Description: Antivirus Suite is a rogue security software application cloned from Antivirus Soft that tries to trick users into purchasing its license by using scare tactics. This client gets installed on a user’s system via Trojan viruses that get downloaded through bogus websites which claim to have security scanners and along with fake video codec packs. Once installed, the malware disables all security software present on the system, and proceeds to load at startup. It then performs fake security scans on the system, returning false results that claim that the computer is severely infected with malicious software. It also displays a large number of fake pop-ups from the Windows taskbar, which warn the user of potential ‘threats’ to the computer. Antivirus Suite also installs a proxy server configuration on Internet Explorer which always redirects the user to the website of Antivirus Suite whenever they attempt to browse the internet. Meanwhile, Antivirus Suite constantly requests the user to purchase the ‘full’ version of the software, claiming that the currently installed ‘trial’ version of Antivirus Suite is insufficient to completely clean the system. However, it is important to note that Antivirus Suite is a fake application and therefore its so-called ‘full’ version is just as incapable of scanning or cleaning any system as the ‘trial’ version.
Antivirus Suite
» Download Antivirus Suite Removal Software
As soon as you find a copy of this malicious program on your system, you should take steps to immediately remove Antivirus Suite. For Antivirus Suite removal, it is necessary to stop processes, delete files and folders and remove registry entries.
Antivirus Suite Manual Removal Procedures
The first step you must take in order to delete Antivirus Suite is to stop the following process:
- [random characters]tssd.exe
The next step in Antivirus Suite removal is to delete the following files and folders:
- %UserProfile%\Local Settings\Application Data\[random characters]\
- %UserProfile%\Local Settings\Application Data\[random characters]\[random characters]tssd.exe
Antivirus Suite Registry Removal Proedures
Removing files and folders is not enough to ensure complete Antivirus Suite removal. To completely remove Antivirus Suite, you need to delete the following keys and settings from the Windows Registry:
- HKEY_CURRENT_USER\Software\avsuite
- HKEY_LOCAL_MACHINE\SOFTWARE\avsuite
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = "
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = "http=127.0.0.1:5555"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = ".exe"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = "1"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "<random>"
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "<random>"
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "CheckExeSignatures" = "no"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyEnable" = "1"
Antivirus Suite Directories:
- %UserProfile%\Local Settings\Application Data\[random characters]\
Outside Resources:
http://www.bleepingcomputer.com/virus-removal/remove-antivirus-suite
Speak Your Mind