How To Remove Live Security Platinum Malware (Fake Anti-Virus Scanner Scareware Information)

What is Live Security Platinum?

Live Security Platinum is a fake antivirus program (scareware) belonging to the Rogue:Win32/Winwebsec malware family that operates a fake virus scan which displays results indicating the computer is positive for various malware infections and offers the computer user to remove all infections or to continue using their computer unprotected. Live Security Platinum attempts to extort money by supplying unsuspected users with no actual antivirus program and collecting data.

Live Secuirty Platinum

The previous version of Live Security Platinum malware is called Smart Fortress 2012.

Smart Fortress 2012

What are symptoms and traits of Live Security Platinum?

  • Once installed, Live Security Platinum acts like it is scanning your computer for malicious software and displays fake malware categorized infections.
Live Secuirty Platinum
  • Bulk amounts of alert messages warning of fake infections and notifications appear. The image depicts how the fake antivirus responds to closing alert windows with another caution notification.
Live Security Platinum Alert Message
  • When browsing the internet your browser may displays fake security warnings that claim the website you are about to visit is not safe and may contain malicious code.
  • It may be impossible to run task manager, registry editor or even command prompt.
  • Modifies Windows host file and changes Window’s proxy settings.
  • Stays active in safe mode.
  • May lock computer systems similar to DNS Changer malware, sometimes instructing the computer user to pay nearly $90.00.
  • Can block antivirus software and utilities used to edit or delete malformed files.

What happens if Live Security Platinum is not removed?

I you don’t remove Live Security Platinum malware from your computer the malware may continue to operate and can be used to commit online banking and credit card schemes. Live Security Platinum can become bundled with TDSS rootkits, which will redirect Google search, and other search settings, or browser helper objects on internet browsers.

In some cases the computer system may not work at all, or may only boot to a “blue” screen before entirely shutting down.

How to remove Live Security Platinum Malware

To remove Live Security Platinum malware from your computer, real antivirus or antimalware software is suggested. It is still possible to install such programs if your computer is infected, even if your system is displaying a “blue” screen.

Malwarebytes is known to remove Live Security Platinum in free and paid software versions.
[Small_Button class=”lightblue”] Remove Malware [/Small_Button]  
Live Security Platinum Malwarebytes

We have detailed 3 separate removal options

1.     Enter your computer in “safe mode with network” and install anti-malware software. Proceed to scan, and remove Live Security Platinum.

1. Reboot your computer in “Safe Mode with Networking”.  As the computer is booting tap the “F8 key” continuously.Use your keyboard to navigate to “Safe Mode with Networking” and press Enter. Shown below.

Safe mode with networking
2. Go to the Start Menu. Select Control Panel → Add/Remove Programs.
If you are using Windows Vista or Windows 7, select Control Panel → Uninstall a Program.

3. Search for Live Security Platinum in the list. Select the program and click Remove button.
If you are using Windows Vista/7, click Uninstall up near the top of that window.

When it asks you to reboot, please do so. After the computer reboots and you are back at your Windows Desktop (Normal Mode), please continue with the next step.

4. We suggest to launch Internet Explorer and read on, you may use other internet browsers and skip to step 5. In Internet Explorer go to: Tools->Internet Options->Connections tab.
Click Lan Settings button and uncheck the checkbox labeled Use a proxy server for your LAN. Click OK.

LAN Tab

5. It is now recommended to download Malwarebytes and run a full system scan to remove Live Security Platinum from your computer.

2.     Recover or restore your computer to a date and time before infection using “Safe mode with command prompt”

How to recover or restore your computer in safe mode with command prompt

1. Restart/reboot your computer system. Unplug if necessary.

2. Enter your computer in “safe mode with command prompt”. To properly enter safe mode, after rebooting, press your computer’s “hot key” upon the boot menu. For instance, F8 – F11.

Safe mode with command prompt

3. Once the Command Prompt appears type “explorer” and hit Enter.

Comand Prompt Type Explorer

4. Once Windows Explorer shows up browse to:

Win XP: C:\windows\system32\restore\rstrui.exe and press Enter

Win Vista/Seven: C:\windows\system32\rstrui.exe and press Enter
System32 rstrui
5. Follow all steps to restore or recover your computer system to an earlier time and date, before infection.

3.     Manually delete directory files and registry values associated with Live Security Platinum.

After manually deleting file associated with Live Security Platinum, running a malware scan is still suggested because the virus may change its associated files or evolve into new malware.

Live Platinum Security installs into App Data, which is a hidden Windows file. To learn how to access hidden Windows files, click here.

Live Security Platinum directory files and registry values:

Directory files:

Windows XP:

  • C:\Documents and Settings\All Users\Application Data\[SET OF RANDOM CHARACTERS]\
  • %UserProfile%\Desktop\Live Security Platinum.lnk
  • %UserProfile%\Start Menu\Programs\Live Security Platinum\
  • %UserProfile%\Start Menu\Programs\Live Security Platinum\Live Security Platinum.lnk

Windows Vista/7:

  • C:\ProgramData\[SET OF RANDOM CHARACTERS]\
  • %UserProfile%\Desktop\Live Security Platinum.lnk
  • %UserProfile%\Start Menu\Programs\Live Security Platinum\
  • %UserProfile%\Start Menu\Programs\Live Security Platinum\Live Security Platinum.lnk

Registry values:

 

  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce “[SET OF RANDOM CHARACTERS]”
  • HKEY_CURRENT_USER\software\Microsoft\Windows\CurrentVersion\Uninstall\Live Security Platinum

 

Sean Doyle

Sean is a distinguished tech author and entrepreneur with over 20 years of extensive experience in cybersecurity, privacy, malware, Google Analytics, online marketing, and various other tech domains. His expertise and contributions to the industry have been recognized in numerous esteemed publications. Sean is widely acclaimed for his sharp intellect and innovative insights, solidifying his reputation as a leading figure in the tech community. His work not only advances the field but also helps businesses and individuals navigate the complexities of the digital world.

3 Responses

  1. September 20, 2012

    […] FakeAVRemovals, BotCrawl, MalwareTips Tagged with: fake av , HitmanPro , Live Security Platinum , malware , Malwarebytes , […]

  2. October 3, 2012

    […] How To Remove Live Security Platinum Malware (Fake Antivirus …Jul 8, 2012 … Live Security Platinum is a fake antivirus program (scareware) … work at all, or may only boot to a “blue” screen before entirely shutting down. […]

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.