Emsisoft Malware-Info

Name: Adware.Win32.WindowsPCDefender

Risikolevel: Low Risk

Beschreibung:

It is a rogue security program. Claiming the user's system is infected in order to trick them into paying for a full version.

Anleitung zum Entfernen von Adware WindowsPCDefender:

Um diese Malware-Infektion zu löschen, kaufen Sie bitte Emsisoft Anti-Malware.
Garantierte Entfernung von Adware WindowsPCDefender.

Führen Sie einen Scan durch und stellen Sie gefundene Objekte unter Quarantäne.

Mehr Datails zu dieser Bedrohung:

Charakteristik:

  • Show fake warning messages.
  • It also shows misleading scan results.

Installation: Installed through EXE

Prozess: %random%.exe

Screenshots:

WindowsPCDefenderWindowsPCDefenderWindowsPCDefenderWindowsPCDefenderWindowsPCDefenderWindowsPCDefenderWindowsPCDefender

Verwendete Ordner:

  • C:\WINDOWS\system32\drivers\etc\
  • C:\WINDOWS\system32\WBEM\Logs\
  • C:\Documents and Settings\All Users\Application Data\b0cf5\
  • C:\Documents and Settings\All Users\Application Data\WPCDSys\
  • C:\Documents and Settings\[USER]\Application Data\Microsoft\Internet Explorer\Quick Launch\
  • C:\Documents and Settings\[USER]\Application Data\Windows PC Defender\
  • C:\Documents and Settings\[USER]\Cookies\
  • C:\Documents and Settings\[USER]\Desktop\
  • C:\Documents and Settings\[USER]\Desktop\BackUp\
  • C:\Documents and Settings\[USER]\Desktop\WPCDSys\
  • C:\Documents and Settings\[USER]\Local Settings\Application Data\Microsoft\Internet Explorer\
  • C:\Documents and Settings\[USER]\Local Settings\History\History.IE5\
  • C:\Documents and Settings\[USER]\Local Settings\History\History.IE5\MSHist012009092320090924\
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\
  • C:\Documents and Settings\[USER]\Recent\
  • C:\Documents and Settings\[USER]\Start Menu\
  • C:\Documents and Settings\[USER]\Start Menu\Programs\

Verwendete Dateien:

