Andromeda AntiVirus ( aka AndromedaAntiVirus, AndromedaAv ) is a counterfeit anti-spyware application. It displays false scanning reports, annyoing pop-ups and advise users to purchase a registered version of the software in order to remove the reported threats. Once Installed, it silently installs additional trojans on the user’s computer for maximum destructions.
Risk Level : High ( Dangerous )
Note :- To safely & quickly detect Andromeda AntiVirus, We highly recommend you to use the Removal Tool for Andromeda AntiVirus.
Download – Removal Tool for Andromeda AntiVirus
Screenshots:
Andromeda AntiVirus
Symptoms of Andromeda AntiVirus
Pop up balloon warning messages claiming that your PC is infected.
- "Critical System Error",
- "Your computer is infected",
Manual Removal Process: ( How to get rid of Andromeda AntiVirus )
Search and kill the following processes (Learn Here)
av.exe, AndromedaAv.exe, vclipsrv.exe, bprint.exe
Remove Andromeda AntiVirus files & dlls files (Learn Here)
c:\Documents and Settings\All Users\Desktop\Andromeda AntiVirus.lnk
c:\Program Files\AndromedaAv
c:\Program Files\AndromedaAv\av.exe
c:\Program Files\AndromedaAv\DataBases
c:\Program Files\AndromedaAv\DataBases\av_nav_hd.avp
c:\Program Files\AndromedaAv\DataBases\av_nav_m.avp
c:\Program Files\AndromedaAv\DataBases\avd.avp
c:\Program Files\AndromedaAv\DataBases\avhd.avp
c:\Program Files\AndromedaAv\DataBases\avhd1.avp
c:\Program Files\AndromedaAv\DataBases\avm.avp
c:\Program Files\AndromedaAv\Logs
c:\Program Files\AndromedaAv\Logs\08-2008_AndromedaAvLog.log
c:\WINDOWS\system32\andrav_inet.dll
c:\WINDOWS\system32\AndromedaAv.exe
c:\WINDOWS\system32\bprint.exe
c:\WINDOWS\system32\hinetres.dll
c:\WINDOWS\system32\rpthreadVC.dll
c:\WINDOWS\system32\settings
c:\WINDOWS\system32\thunk.dll
c:\WINDOWS\system32\vclipsrv.exe
c:\WINDOWS\system32\dllcache\cpifmgr.dll
c:\WINDOWS\system32\dllcache\tmswdat10.dll
c:\WINDOWS\system32\drivers\winav.sys
Remove/Modify corrupt Registry Entries (Learn Here)
HKEY_CLASSES_ROOT\*\shell\AV
HKEY_CLASSES_ROOT\Folder\shell\AV
HKEY_LOCAL_MACHINE\SOFTWARE\AndromedaAv
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_ANDROMEDAAVDRV
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AndromedaAvDrv
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ANDROMEDAAVDRV
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AndromedaAvDrv
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AndromedaAVService
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AndromedaAVService
