How to remove Live Security Suite

Live Security Suite, which is related to the notoriously known Live Enterprise Suite, is a rogue anti-malware program. Live Security Suite uses scare tactics the same as any other rogue security program to trick users into purchasing a license to its full version. This malicious application reaches the user’s computer via Trojans that get downloaded along with fake video codec packs. Once established on the user’s system, Live Security Suite loads itself as a startup service at boot time. Live Security Suite proceeds to perform a large number of fake security scans on the system, returning results that state that the computer is dangerously infected with a number of non-existent viruses. It also generates fake warning pop-ups from the Windows taskbar. Finally Live Security Suite urges the user to purchase a license to the ‘full’ version of the software, claiming that the currently installed ‘trial’ version is incapable of cleaning the detected false ‘threats’. However, all users should be aware that this is a trick aimed at swindling their money, as no version of Live Security Suite can scan or clean any computer.

Live Security Suite

The following sections outline how to remove Live Security Suite from your computer. This requires the deletion of files and folders and the removal of registry entries that are related to Live Security Suite.

File Removal Procedures

The first step in Live Security Suite removal is to stop the following processes:

  • LiveSS.exe
  • services.exe

The next step in Live Security Suite removal is the deletion of the following files and folders:

Windows XP:

  • c:\Documents and Settings\All Users\Desktop\Live Security Suite.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Live Security Suite
  • c:\Documents and Settings\All Users\Start Menu\Programs\Live Security Suite\Live Security Suite Home Page.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Live Security Suite\Live Security Suite.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Live Security Suite\Purchase Licence.lnk
  • c:\Documents and Settings\All Users\Start Menu\Programs\Live Security Suite\Purchase License.lnk
  • c:\Program Files\Live Security Suite
  • c:\Program Files\Live Security Suite\activate.ico
  • c:\Program Files\Live Security Suite\Explorer.ico
  • c:\Program Files\Live Security Suite\LiveSS.exe
  • c:\Program Files\Live Security Suite\unins000.dat
  • c:\Program Files\Live Security Suite\uninstall.ico
  • c:\Program Files\Live Security Suite\working.log
  • c:\Program Files\Live Security Suite\db
  • c:\Program Files\Live Security Suite\db\DBInfo.ver
  • c:\Program Files\Live Security Suite\db\ia080614.db
  • c:\Program Files\Live Security Suite\db\lists.ini
  • c:\Program Files\Live Security Suite\db\WMILib.dll
  • c:\Program Files\Live Security Suite\Languages
  • %UserProfile%\Application Data\Live Security Suite
  • %UserProfile%\Application Data\Live Security Suite\settings.ini
  • %UserProfile%\Application Data\Live Security Suite\uill.ini
  • %UserProfile%\Application Data\Live Security Suite\unins000.exe
  • %UserProfile%\Application Data\Live Security Suite\Uninstall Live Security Suite.lnk
  • %UserProfile%\Application Data\Live Security Suite\db
  • %UserProfile%\Application Data\Live Security Suite\db\config.cfg
  • %UserProfile%\Application Data\Live Security Suite\db\Timeout.inf
  • %UserProfile%\Application Data\Live Security Suite\db\Urls.inf
  • %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Live Security Suite.lnk
  • %UserProfile%\Desktop\Live Security Suite.lnk
  • %UserProfile%\Desktop\LiveSS.exe.txt
  • %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png
  • %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png
  • %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
  • %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
  • %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe

Windows Vista/7:

