AVDefender 2011 is a rogue security program created to swindle Windows users. This type of software will attempt to persuade people into purchasing the licensed version of the program by means of tricky considerable warning messages. One can easily accept it as a program to remove threats on the infected computer by finding it believable. AVDefender 2011 will pretend to be a part of Windows and all of its warnings and alerts were patterned to look exactly coming from the operating system. Automatic virus scan will be performed after boot-up, detecting dozens of threats found locally. This will be followed by a prompt to remove it using the registered version of AVDefender 2011 – and that is not for free.
If you attempt to buy this rogue program, new browser windows will open showing the product registration page equipped with payment processing method, usually via Paypal or Credit Card account. Be advice that this payment web site may steal you credentials and attacker can steal money from your account. Furthermore, many victims who bought this program complain that even with full version, it leaves them no option to uninstall AVDefender 2011 from the PC.
Ignore this unwanted program and never obtain a personal copy of it. Fake antivirus program like this one should be given high priority to remove from the computer as soon as possible. It was designed to pull down more threats from a remote location and further harm the system. A decent and respected antivirus and anti-malware program must take care of the removal procedure automatically without any huge expenses.
What are the Symptoms of AVDefender 2011 Infection?
It will modify Windows Registry and add the following entries:
HKEY_CURRENT_USER\Software\avdefender 2011
KEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random]”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random]”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments “SaveZoneInformation” = “1”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1:5555”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations “LowRiskFileTypes” = “.exe”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = “”
The threat will drop the following malicious files:
%UserProfile%\Local Settings\Application Data\[random]\
%UserProfile%\Local Settings\Application Data\[random]\sysguard.exe
%UserProfile%\Local Settings\Application Data\[random]\avdefender 2011.exe
How to Remove AVDefender 2011 Manually
1. Restart your computer in SafeMode
– After Power-On the computer, just before Windows start, press F8
– From the selections, Select SafeMode
2. Remove Registry entries that the threat added. You MUST BACKUP YOUR REGISTRY FIRST.
– Click Start > Run
– Type in the field, regedit
– Navigate and look for the registry entries mentioned above and delete if necessary
3. Delete malicious files that the threat added:
– Base on the given location above, browse and delete the file
– If no location is given, click Start>Search> and search for the files.
– If cannot be deleted, press Ctrl+Alt+Del to access Task Manager, see if the file is running in the process. If it is, select the file and click End Process. Perform file delete again.
4. Scan computer with Antivirus Program
– Update antivirus program
– Scan computer and delete all detected threats.
How to Easily Remove AVDefender 2011
1. Print this procedure as we need to close all programs running later.
2. Download AntiMalware Application here and save it to your Desktop.
3. Close all open applications.
4. Double-Click on the downloaded mbam-setup.exe to start the installation. If unable to execute, infections on computer is preventing it from running, rename the file mbam-setup.exe to anything (like myfile.exe)
5. Run the installation on the default settings. No changes are necessary.
6. Just before completing the installation, make sure that the following are marked check.
– Update the program
– Launch the program
7. The tool will run and update itself after installation. Close it after the update.
8. Restart your computer in SafeMode
– After Power-On the computer, just before Windows start, press F8
– From the selections, Select SafeMode
9. Click on the icon and start to Perform Full Scan to begin scanning your computer for malicious files.
10. After scanning, a message will appear stating that the scan is completed successfully. Click OK.
11. Click Show Results and detected threats will be displayed.
12. Make sure that all threats are marked check, then click Remove Selected to begin removal of the malicious files.
13. Exit AntiMalware Apps and restart your computer.
14. AVDefender 2011 and all its files are now removed from your computer. To guard your computer from this threat and avoid future infections, you may want real-time protection from a full version of anti-malware program..
