How to remove Volcano Security Suite rogue anti-spyware

Malware Description:
Volcano Security Suite is a direct follower and clone of the following rogue anti-spyware programs: Windows System Defender, Windows Protection Suite, Windows Security Suite and many more badwares referring to the same notorious family. By its nature and basic traits, Volcano Security Suite is typical fake antivirus, which means it hacks into your computer without authorization and demands a license payment in exchange for some odd security services. It’s too bad those ‘services’ include removing non-existent infections that never were on your computer in fact. As you might have figured out, Volcano Security Suite displays false claims about the purported detection of malware entities in order to scare you into thinking you’ve got a badly contaminated PC. The hypocritical Volcano Security Suite vendors probably believe it’s easier to manipulate a frightened hence confused person. Volcano Security Suite suggests its own cure for depriving your machine of the allegedly exposed threats – its commercial software that will sort of do the entire cleaning job for you. Well, you should believe none of the promises Volcano Security Suite makes. This program is rogue and absolutely dangerous for your system stability and for the issues of your own privacy. So remove Volcano Security Suite as soon as you realize its being on your PC without your approval.

Malware Type: Rogue Anti-Spyware

Malware Author: Unknown

Threat Level: Critical

Advice: Immediately remove and scan for additional malware

Volcano Security Suite Free Scanner and Remover: Download Now

Volcano Security Suite Screenshot:

Volcano Security Suite

How to remove Volcano Security Suite manually:
Manual removal of Volcano Security Suite is a feasible objective if you have sufficient expertise in dealing with program files, processes, .dll files and registry entries.

The files to be deleted are listed below:

  • %Documents and Settings%\All Users\Application Data\61a60
  • %Documents and Settings%\All Users\Application Data\61a60\VS83b.exe
  • %Documents and Settings%\All Users\Application Data\VSSSys
  • %Documents and Settings%\All Users\Application Data\VSSSys\vss.cfg
  • %Program Files%\Mozilla Firefox\searchplugins\search.xml
  • %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Volcano Security Suite.lnk
  • %UserProfile%\Application Data\Volcano Security Suite
  • %UserProfile%\Application Data\Volcano Security Suite\cookies.sqlite
  • %UserProfile%\Desktop\Volcano Security Suite.lnk
  • %UserProfile%\Recent\ANTIGEN.sys
  • %UserProfile%\Recent\cb.dll
  • %UserProfile%\Recent\cb.tmp
  • %UserProfile%\Recent\CLSV.tmp
  • %UserProfile%\Recent\DBOLE.sys
  • %UserProfile%\Recent\ddv.dll
  • %UserProfile%\Recent\eb.tmp
  • %UserProfile%\Recent\fan.drv
  • %UserProfile%\Recent\FS.drv
  • %UserProfile%\Recent\kernel32.drv
  • %UserProfile%\Recent\PE.drv
  • %UserProfile%\Recent\ppal.sys
  • %UserProfile%\Recent\runddlkey.dll
  • %UserProfile%\Recent\runddlkey.drv
  • %UserProfile%\Recent\tempdoc.sys
  • %UserProfile%\Start Menu\Volcano Security Suite.lnk
  • %UserProfile%\Start Menu\Programs\Volcano Security Suite.lnk
  • %Temp%\24.mof
  • %Temp%\asp2009.exe
  • %Temp%\mozcrt19.dll
  • %Temp%\sqlite3.dll
  • %Temp%\VSSSys
  • %Temp%\VSS.ico
  • %Temp%\VSSSys\vd952342.bd

The registry entries that need to be removed are as follows:

  • HKEY_CLASSES_ROOT\asp2009.DocHostUIHandler
  • HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
  • HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://search-gala.com/?&uid=8000&q={searchTerms}”
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “[xSP_2:61a6083b6194a2314e3dd54cf9615e36_8000]“
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “7988094803″
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “avgsys”
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “MSMSGS”

Please, be aware that manual removal of Volcano Security Suite is a cumbersome process and does not always ensure complete deletion of the malware, due to the fact that some files might be hidden or may get reanimated automatically afterwards. Moreover, manual interference of this kind may cause damage to the system. That’s why we strongly recommend automatic removal of Volcano Security Suite, which will save your time and enable avoiding any system malfunctions and guarantee the needed result.

Download Volcano Security Suite Remover

Like This Article? Let Others Know!

Post a Comment: