Click on screenshot to zoom
Danger level 10
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Installs itself without permissions
  • Connects to the internet without permission
  • Shows commercial adverts
  • Slow internet connection
  • Slow Computer
Other mutations known as:

Antivirus Suite

Antivirus Suite is a rogue antispyware application. It pretends to be a legitimate security program to trick unsuspecting users into buying the worthless program. Previous versions of this rogue are Antivirus Soft, Antispyware Soft and the like. Most of the time Antvirus Suite enters the system via Trojan infections, fake online malware scanners and fake online video codecs. Also, it usually does not come alone – Antivirus Suite can be bundled with other malware. This means that the user must always keep his security programs up to date, and if he has been infected with Antivirus Suite, he must also check for other infection in the computer as well.

This rogue has been created with intention to rip the users off, and in order to do that it tries to present itself as legitimate antivirus application, to gain the user’s trust. First of all, it sends fake security warnings, which should be ignored. For example:

Windows Security alert
Windows reports that computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the scan you computer. Your system might be at risk now.

Windows Security Alert
Application cannot be executed. The file cmd.exe is infected. Do you want to active your antivirus software now?

Antivirus software alert
Infiltration Alert
Your computer is being attacked by an internet virus. It could be a password-stealing attack, a trojan - dropper or similar.

Details
Attack from: ip address, port 39096
Attacked Port: 30516
Threat: Win32/Nuqel.E

From the messages it is obvious that Antivirus Suite blocks some .exe files from running, hoping that it will convince or at least scare the user into buying the full version of the rogue. The messages are coupled with the fake system scan, which shows the name, status and the location of the malware “detected” in the computer. All of that is fake, and the user needs to remove Antivirus Suite from his computer before the rogue caused the complete crash of the system.

Paying for Antivirus Suite would only reveal the user’s banking information to the third parties and as a result his bank account would be swept clean by the hackers. So purchasing the license for the rogue is not an option. If the user does not know exactly how his system is functioning it is recommended to acquire a reliable antimalware detector, which will remove Antivirus Suite automatically.

Download Spyware Removal Tool to Remove* Antivirus Suite
  • Quick & tested solution for Antivirus Suite removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove Antivirus Suite

Files associated with infection (Antivirus Suite):

mrkkuvktssd.exe
wvhstoctssd.exe
cbrqicitssd.exe
bqspgwktssd.exe
wciicaptssd.exe
ssxxujhtssd.exe
gdtrmiptssd.exe
bpjrjntssd.exe
bwggrfdtssd.exe

Processes to kill (Antivirus Suite):

mrkkuvktssd.exe
wvhstoctssd.exe
cbrqicitssd.exe
bqspgwktssd.exe
wciicaptssd.exe
ssxxujhtssd.exe
gdtrmiptssd.exe
bpjrjntssd.exe
bwggrfdtssd.exe

Remove registry entries (Antivirus Suite):

HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN gyrmsrri
Disclaimer

Comments

  1. Doug S. Apr 6, 2010

    None of the options that these sites give4 me seem to fix killing it off of a different computer. Anti Virus Suite completely locked down my computer so I'm using someone else's. Is there a way to get these solutions on a CD?

  2. Your mom Apr 6, 2010

    Wao

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.