AV Security Suite Platinum

AV Security Suite Platinum Description

AV Security Suite Platinum is a clone of the rogue anti-spyware called AV Security Suite. AV Security Suite Platinum is Trojan based rogueware that uses scare tactics to coerce users into paying for its non-existent 'full version'. On entering a system, AV Security Suite Platinum will create a start-up registry entry and modify the internet settings. AV Security Suite Platinum will also display fake scanners, security alerts and pop-ups to convince a user that the system is infected with numerous malware. Do not believe any of the security notifications displayed by AV Security Suite Platinum. AV Security Suite Platinum is a criminal application that should be removed upon detection.

Technical Information

File System Details

AV Security Suite Platinum creates the following file(s):
# File Name Detection Count
1 %UserProfile%\Local Settings\Application Data\\.exe N/A
2 %UserProfile%\Local Settings\Application Data\\ N/A

Registry Details

AV Security Suite Platinum creates the following registry entry or registry entries:
Registry key
HKEY_LOCAL_MACHINE\SOFTWARE\avsoft
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter "Enabled" = "0"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = ".exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ""
HKEY_CURRENT_USER\Software\avsuite
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyServer" = "http=127.0.0.1:1041"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ""
HKEY_CURRENT_USER\Software\avsoft
HKEY_LOCAL_MACHINE\SOFTWARE\avsuite
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyOverride" = ""
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "ProxyEnable" = "1"