AV Security Essentials

AV Security Essentials Description

Type: Rogue Anti-Virus Program

ScreenshotAccording to ESG security researchers, AV Security Essentials is a fake anti-virus program. These kinds of fake security programs are part of a well-known online scam and are known as rogue anti-viruses or rogue anti-malware applications. There are several kinds of rogue anti-virus programs, but their scam is always essentially a variation on the same theme; these fake security programs pretend to be legitimate anti-malware applications in order to convince their victim to purchase a useless 'full version' of the rogue anti-virus program in question.

AV Security Essentials is another variant of the FakeScanti family. Among its clones are Security Guard, Sysinternals Antivirus, Wireshark Antivirus, Milestone Antivirus, BlueFlare Antivirus, WolfRam AntiVirus, OpenCloud Antivirus, OpenCloud Security, Data Restore, OpenCloud AV, Security Guard 2012, AV Guard Online, Guard Online, Cloud Protection, AV Protection Online, System Protection 2012, AV Security 2012, Sphere Security 2012, AV Protection 2011, Super AV 2013.

How far these programs go in order to convince their victim depends entirely on the version of this malware threat that has invaded the victim's computer system. While some rogue anti-virus programs limit themselves to displaying fake error messages and an alarming (and, of course, completely false) system scan, other fake security programs go as far as to cause various problems on the victim's computer system deliberately. AV Security Essentials belongs to this second category of rogue anti-virus programs, which makes its removal extremely important. ESG security researchers advise ignoring all warnings and error messages that AV Security Essentials displays and treating AV Security Essentials as a hostile presence on your computer system. AV Security Essentials is part of a dangerous Trojan infection which should be removed with a reliable anti-malware application.

Symptoms and Problems Associated with an AV Security Essentials Infection

As was mentioned above, the main symptom associated with most rogue anti-virus programs is a constant barrage of fake error messages and system alerts, as well as a fake scan of the victim's hard drive that will usually start up when the victim starts up Windows. However, AV Security Essentials goes as far as to cause other problems on the victim's computer in an attempt to convince the victim that his/her computer is severely infected with multiple viruses that only AV Security Essentials can remove. Symptoms associated with AV Security Essentials include the following:

  • AV Security Essentials has the capacity to affect a victim's files, setting their status as hidden in order to convince the victim that they have been deleted (in fact, they are still in their regular location but simply do not show up when the victim opens their respective folder).
  • AV Security Essentials also blocks access to the Internet and to various applications, particularly those linked to computer security and that may become a threat to the host of Trojans and malicious scripts behind an AV Security Essentials infection.
  • The presence of AV Security Essentials on a computer system will often cause the infected computer to run slowly, crash frequently and behave erratically.

Technical Information

Screenshots & Other Imagery

AV Security Essentials Video

Tip: Turn your sound ON and watch the video in Full Screen mode.

File System Details

AV Security Essentials creates the following file(s):
# File Name MD5 Detection Count
1 AV3aa.exe 590383bd76227630622f969299f36860 4
2 %AppData%\AV Security Essentials\ScanDisk_.exe N/A
3 %CommonAppData%\[RANDOM]\[RANDOM].exe N/A
4 %StartMenu%\AV Security Essentials.lnk N/A
5 %AppData%\AV Security Essentials\Instructions.ini N/A
6 %CommonAppData%\[RANDOM]\[RANDOM].cfg N/A
7 %Desktop%\AV Security Essentials.lnk N/A
8 %CommonAppData%\[RANDOM]\ASE.ico N/A
9 %Programs%\AV Security Essentials.lnk N/A
10 %AppData%\Microsoft\Internet Explorer\Quick Launch\AV Security Essentials.lnk N/A

Registry Details

AV Security Essentials creates the following registry entry or registry entries:
%AppData%\AV Security Essentials
File name without path
AV Security Essentials.lnk
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AV Security Essentials = "%AllUsersProfile%\Application Data\78b634\AV83d_9025.exe" /s /d
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun = 01000000
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AV Security Essentials" "%CommonAppData%\[RANDOM]\[RANDOM].exe" /s /d
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\[RANDOM].exe\Debugger = svchost.exe

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.