AV Security Suite

Remove AV Security Suite virus by following the guide on this post. Download essential tools and removers to eliminate this malware from an infected computer.

AV Security Suite is a bogus anti-virus application that arises as the successor to widely-spread Antispyware Soft. To gain user’s confidence, the program used to detect an estimated number of threats familiarly issued by other variants. Intimidating victims is its major fashion to attract attention and promote itself as legitimate protection software.

AV Security Suite virus extends infection while facilitating strength of Trojan. This threat was designed to break its way by abusing software vulnerabilities and install itself without user’s acquaintance. If AV Security Suite manages to gain spot on the computer, timely revision is implemented to system settings confidently allowing the rogue software to run on its own when Windows is started. Once functional, it attempts to convince computer users to procure AV Security Suite activation key committing that it will stop annoyances and other unpleasant activities happening on the compromised computer. What’s more, AV Security suite it also excessively displays simulated warning alert messages talking about presence of various security risks. The phony application repeatedly tries to mislead users into getting the full version generating random messages like:

This website has been reported as unsafe
We recommend that you do not continue to this website. This website has been reported to Microsoft for containing threats to your computer that might reveal personal or financial information.

Spyware Alert
Application infected! The file rundll32.exe is infected. Do you want to ALLOW this application now?

Pay no attention to above mentioned warnings. At this point, it is vital to remove AV Security Suite virus immediately. Any instance of this or presence of Trojan that tries to redirect web browser to its own website must be dealt at once. Otherwise, this unwanted program will link-up to a remote server and pull down additional threats. Use only legitimate anti-malware application to take out this malicious software out of the system.

Screenshot Image of AV Security Suite:

AV Security Suite

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Vista

Technical Details and Additional Information:

Malware Behavior

Warning messages coming from Windows taskbar will pop-up stating that computer is being attacked. This is AV Security Suite’s tactics to mislead its victims.

To prevent itself from being removed from a computer, AV Security Suite will block applications particularly security software. It will display an error when a program is executed such as:

Windows Security alert
Windows reports that computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the scan your computer. Your system might be at risk now.

Antivirus software alert
Infiltration Alert
Your computer is being attacked by an internet virus. It could be a password-stealing attack, a trojan-dropper or similar.

What comes with AV Security Suite is a Trojan that has a main goal of redirecting Internet traffic to payment processing page. While this rogue program exists on the system, it constantly attempts to force victim to purchase the registration key. In addition, pop-up alerts, warning messages and even scan result will point user to this transaction page at antivirback.com and antivirback.net.

Web site of AV Security Suite

How to Remove AV Security Suite

Step 1 : Remove AV Security Suite with this recommended tool

First thing you should do is reboot the computer in Safe Mode with Networking to avoid AV Security Suite from loading at start-up.

NOTE: You will need to PRINT or BOOKMARK this procedure, as we have to restart the computer during the removal process.

To start Windows in Safe Mode with Networking, please do the following:

1. Remove all media such as floppy drive, cd, dvd, and USB devices. Then, restart the computer.

Boot in Safe Mode on Windows XP, Windows Vista, and Windows 7 system
a) Before Windows begins to load, press F8 on your keyboard.
b) It will display the Advanced Boot Options menu. Select Safe Mode.

Start computer in Safe Mode using Windows 8
a) Before Windows begins to load, press Shift and F8 on your keyboard.
b) On Recovery interface, click on 'See advanced repair options'.
c) Next, click on Troubleshoot option.
d) Then, select Advanced options from the list.
e) Lastly, please choose Windows Startup Settings and click on Restart. When Windows restarts, you will be send to a familiar Advanced Boot Options screen.
f) Select Safe Mode from the selections menu.

Safe Mode

2. Once the computer boots into Safe Mode, download the Removal Tool and save it on your Desktop or any location on your PC.

