05 Jul 2010

Removing “AV Security Suite” Virus

Tech Tips No Comments

Did you get hit with the “AV Security Suite” virus? Read on, I’ll tell you how to get rid of it…

I’m a software developer, very computer savvy, and never do anything foolish online to expose my computer to possible risks.  I don’t run any anti-virus software, because I don’t want anything slowing down my computer while I work, and I’m pretty confident that I can get rid of anything that comes along.  And my track record shows that I’ve never got any viruses before today.  But this morning I got hit with a pretty awful one that I think most people would have quite a time removing – so I thought I would write about it here, if you need help.

The “AV Security Suite” trojan-horse virus will basically lock up your computer, not allow you to open any applications, and keep popping up windows saying that your computer is infected with a virus, and that you need to run a security scan to clean it.  Then they offer you to run the scan, or purchase their “anti-virus” software.  The screen that pops up will look like this:

You will not be able to open task manager to stop the process from running, as it blocks any application from running (including task manager).  The only programs it allows to run is Internet Explorer (iexplore.exe) and Firefox (firefox.exe).  So in order to remove the virus, here’s what needs to be done:

  1. The process associated with AV Security Suite must be stopped.
  2. Files & registry entries associated with the virus must be removed.

Here’s how I did it:

  • reboot the computer in safe mode (press F8 a few times before Windows loads)
  • as soon as you’re in Windows, press Ctrl+Alt+Del to open Task Manager.  Click the “Processes” tab, find “eaeujrwtssd.exe”, click it, then click “End Process”.
  • download & install MalwareBytes Anti-Malware program.  Here’s the link:  http://www.malwarebytes.org/ (click the free version download).  Once it’s installed, run the Quick scan.  It should find the infected registry values & files.  Tell the program to delete (quarantine) the files after the scan, then reboot your computer.

That should take care of it!

If the above process doesn’t work, I found a much more detailed description on how to get rid of it at this link:  http://www.virusremovalguru.com/?p=6257

Did you get this virus?  Did you get rid of it successfully?  Let me know by commenting below!

 

No Responses to “Removing “AV Security Suite” Virus”

Leave a Reply