Home Malware Programs Rogue Anti-Spyware Programs Antimalware Defender

Antimalware Defender

Posted: February 2, 2010

Antimalware Defender is a rogue anti-spyware program designed to pilfer money from hapless Internet users. Antimalware Defender uses the Windows interface to con users into believing its blatant lies. Antimalware Defender will produce fake system scan results to scare the unwary computer user into purchasing useless software. Antimalware Defender will not remove any alleged threats from your PC, because there really were none to begin with. Do not become another victim of a cyber scams and have Antimalware Defender removed with reliable anti-spyware software.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %UserProfile%\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.avi
    2 %UserProfile%\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.ico
    3 %UserProfile%\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.mkv
    4 %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Antimalware Defender.lnk
    5 %UserProfile%\Desktop\Antimalware Defender.lnk
    6 %UserProfile%\Local Settings\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.avi
    7 %UserProfile%\Local Settings\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.ico
    8 %UserProfile%\Local Settings\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.mkv
    9 %UserProfile%\Start Menu\Programs\Antimalware Defender\Antimalware Defender.lnk
    10 %UserProfile%\Start Menu\Programs\Startup\ca84c702-c758-4421-974e-b02662e76d7c_6.lnk
    11 c:\Documents and Settings\All Users\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.avi
    12 c:\Documents and Settings\All Users\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.ico
    13 c:\Documents and Settings\All Users\Application Data\ca84c702-c758-4421-974e-b02662e76d7c_6.mkv
    14 c:\Documents and Settings\All Users\Start Menu\Programs\Antimalware Defender\Antimalware Defender.lnk
    15 c:\Documents and Settings\All Users\Start Menu\Programs\Startup\ca84c702-c758-4421-974e-b02662e76d7c_6.lnk
    16 c:\Program Files\Antimalware Defender\Antimalware Defender.dll
    17 c:\WINDOWS\system32\ca84c702-c758-4421-974e-b02662e76d7c_6.avi
    18 c:\WINDOWS\system32\ca84c702-c758-4421-974e-b02662e76d7c_6.ico

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "ca84c702-c758-4421-974e-b02662e76d7c_6"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ca84c702-c758-4421-974e-b02662e76d7c}HKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOT\CLSID\{ca84c702-c758-4421-974e-b02662e76d7c}
Loading...