your data on this help page.

Trending News

Promoted
iluv2tradestks
Lv 6
iluv2tradestks asked in Computers & InternetSecurity · 1 decade ago

How do I get rid of green av virus?

I sent the program to recycle bin. I ran MacAfee scan. But I still have residual affects to the virus. It did not show up in Control Panel add-remove.

9 Answers

Relevance
  • ilknur K
    Lv 7
    1 decade ago
    Favorite Answer

    Restart You computer Safe Mode with Networking:

    1. Log out and reboot your machine.

    2. When the machine starts the reboot sequence, press the F8 key repeatedly.

    3. Select Safe Mode with Networking from the resulting menu.

    4. Login. If the malware has changed your password, try logging in as Administrator. By default, Administrator has no password.

    5. The machine will continue booting, but the Windows desktop will look different.

    Then in The Safe With Networking .Download and Scan By Using Malwarebytes’ Anti-Malware http://www.download.com/Malwarebytes-Anti-Malware/...

    Download and Scan By Using Super Anti-Spyware Press here http://www.superantispyware.com/

    Download and Scan By Using SmitFraudFix v2.392 (WinXP, Win2K) Press here http://siri.geekstogo.com/SmitfraudFix.php

    Download and Scan By using Norman Malware Cleaner Press here http://majorgeeks.com/downloadget.php?id=5450&file...

    6. When you're finished Remove Virus log out and reboot back into normal mode

  • samantha
    Lv 7
    1 decade ago

    MOST infections can be cleaned yourself by following the following steps.

    Download the following tools (Some malware will attempt to block your access to antimalware sites so you may have to download these from a different computer and copy them to a transferable media (flashdrive, cdr/dvdr, thumb drive...)

    Malwarebytes - http://www.malwarebytes.org/

    Superantispyware - http://www.superantispyware.com/

    Boot your computer into “Safe Mode” by pressing F8 as soon as the windows logo appears (You have to be quick).

    Once you are in safe mode install MalWareBytes and run a full scan of your computer (Once again some malware attempts to prevent you from installing and using tools that remove the virus so If you are unable to install MalWareBytes Rename the file “MBAM.EXE” to something else. I typically name it “xxxxx.exe” )

    After MalWareBytes has finished and cleaned what it found then install and run SuperAntiSpyWare.

    There are some malware that cannot be removed from SafeMode if the machine is infected. This is often the case with rootkits as they compromise the kernel or core 'critical' system files. For those situations you will need to boot into a clean image to perform the virus removal. There are a few ways to do this I typically use a clean boot CD such as UBCD4WIN or Knoppix or the Avira AntiVir Rescue CD or the Kaspersky Rescue CD. Knoppix is Linux Based and has a lot of utilities and tools for fixing your computer from all sorts of problems. The other three options are Windows Based. UBCD4WIN has a lot of tools for system maintenance. The other two are specifically designed for virus removal using two very good anti-virus programs. All 4 are excellent choices and I carry all 4 with me as they each have their own strengths.

    http://www.ubcd4win.com/

    http://www.knoppix.net/

    http://www.free-av.com/

    http://support.kaspersky.com/

  • Anonymous
    1 decade ago

    I hate that Green AV virus. I got one right here on Y. Answers Saturday night. My Bit Defender took care of that but great question I am also curious

  • vlj2002
    Lv 6
    1 decade ago

    Go to safe mode with networking. Then use combofix from bleepingcomputer.com, then go download malwarebytes from softpedia.com or cnet.com and use it, then clean the rest of the virus with superantispyware from softpedia.com or superantispyware.com, and for future protection use avira as antivirus and a good firewall such as Online Armor or Outpost Firewall or Comodo or PC Tools Firewall. Last resort is use a UBCD4win or if no clue then seek a professional.

  • How do you think about the answers? You can sign in to vote the answer.
  • random person
    1 decade ago

    I also had green av turns out that it's a virus and what you do to remove it is simple run this FREE anti virus program DO NOT BUY THE FULL VERSION YOU WOULD HAVE TO PAY FOR IT IF YOU BUY THE FULL VERIZON SO DO NOT BUY THE FULL VERIZON DOWNLOAD THE FREE VERIZON PLEASE. Click on download now to download it after your done just do a quick scan and than click on remove virus and than it will be removed please thank me for this click on the blue words to go to the site to download it

    http://download.cnet.com/Malwarebytes-Anti-Malware...

  • Anonymous
    5 years ago

    i had the same thing happen to me yesterday. do a system restore back to the day before it first showed up. it's the only way i could get rid of it and it's free!!!

  • Anonymous
    1 decade ago

    http://www.bleepingcomputer.com/virus-removal/remo...

  • jenms2000
    1 decade ago

    i had the same problem. got it on saturday so i did a system restore back to friday and it got rid of it. it worked and and it's free!!!

  • Anonymous
    1 decade ago

    FIND AND DELETE THIS FILES:Associated Green AV Files:

    Please note some of these entries may be random:

    c:\Documents and Settings\All Users\Application Data\gwr\

    c:\Documents and Settings\All Users\Application Data\gwr\mwrdll.exe

    c:\Documents and Settings\All Users\Application Data\gwr\rwg.exe

    c:\Documents and Settings\All Users\Application Data\gwr\Viruses.dat

    c:\Documents and Settings\All Users\Application Data\gwr\wsav.exe

    c:\Documents and Settings\All Users\Application Data\gwr\WStech.dll

    c:\Documents and Settings\All Users\Application Data\gwr\wtds05.exe

    c:\Documents and Settings\All Users\Desktop\ Green AV .lnk

    c:\Documents and Settings\All Users\Start Menu\Programs\Green AV

    c:\Documents and Settings\All Users\Start Menu\Programs\Green AV\ Green AV .lnk

    Associated Green AV Windows Registry Information:

    Please note some of these entries may be random:

    HKEY_CURRENT_USER\Software\GAV

    HKEY_CLASSES_ROOT\AppID\{29256442-2C14-48CA-B756-3EE0F8BDC774}

    HKEY_CLASSES_ROOT\AppID\WStech.DLL

    HKEY_CLASSES_ROOT\CLSID\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}

    HKEY_CLASSES_ROOT\Interface\{051C9A06-FB08-486F-B09B-8B33B261637D}

    HKEY_CLASSES_ROOT\TypeLib\{512E801E-2F02-4ADE-ACAA-58F08A22B2F8}

    HKEY_CLASSES_ROOT\WStech.WStechB

    HKEY_CLASSES_ROOT\WStech.WStechB.1

    HKEY_LOCAL_MACHINE\SOFTWARE\GAV

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}

    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LanmanServer\Shares\0

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB} "NoExplorer"

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "03874569874596"

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "37465982736455"

    If you don't know how to deal with registry then install malwarebytes http://download.bleepingcomputer.com/malwarebytes/... and read the removal guide here http://www.bleepingcomputer.com/virus-removal/remo...

    Source(s): http://www.bleepingcomputer.com/virus-removal/remo...
Still have questions? Get your answers by asking now.