  • C:\WINDOWS\system32\drivers\etc\hosts
    [6685 Bytes] File
  • C:\WINDOWS\system32\WBEM\Logs\mofcomp.log
    [10909 Bytes] LOG File
  • C:\WINDOWS\system32\WBEM\Logs\wbemprox.log
    [457 Bytes] LOG File
  • C:\Documents and Settings\All Users\Application Data\b0cf5\WPba6.exe
    [2184192 Bytes] EXE File
  • C:\Documents and Settings\All Users\Application Data\WPCDSys\wpcd.cfg
    [18046 Bytes] CFG File
  • C:\Documents and Settings\[USER]\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows PC Defender.lnk
    [1316 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Application Data\Windows PC Defender\Instructions.ini
    [102 Bytes] INI File
  • C:\Documents and Settings\[USER]\Cookies\index.dat
    [32768 Bytes] DAT File
  • C:\Documents and Settings\[USER]\Cookies\virus demo@support.zonedialog[1].txt
    [101 Bytes] TXT File
  • C:\Documents and Settings\[USER]\Desktop\1587.mof
    [336 Bytes] MOF File
  • C:\Documents and Settings\[USER]\Desktop\Windows PC Defender.lnk
    [1280 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Desktop\WPCD.ico
    [4286 Bytes] ICO File
  • C:\Documents and Settings\[USER]\Desktop\BackUp\HyperSnap-DX.lnk
    [650 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Desktop\WPCDSys\vd952342.bd
    [11382 Bytes] BD File
  • C:\Documents and Settings\[USER]\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT
    [16384 Bytes] DAT File
  • C:\Documents and Settings\[USER]\Local Settings\History\History.IE5\index.dat
    [32768 Bytes] DAT File
  • C:\Documents and Settings\[USER]\Local Settings\History\History.IE5\MSHist012009092320090924\index.dat
    [32768 Bytes] DAT File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\index.dat
    [49152 Bytes] DAT File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\basejs[1].js
    [9620 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\blue_8x8_bl[1].png
    [127 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\dojo.build[1].htm
    [1245158 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\gears_init[1].js
    [1480 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\get_product_domains[1].htm
    [36 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\help[1].png
    [1136 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\index[1].css
    [13691 Bytes] CSS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\0H2HIRKN\space[1].gif
    [43 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\bluebuttonbg[1].gif
    [1292 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\blue_8x8_br[1].png
    [124 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\Config.xd[1].js
    [657 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\custom[1].css
    [17 Bytes] CSS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\index[1].htm
    [1200 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\insert-table-row[1].png
    [523 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\poweredbykayako[1].gif
    [175 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\6XSRQLQP\progress[1].gif
    [537 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\blue_8x8_tl[1].png
    [138 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\DataPusher.xd[1].js
    [755 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\index[1].htm
    [2484 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\install-report[1].htm
    [2 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\login[1].htm
    [604 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\main[1].css
    [8816 Bytes] CSS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\main[2].css
    [2666 Bytes] CSS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\progress[1].gif
    [54354 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\SRIDQBO7\supportsuite[1].gif
    [3877 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\blue_8x8_tr[2].png
    [128 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\English.lang[1].js
    [42805 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\EntryPoint.xd[1].js
    [4584 Bytes] JS File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\index[1].htm
    [12774 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\index[2].htm
    [2932 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\logo[1].gif
    [6119 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\orangebuttonbg[1].gif
    [1295 Bytes] GIF File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\SoftServiceReport[1].htm
    [2 Bytes] HTM File
  • C:\Documents and Settings\[USER]\Local Settings\Temporary Internet Files\Content.IE5\YNQ1M5MT\user[1].png
    [1644 Bytes] PNG File
  • C:\Documents and Settings\[USER]\Recent\ANTIGEN.tmp
    [41 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\cb.dll
    [8 Bytes] DLL File
  • C:\Documents and Settings\[USER]\Recent\cid.exe
    [2 Bytes] EXE File
  • C:\Documents and Settings\[USER]\Recent\cid.sys
    [15 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\CLSV.drv
    [72 Bytes] DRV File
  • C:\Documents and Settings\[USER]\Recent\exec.drv
    [23 Bytes] DRV File
  • C:\Documents and Settings\[USER]\Recent\fix.sys
    [25 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\grid.tmp
    [46 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\kernel32.tmp
    [13 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\PE.sys
    [51 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\PE.tmp
    [66 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\ppal.drv
    [66 Bytes] DRV File
  • C:\Documents and Settings\[USER]\Recent\SM.tmp
    [15 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Recent\tjd.sys
    [51 Bytes] SYS File
  • C:\Documents and Settings\[USER]\Recent\tjd.tmp
    [2 Bytes] TMP File
  • C:\Documents and Settings\[USER]\Start Menu\Windows PC Defender.lnk
    [1298 Bytes] LNK File
  • C:\Documents and Settings\[USER]\Start Menu\Programs\Windows PC Defender.lnk
    [1304 Bytes] LNK File

Weiterführende Links:

Bei Google nach Adware WindowsPCDefender suchen Bei Google nach Adware WindowsPCDefender suchen
Bei Bing nach Adware WindowsPCDefender suchen Bei Bing nach Adware WindowsPCDefender suchen
Bei Yahoo nach Adware WindowsPCDefender suchen Bei Yahoo nach Adware WindowsPCDefender suchen

Wie schützt man sich am besten vor Adware WindowsPCDefender?

Wichtig!
Sie benötigen unbedingt eine Antivirensoftware, die nicht nur Infektionen löschen kann, sondern Ihren PC dauerhaft vor neuen Bedrohungen schützen kann. Nur so sind Sie sicher vor Datendiebstahl und unnötigem Ärger und Kosten durch Neu-Installationen des Betriebssystems.

Kaufen Sie am besten noch heute die vielfach ausgezeichnete Schutzsoftware Emsisoft Anti-Malware!

Nur 30 Euro für die Sicherheit Ihres Computers.

Emsisoft Anti-Malware online bestellen:

Emsisoft Anti-Malware Kaufen

Vertrauen Sie nur auf die beste Schutzsoftware!

Frühlings-Angebot!

Letzte Chance: Zu Ihrer neu gekauften Emsisoft Anti-Malware oder Emsisoft Internet Security Pack Jahreslizenz oder höher erhalten Sie jetzt den CyberGhost Anonymisierer gratis dazu.
Ihr Vorteil: Anonym surfen und Webseiten (Youtube, Hulu...) mit Länderbeschränkungen trotzdem besuchen.

Nur noch wenige Tage! Hier bestellen

Testsieger!

Testsieg für Emsisoft Anti-Malware beim Antiviren-Vergleichstest von MRG - Malware Research Group - Jahrswertung Q1-Q3 2011
Mehr unabhängige Testberichte von Anti-Malware Software