Subscribe to spywareremovalguides.comNews FeedSubscribe to spywareremovalguides.comComments

You are here: Home / virus / AV Security Suite Removal

AV Security Suite Removal

Having Trouble removing this virus? Try Spyware Doctor With Antivirus from PCTools. » Download

For around 89 bucks www.OnlineComputerRepair.org can remove this threat for you right now.

June 16, 2010 by admin  
Filed under virus

Leave a Comment

AV Security Suite is fake anti-spyware program which imitates a legitimate antimalware application and belongs to the notorious Antivirus Live family of rogue malware. It acts in the same manner as its predecessors, Antivirus Soft and Antispyware Soft, by trying to convince users to buy a license for the software. AV Security Suite enters a user’s computer via Trojans that arrive at the user’s system via infected PDF files. Once it has been installed on the user’s system, AV Security Suite starts performing fake system scans at regular intervals, returning results that claim that the user’s system is under serious threat. It also creates a number of harmless files that it later detects as dangerous viruses. AV Security Suite uses a Windows-style GUI and pop-ups generated from the Windows taskbar to convince users that this is the real thing. Then it claims that the currently installed ‘trial’ version is inadequate to remove the previously detected false ‘threats and urges the user the pay for the ‘full’ version of the software. However, the ‘full’ version is no more capable of cleaning a user’s system than the ‘trial’ version; therefore no user should ever purchase the false license to this rogue software.

AV Security Suite

As soon as you find a copy of this malicious software installed on your computer, you should take steps to delete AV Security Suite. AV Security Suite removal involves the stopping of processes, removal of files and folders and the deletion of registry entries. However, before attempting this you should restart your computer in Safe Mode.

File Removal Procedures

The first step you need to take in order to remove AV Security Suite from your computer is to kill the following processes:

  • [random characters]tssd.exe
  • [random characters].exe

Next, it is necessary to remove the following files and folders from the hard disk in order to continue with AV Security Suite removal:

Windows XP:

  • %Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters]tssd.exe
  • %Documents and Settings%\[UserName]\Local Settings\Application Data\[random characters ]\[random characters].exe
  • Windows Vista/7
  • %USER%\AppData\[random characters ]\[random characters]tssd.exe
  • %USER%\AppData \[random characters ]\[random characters].exe

Once the above steps have been completed, it is safe to say that there are no more files belonging to AV Security Suite on your hard disk. In order to make sure of this fact, especially when working within a sensitive environment that contains a lot of personal data and work related files, it is recommended to scan the entire PC using genuine antivirus software such as Spyware Doctor with Antivirus.

Registry Removal Procedures

File deletion alone is not sufficient to completely remove AV Security Suite. The following keys and settings should be removed from the Windows Registry for complete AV Security Suite removal:

  • HKEY_CURRENT_USER\Software\AvScan
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random characters]“
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random characters]“
  • HKEY_CURRENT_USER\Software\avsoft
  • HKEY_CURRENT_USER\Software\avsuite
  • HKEY_LOCAL_MACHINE\SOFTWARE\avsoft
  • HKEY_LOCAL_MACHINE\SOFTWARE\avsuite
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” =”1″
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = “”
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1:5555″
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations “LowRiskFileTypes” = “.exe”
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments “SaveZoneInformation” = “1″

After the registry cleaning portion of AV Security Suite removal has been completed, your computer is safe from this rogue software.

Conclusion

Manual Security Center AV removal is not recommended for inexperienced users as any wrong move made during removal could cause damage to the system. The best tactic that inexperienced users can employ is to make use of web-based computer scanning/cleaning service such as www.onlinecomputerrepair.org or legitimate antivirus software such as Spyware Doctor with Antivirus to ensure complete and safe AV Security Suite removal.

Tags: , , , ,

Speak Your Mind

Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!