  • c:\%USER%\My Documents\Desktop\Live Security Suite.lnk
  • c:\%USER%\Start Menu\Programs\Live Security Suite
  • c:\%USER%\Start Menu\Programs\Live Security Suite\Live Security Suite Home Page.lnk
  • c:\%USER%\Start Menu\Programs\Live Security Suite\Live Security Suite.lnk
  • c:\ :\%USER%\Start Menu\Programs\Live Security Suite\Purchase Licence.lnk
  • c:\ :\%USER%\Start Menu\Programs\Live Security Suite\Purchase License.lnk
  • c:\Program Files\Live Security Suite
  • c:\Program Files\Live Security Suite\activate.ico
  • c:\Program Files\Live Security Suite\Explorer.ico
  • c:\Program Files\Live Security Suite\LiveSS.exe
  • c:\Program Files\Live Security Suite\unins000.dat
  • c:\Program Files\Live Security Suite\uninstall.ico
  • c:\Program Files\Live Security Suite\working.log
  • c:\Program Files\Live Security Suite\db
  • c:\Program Files\Live Security Suite\db\DBInfo.ver
  • c:\Program Files\Live Security Suite\db\ia080614.db
  • c:\Program Files\Live Security Suite\db\lists.ini
  • c:\Program Files\Live Security Suite\db\WMILib.dll
  • c:\Program Files\Live Security Suite\Languages
  • %UserProfile%\Application Data\Live Security Suite
  • %UserProfile%\Application Data\Live Security Suite\settings.ini
  • %UserProfile%\Application Data\Live Security Suite\uill.ini
  • %UserProfile%\Application Data\Live Security Suite\unins000.exe
  • %UserProfile%\Application Data\Live Security Suite\Uninstall Live Security Suite.lnk
  • %UserProfile%\Application Data\Live Security Suite\db
  • %UserProfile%\Application Data\Live Security Suite\db\config.cfg
  • %UserProfile%\Application Data\Live Security Suite\db\Timeout.inf
  • %UserProfile%\Application Data\Live Security Suite\db\Urls.inf
  • %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Live Security Suite.lnk
  • %UserProfile%\Desktop\Live Security Suite.lnk
  • %UserProfile%\Desktop\LiveSS.exe.txt
  • %UserProfile%\Local Settings\AppData\Microsoft\Internet Explorer\iGSh.png
  • %UserProfile%\Local Settings\AppData\Microsoft\Internet Explorer\iMSh.png
  • %UserProfile%\Local Settings\AppData\Microsoft\Internet Explorer\iPSh.png
  • %UserProfile%\Local Settings\AppData\Microsoft\Windows\pguard.ini
  • %UserProfile%\Local Settings\AppData\Microsoft\Windows\services.exe

After the above steps have been completed, Live Security Suite no longer resides on your hard disk.

Registry Removal Procedures

Removal of files and folders alone is not sufficient to completely delete Live Security Suite. The following registry keys and settings should also be deleted for complete Live Security Suite removal:

  • HKEY_CURRENT_USER\Software\Live Security Suite
  • HKEY_LOCAL_MACHINE\SOFTWARE\Live Security Suite
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Live Security Suite_is1
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe
  • HKEY_CURRENT_USER\Software\Microsoft\FTP “SearchDir” = “C:\Program Files\Live Security Suite\”
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PrS” = “http://gen-avpay.com/choose/?productid=GENAV3&uid=0&machineid=c3f92274b4b15694ae2311bd2316c727″
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “uniname” = “Live Security Suite_is1″
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Live Security Suite”
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AVPath” = “\\.\root\SecurityCenter:AntiVirusProduct.instanceGuid=”{653E64F8-62B6-4F96-B22D-4FFC6E44130E}”"
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent “URLSS[2.0.3.0]“
  • CHANGE THESE KEYS TO 1:
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallDisableNotify” = “0″
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirstRunDisabled” = “0″
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “UpdatesDisableNotify” = “0″

Conclusion

Even though an inexperienced computer user may have full knowledge on how to remove Live Security Suite, it is not recommended that they attempt it as any mistake made during removal could cause damage to the system. Therefore inexperienced users are advised to make use of a web-based malware scanning/cleaning service such as www.onlinecomputerrepair.org or legitimate antivirus software such as Spyware Doctor with Antivirus to remove Live Security Suite.