AV Security Suite Removal Guide

Threat Level:
9/10
Rate this Article:
Comments (1)
Article Views: 13612
Category: Fake Antispyware

The level that crooked and devious developers of rogue antispyware applications stooped to reached a new low with Antivirus Soft’s latest clone, AV Security Suite. AV Security Suite is not, despite what it may seem to be, a genuine security tool. In fact, this rubbish rogue antispyware application is nothing more than a malicious infection out to cause your system severe damage in its campaign to rip you off. It will do its best to come across as a genuine security tool but in reality it is unable to protect your PC against any type of threat and cannot detect or remove infections.

Because of its authentic looking graphic user interfaces, AV Security Suite manages to convince users of its seemingly auspicious authenticity. However this is only a front and AV Security Suite merely emulates the workings of a real security application. Established forms of infection are used to deliver the AV Security Suite infection into PCs. These may vary from fake online malware scanners infected with the AV Security Suite virus to seditious browser hijacking websites. Other tactics which form part of AV Security Suite’s online marketing campaign include infected online flash ads and bundled third party security downloads and updates.

Other symptoms associated with the AV Security Suite infection range from blocked Internet connections to the inability to execute application on the infected PC. In fact, AV Security Suite will configure Windows to use a proxy server which points back to:

127.0.0.1:1041

Since AV Security Suite will be set to be the system’s proxy server, each time the user attempts to browse the Internet using Internet Explorer he will be blocked from accessing the Internet and receive the following fake security warning which states that the site the user is attempting to visit is infected:

This website has been reported as unsafe
We recommend that you do not continue to this website. This website has been reported to Microsoft for containing threats to your computer that might reveal personal or financial information.

In an effort to prevent the user from running an application which may be able to detect and remove AV Security Suite from the system, the rogue will prevent him from executing any applications on the system. It will present the user with fake security alerts, such as the following:

Windows Security alert
Application cannot be executed. The file mbam.exe is infected.
Do you want to active your antivirus software now?

And

Spyware Alert
Application infected! The file rundll32.exe is infected. Do you want to ALLOW this application now?

Sidestep the severe damage this rogue is capable of and destroy AV Security Suite immediately. Do this by investing in a genuine security tool which will not only obliterate AV Security Suite but also protect against similar attacks in future.

Download Remover for AV Security Suite *
*SpyHunter scanner, published on this site, is intended to be used only as a detection tool. To use the removal functionality, you will need to purchase the full version of SpyHunter.

AV Security Suite Screenshots:

AV Security Suite

AV Security Suite technical info for manual removal:

Files Modified/Created on the system:

# File Name File Size (Bytes) File Hash
1yjjtatgtssd.exe293632 bytesMD5: ecf654c4f3f6031259222a08872727c5
2jnxjbugtssd.exe264960 bytesMD5: 8529523120dc3010ba9b5075b8aa4b52
3vkpbyswtssd.exe289024 bytesMD5: 9955cbbec9dc21d8425029821267080d
4huawloftssd.exe289024 bytesMD5: 9dc0b660f16250188f244574d3dc7295
5riksofgtssd.exe287488 bytesMD5: b14254bcf2d3b6a75180b93de183bcb4
6xbnvoeptssd.exe288512 bytesMD5: 5b2c47d0a5d5af4153cdc0a576612870

Registry Modifications:

The following Registry Keys were created:

  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN mjegbrxw
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN vqbrfovy
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN cjmplbfn
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN qgdabxia
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN pywwavas
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN nojdskpg

Comments

  1. please i need to get rid of this virus please please

Reply

Your email address will not be published.

Name
Website
Comment

Enter the numbers in the box to the right *