Security Suite may arrived on a computer come bundled with another Trojan. On some cases, Security Suite virus is hosted on fake online virus scanner website and bogus multimedia website that pose as a needed program to be able to view online video. Either way, this rogue program can easily penetrate a computer. At the time of this writing it was learned that Security Suite virus remains undetected and hidden to legitimate security programs. Perhaps, in the coming days, an update will be released by anti-virus software manufacturer to include Security Suite on their definition file.
By this time, Security Suite have already entered on a number of computers and may function as legitimate antivirus application. It was purposely designed to pretend as a security program to attract users. Later, a bunch of viruses will be detected by its own scanner and prompt victims to remove the threats by purchasing the registered version of it. A redundant pop-up messages stating that computer is severely infected will never stop annoying users in an effort to convince them more. Ignore all of it and remove Security Suite malware immediately by following the procedures on this page.
| Type | Rogue |
| Sub-Type | FakeAV |
| Aliases | |
| OS Affected | Windows |
| Detected By | MalwareBytes |
What are the Symptoms of Security Suite Infection?
It will modify Windows Registry and add the following entries:
HKEY_CURRENT_USER\Software\Security Suite
HKEY_CURRENT_USER\Software\Security Suite
HKEY_LOCAL_MACHINE\SOFTWARE\SecSuitE
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter “Enabled” = “0″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = “”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1:5643″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyEnable” = “1″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random characters]”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random characters]”
The threat will drop the following malicious files:
%UserProfile%\Local Settings\Application Data\[random characters]\
%UserProfile%\Local Settings\Application Data\[random]\[random characters].exe
How to Remove Security Suite Malware Manually
1. Restart your computer in SafeMode
- After Power-On the computer, just before Windows start, press F8
- From the selections, Select SafeMode
2. Remove Registry entries that the threat added. You MUST BACKUP YOUR REGISTRY FIRST.
- Click Start > Run
- Type in the field, regedit
- Navigate and look for the registry entries mentioned above and delete if necessary
3. Delete malicious files that the threat added:
- Base on the given location above, browse and delete the file
- If no location is given, click Start>Search> and search for the files.
- If cannot be deleted, press Ctrl+Alt+Del to access Task Manager, see if the file is running in the process. If it is, select the file and click End Process. Perform file delete again.
4. Scan computer with Antivirus Program
- Update antivirus program
- Scan computer and delete all detected threats.
How to Easily Remove Security Suite Virus
1. Print this procedure as we need to close all programs running later.
2. Download AntiMalware Application here and save it to your Desktop.
3. Close all open applications.
4. Double-Click on the downloaded mbam-setup.exe to start the installation. If unable to execute, infections on computer is preventing it from running, rename the file mbam-setup.exe to anything (like myfile.exe)
5. Run the installation on the default settings. No changes are necessary.
6. Just before completing the installation, make sure that the following are marked check.
- Update the program
- Launch the program
7. The tool will run and update itself after installation. Close it after the update.
8. Restart your computer in SafeMode
- After Power-On the computer, just before Windows start, press F8
- From the selections, Select SafeMode
9. Click on the icon and start to Perform Full Scan to begin scanning your computer for malicious files.
10. After scanning, a message will appear stating that the scan is completed successfully. Click OK.
11. Click Show Results and detected threats will be displayed.
12. Make sure that all threats are marked check, then click Remove Selected to begin removal of the malicious files.
13. Exit AntiMalware Apps and restart your computer.
14. Security Suite Virus and all its files are now removed from your computer. To guard your computer from this threat and avoid future infections, you may want real-time protection from AntiMalware Apps.