Home > Rogue > Advanced Defender

Advanced Defender

February 9th, 2010 Leave a comment Go to comments

What is Advanced Defender?

Advanced Defender is another fake computer security tool that will provide numerous fake scan results on victims computer and alerts them on potential security risks. Advanced Defender can penetrate a computer unknown to users by utilizing Trojan and fake security websites. Usual mistake undertaken by innocent users is executing prompts from malicious websites that may lead to download and installation of rogue programs like Advanced Defender. This unwanted program will exhibit a number of alerts that will redirect users Internet browser to a payment processing website recommending a purchase of Advanced Defender activation key and serial number to remove virus and protect computer from future infections.

Type	Rogue
Sub-Type	FakeAV
Aliases
OS Affected	Windows
Detected By	MalwareBytes

What are the Symptoms of Advanced Defender Infection?

Advanced Defender Screenshot Image

Virus scan will be run by and alarms users of possible threat to persuade them into obtaining the Advanced Defender registration, activation key and serial number.

It will modify Windows Registry and add the following entries:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Run “advanceddefender”
HKEY_LOCAL_MACHINE\SOFTWARE\Advanced Defender
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Uninstall\Advanced Defender
HKEY_CURRENT_USER\Software\Microsoft\Windows\Current Version\Policies\System “DisableTaskMgr” = “1″

Advanced Defender threat will drop the following malicious files:

c:\Program Files\Advanced Defender
c:\Program Files\Advanced Defender\advanceddefender.exe
c:\Program Files\Advanced Defender\base.wdb
c:\Program Files\Advanced Defender\baseadd.wdb
c:\Program Files\Advanced Defender\conf.wcf
c:\Program Files\Advanced Defender\quarant.wdb
c:\Program Files\Advanced Defender\q
c:\Documents and Settings\All Users\Microsoft PData
c:\Documents and Settings\All Users\Microsoft PData\track.wid
%UserProfile%\Desktop\Advanced Defender.lnk
%UserProfile%\Start Menu\Programs\Advanced Defender
%UserProfile%\Start Menu\Programs\Advanced Defender\Advanced Defender.lnk
c:\WINDOWS\certofsystem.exe
c:\WINDOWS\explorers.exe
c:\WINDOWS\microsoftdefend.dll
c:\WINDOWS\regp.exe
c:\WINDOWS\secureit.com
c:\WINDOWS\spoos.exe
c:\WINDOWS\system32\winscent.exe

Automatic Removal of Advanced Defender

1. Download and run MalwareBytes AntiMalware to remove Advanced Defender

Categories: Rogue Tags: Advanced Defender Malware, Advanced Defender Virus, How to remove Advanced Defender

Comments (0) Trackbacks (0) Leave a comment Trackback

No comments yet.

No trackbacks yet.

Security Antivirus Trojan-BNK.Win32.Keylogger.gen

Advanced Defender

What is Advanced Defender?

What are the Symptoms of Advanced Defender Infection?

Automatic Removal of Advanced Defender

Quick Info on Advanced Defender

Recent Posts

Recent Comments

Advanced Defender

What is Advanced Defender?

What are the Symptoms of Advanced Defender Infection?

Automatic Removal of Advanced Defender

Quick Info on Advanced Defender

Recent Posts

Recent Comments

Tag Cloud