Green AV Security Suite

By Domesticus in Rogue Anti-Spyware Program

Green AV Security Suite is a rogue anti-spyware program designed to pilfer money from unwary computer owners. Green AV Security Suite uses Trojans to spread via network systems and corrupt websites. The Trojans redirect the browser to a fake scan page which produces bogus results claiming the PC is infected with malware. Soon the system will be bombarded by popups urging the purchase of Green AV Security Suite to remove the so-called threats. Do not become a another hapless victim of cyber crime and have Green AV Security Suite removed from the compromised computer immediately using reliable anti-spyware software.

File System Details

Green AV Security Suite may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters].exe
Name: %Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters].exe Type: Executable File
2.	%Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters]tssd.exe
Name: %Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters]tssd.exe Type: Executable File

Registry Details

Green AV Security Suite may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "[random characters]"

HKEY_LOCAL_MACHINE\SOFTWARE\avsoft

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = ""

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = "1"

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[random characters]"

HKEY_CURRENT_USER\Software\avsuite

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" ="1"

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = ".exe"

HKEY_CURRENT_USER\Software\AvScan

HKEY_CURRENT_USER\Software\avsoft

HKEY_LOCAL_MACHINE\SOFTWARE\avsuite

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = "http=127.0.0.1:5555"

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Green AV Security Suite

File System Details

Registry Details

1 Comment

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen