Update 10/16/2010 : You may want to also check out this related guide: Fake Microsoft Essentials Warning . This is the first part of the virus and we have included a video to help people remove it as well.
Description: Major Defense Kit is a notorious rogue anti-malware program cloned from a set of malicious software: Red Cross Antivirus, Pest Detector, Peak Protection and AntiSpy Safeguard. Just like other fake antivirus applications, Major Defense Kit attempts to push the user into purchasing a software license to the software which does not help the user in any way. Major Defense Kit reaches user systems thanks to a Trojan that hides in malicious websites and then gets downloaded on to user computers when they visit the malicious websites. Once installed, Major Defense Kit will load itself up as a startup service with the help of the Trojan, and then it will proceed to perform a large number of fake antivirus scans on the user's system, subsequently reporting that there are a dangerous amount of viruses present on the user's computer. Major Defense Kit accentuates these claims with fake virus warning pop-ups that get generated from the Windows Taskbar. All these actions are aimed at tricking the user into paying for the 'full' version of Major Defense Kit by tricking them into believing that the currently installed 'trial' version of Major Defense Kit cannot remove the detected 'viruses' properly. However, you should always keep in mind that Major Defense Kit cannot remove any viruses from your computer under any sort of conditions.
Major Defense Kit
» Download Major Defense Kit Removal Software
A copy of this malicious program could cause untold damage to your system, therefore it is important to remove Major Defense Kit from your computer as soon as you find it. In order to delete Major Defense Kit, you should stop its processes, delete files and folders and remove registry entries
Remove Proxy Setting so You Can Connect to the Internet Again.
Major Defense Kit Manual Removal Procedures
The first step you need to take in order to remove Major Defense Kit is to stop the following processes from functioning:
- antispy.exe
- defender.exe
- tmp.exe
Delete Major Defense Kit Files
The next step in the process of Major Defense Kit removal is the deletion of the following files and folders:
- %UserProfile%\Application Data\PAV\
- %UserProfile%\Application Data\antispy.exe
- %UserProfile%\Application Data\defender.exe
- %UserProfile%\Application Data\tmp.exe
- %UserProfile%\Local Settings\Temp\kjkkklklj.bat
Now there will be no instances of Major Defense Kit installed on your computer any longer.
Major Defense Kit Registry Removal Procedures
File deletion alone is not sufficient to ensure complete Major Defense Kit removal. In order to remove Major Defense Kit completely, you should remove the following keys and settings from the Windows Registry as well:
- HKEY_CURRENT_USER\Software\PAV
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = "0"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnOnPostRedirect" = "0"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "tmp"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce "SelfdelNT"
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" = "%UserProfile%\Application Data\antispy.exe"
Major Defense Kit Directories:
- %UserProfile%\Application Data\PAV\
We see this threat in the above folder and trace files in the Application Data folder. AKA Appdata folder for Windows 7 and Vista users.
Outside resources:
http://www.bleepingcomputer.com/virus-removal/remove-major-defense-kit
Speak Your Mind