Download Tool

3. When finished downloading, locate and double-click on the file to install the application. Windows' User Account Control will prompt at this point, please click Yes to continue installing the program.
4. Follow the prompts and install with default configuration.
5. Before the installation completes, check prompts that software will run and update on itself.
6. Click Finish. Program will run automatically and you will be prompted to update the program before doing a scan. Please download needed update.
7. When finished updating, the tool will run. Select Perform full scan on main screen to check your computer thoroughly.
8. Scanning may take a while. When done, click on Show Results.
9. Make sure that all detected threats are checked, click on Remove Selected. This will delete all files and registry entries that belongs to AV Security Suite.
10. Finally, restart your computer.

Note: If AV Security Suite prevents mbam-setup.exe from downloading. Download the software from another computer. Renaming it to something like 'anything.exe' can help elude the malware.

Step 2 : Ensure that no more files of AV Security Suite are left inside the computer

1. Click on the button below to download Norton Power Eraser from official web site. Save it to your desktop or any location of your choice.

NPE Download

2. Once the file is downloaded, navigate to its location and double-click on the icon (NPE.exe) to launch the program.
3. Norton Power Eraser will run. If it prompts for End User License Agreement, please click on Accept.
4. On NPE main window, click on Advanced. We will attempt to remove AV Security Suite components without restarting the computer.

Advance Scan

5. On next window, select System Scan and click on Scan now to perform standard scan on your computer.

Scan the System

6. NPE will proceed with the scan. It will search for Trojans, viruses, and malware like AV Security Suite. This may take some time, depending on the number of files currently stored on the computer.

7. When scan is complete. All detected risks are listed. Remove them and restart Windows if necessary.

Step 3 : Remove the Rootkit Trojan that installs AV Security Suite

For automatic removal of rootkit Trojan using a free tool, you can refer to this guide. Download the tool and carefully follow the instruction.

1. Click on the button below to download the file FixZeroAccess.exe from official web site. A new window or tab will open containing the download link.

ZeroAccess Fix Tool

2. Close all running programs and remove any disc drives and USB devices on the computer.
3. Browse for the location of the file FixZeroAccess.exe.
4. Double-click on the file to run it. If User Account Control prompts for a security warning and ask if you want to run the file, please choose Run.
5. It will open a Zero Access Fix Tool End User License Agreement (EULA). You must accept this license agreement in order to proceed with rootkit removal. Please click I Accept.

6. It will display a message and prepares the computer to restart. Please click on Proceed.

FixTool

7. When it shows a message about 'Restarting System' please click on OK button.
8. After restarting the computer, the tool will display information about the identified threats. Please continue running the tool by following the prompts.
9. When it reaches the final step, the tool will show the scan result containing deleted components of AV Security Suite and other identified virus.

Alternative Removal Procedures for AV Security Suite

Option 1 : Use Windows System Restore to return Windows to previous state

During an infection, AV Security Suite drops various files and registry entries. The threat intentionally hides system files by setting options in the registry. With these rigid changes, the best solution is to return Windows to previous working state is through System Restore.

To verify if System Restore is active on your computer, please follow the instructions below to access this feature.

Access System Restore on Windows XP, Windows Vista, and Windows 7

a) Go to Start Menu, then under 'Run' or 'Search Program and Files' field, type rstrui.
b) Then, press Enter on the keyboard to open System Restore Settings.

rstrui-win7

Open System Restore on Windows 8

a) Hover your mouse cursor to the lower left corner of the screen and wait for the Start icon to appear.
b) Right-click on the icon and select Run from the list. This will open a Run dialog box.
c) Type rstrui on the 'Open' field and click on OK to initiate the command.

rstrui-win8

If previous restore point is saved, you may proceed with Windows System Restore. Click here to see the full procedure.

Option 2 : AV Security Suite manual uninstall guide

IMPORTANT! Manual removal of AV Security Suite requires technical skills. Deleting system files and registry entries by mistake may result to total disability of Windows system. We advise you to perform a backup of registry before proceeding with this guide.

1. Kill any running process that belongs to AV Security Suite.
- Press Ctrl+Alt+Del on your keyboard to access Task Manager.
- When Windows Task Manager appears, look for AV Security Suite files (refer to Technical Reference) and click End Process or End Task.

