New Trojan Malicious Activities Detected on SystemDefender Installation

SystemDefender is an older rogue anti-spyware application installed by a malicious Trojan that we discovered to perform rather malicious activities during the installation of SystemDefender. Once the installation of SystemDefender starts it creates hidden files which are executed to perform malicious activities in the background. The activities range from not allowing you to open legitimate programs to disabling your task manager. The Trojan that installs SystemDefender has yet to be specifically identified but we do know that is performs among some of the worst activities that a computer infection can perform.

The following symptoms occurred upon SystemDefender installation:

• Shows "VIRUS ALERT!" text on the system tray next to the clock.
  
• Does not let you open any programs.
  
• The trojan creates a new hidden User on the computer which executes malicious activities in the background.
• The hidden User overwrites the privileges of the current User which allows the hidden User to limit or disable the User's task manager, regedit, control panel and other system functions.
  
• The trojan hides all the the drives found under "My Computer"; C: drive is no longer visible.
  

Not only is the SystemDefender program dangerous, but the Trojan infection that installs it is very treacherous in that it can take over certain functions of your computer. SystemDefender is known to steal personal information by routing it to a remote user where it posses a serious risk to your stored data and personal identity.

The Trojan that installs SystemDefender is known to keep you from using spyware tools that will remove SystemDefender. We are currently analyzing the Trojan infection that is causing this havoc. Once identified, we can better understand a complete removal process for this Trojan infection. In the mean time SystemDefender can be removed by use of the Remove SystemDefender link found on this website.