End Task

2. Delete all registry entries that belong to this malware.
- Press [Windows Key]+R on your keyboard.
- In the 'Open' dialog box, type regedit and press Enter. This will open registry editor.
- Find and delete registry entries as mentioned in Technical Reference section.
- Close registry editor. Changes made will be saved automatically.

Run Regedit

3. Scan the computer with antivirus program.
- Connect to Internet and open your antivirus software. Please update to obtain the latest database and necessary files.
- Restart the computer in Safe Mode.

Boot in Safe Mode on Windows XP, Windows Vista, and Windows 7 system
a) Before Windows begins to load, press F8 on your keyboard.

Start computer in Safe Mode using Windows 8
a) Before Windows begins to load, press Shift and F8 on your keyboard.
b) On Recovery interface, click on 'See advanced repair options'.
c) Next, click on Troubleshoot option.
d) Then, select Advanced options from the list.
e) Lastly, please choose Windows Startup Settings and click on Restart. When Windows restarts, you will be send to a familiar Advanced Boot Options screen.

- When you see Advanced Boot Options or Windows Advanced Options menu. Select Safe Mode.
- Windows will now start in Safe Mode. It runs on minimal set of drivers so expect your desktop to load a low-resolution display.

Safe Mode

- Thoroughly scan the computer with your updated antivirus software. Delete and clean all files that are infected with AV Security Suite

4. Delete all files dropped by AV Security Suite.
- While still in Safe Mode, search and delete malicious files. Please refer to 'Technical Reference'. Make sure that you execute 'End Task' first before deleting the file. Otherwise, the system will not let you perform this action.

Technical Reference

Associated Files and Folders:
File Location for Windows Versions:
  • %UserProfile% for Vista/7 user is C:\Users\<Current User> for Windows Vista/7, for Windows XP/2000 this is C:\Documents and Settings\<Current User>.
Added Registry Entries:

Troubleshooting Guides

Did AV Security Suite blocks your Internet access?

It is usual that rogue program prevents user from downloading removal tools from the Internet. Thus, infected computer may be denied to access the Internet by making changes to computer's proxy, DNS, and Hosts file. To fix Internet connection problem, follow these steps:

1. Download the free program called MiniToolBox. Click the button below to begin. Save the file on your hard drive or preferably in your Desktop.

MiniToolBox

2. Close all running Internet browser and double-click on the file to run. It opens a window showing a list of features.
3. Make sure that you have a check mark on the following items : Flush DNS, Reset IE Proxy Settings, and Reset FF Proxy Settings.

MiniToolBox

4. Click on the GO button to start the process. The program automatically closes and displays a text file for your reference.

5. If the above solution does not work, you may try other method like fixing a virus-blocked Internet access. Make sure that your hosts file is free from any malicious entries. View steps in cleaning Windows host file.

Ways to Prevent AV Security Suite Infection

Here are some guidelines to help defend your computer from virus attack and malware activities. Being fully protected does not have to be expensive.

Install protection software to block AV Security Suite and other threats

Having an effective anti-malware program is the best way to guard your computer against malware and threats. Although full version of anti-malware will cost some penny to obtain, it is still worthy to buy one. With real-time scan, it will be safer for you to browse the web, download files, and do more things online.

Get Protection Software

Keep all programs up to date

It is important to download critical update for installed programs. Software updates includes patches for security flaw that may utilize by an attacker to enter the computer. This flaw may be taken advantage by AV Security Suite, viruses, and malware to attack the computer. Crucial programs to watch for updates are MS Windows, MS Office, Adobe Flash, Adobe Acrobat, and Java Runtime.

Activate security features of your Internet browser

SmartScreen Filter, Phishing and Malware Protection, and Block Attack Sites are the respective security features of Internet Explorer, Google Chrome, and Mozilla Firefox. Although, it may not fully guard your computer from online attack, at least it can lessen the risk. Enabling these features also helps to secure your private data and avoid identity theft.


Be a responsible Internet user

Antivirus programs and security features of Internet browser facilitates real-time protection and monitors harmful activities online. However, it tends to malfunction for some reasons. Thus, you do not have to be fully dependent on these tools. It is always best to practice safety measures when using the Internet.