Remove Security Defender

What is Security Defender?

Security Defender is a rogue anti-virus software program that will look like and operate like legitimate Microsoft Security Program. This rogue software application belongs to the Rogue:Win32/Defmid family. It infects your computer via opening junk e mails and via loopholes in your security system as you visit malicious sites and download corrupted applications and files.

Some Security Defender screenshots:
Security Defender

Security Defender will sometimes be invisible but will soon come up as an alert that your pc actually has corrupted files and numerous threats. Security Defender is common in PCs who have no security software set up but as you choose to buy this bogus application, it will do nothing to protect you at all. It will send you bogus notifications that it has identified, stopped and even got rid of bogus infections.

Some of the Security Defender fake security alerts and warnings that users may get:
Harmful software detected Security Defender has detected malicious software that may cause crash of your computer. Click Remove All button to remove them now.
Security Defender Viruses have been found in your system. We highly recommend you to get license for Security Defender to remove immediately harmful software.
Security Defender Firewall Alert Suspicious activity in your registry system space was detected. Rogue malware detected in your system. Data leaks and system damage are possible. Please use a deep scan option.

Security Defender will also shut down legit anti-virus software applications and may even turn off Task Manager and registry to stop you from getting rid of it from your system. You need dependable anti-spyware tools to eliminate it right away and after complete removal, a total system scan is strongly recommended. If you have paid for Security Defender, you need to contact your credit card company and inform them of this bogus buy and to indicate any suspect activity using your credit card account.

Associated Security Defender System Entries and files

Security Defender Processes

Security Defender Files

Security Defender Registry Entries


How to Stop Security Defender Fake Alerts

To register Security Defender and stop its fake warnings, use the following fake license key.

Security Defender registration code: D13F-3B7D-B3C5-BD84

NOTE: this code will NOT remove Security Defender from your computer, it will JUST stop the annoying alerts and messages.


Security Defender Removal Instructions

Step 1: Reboot in Safe Mode with Networking

To restart your computer in Safe Mode with networking:

  1. Restart your computer.

  2. When you see the computer manufacturer's logo, press and hold the F8 key.

  3. On the Advanced Boot Options screen, use the arrow keys to highlight Safe Mode with Networking, and then press Enter.
    Safe Mode with Networking Screen

  4. Log on to your computer with a user account that has administrator rights.


Step 2: Disable Security Defender Proxy Server

Security Defender may add a proxy to its package. Its goal is to get the information through the Web connection (password etc).
It also helps to block the connection to certain sites (eg malware removal help sites) or to block the download of trustworthy antispyware and antivirus programs.

The following steps reset the Internet Explorer proxy settings in the Windows registry so that you can access the Internet again:

  1. Click Start, and then click Run. (Keyboard Shortcut: Windows logo + R)

  2. Copy and paste or type the following text in the Open box in the Run dialog box:

    Run dialog box

  3. Click OK.

  4. click Start, and then click Run.

  5. Copy and paste or type the following text in the Open box in the Run dialog box:

  6. Click OK.

Now that you have disabled Security Defender proxy server, you will be able to browse the web again with Internet Explorer.

  1. Click Start, and then click Run. (Keyboard Shortcut: Windows logo + R)

  2. Type in iexplore.exe.
    Run iexplore.exe


Step 3: Stop Security Defender processes

In order to stop Security Defender from interfering with our removal procedure, we need to end and kill its processes. For this, we will use a FREE powerful utility called RogueKiller.

RogueKiller (by Tigzy) is a tool written in C++, which scans the running processes, and kills those which are malicious. This tool was developed based on speed execution, which will clean the running processes before being killed.

To terminate Security Defender process:

  1. Always in Safe Mode Download RogueKiller to your desktop from the following link:

    RogueKiller Download link
    RogueKiller Setup Icon
    RogueKiller is a portable application, so you don't need to install anything.

  2. Security Defender may block all executable files, so when you launch the RogueKiller file, it will execute itself. So Rename RogueKiller.exe to RogueKiller.com or winlogon.exe or iexplore.exe

  3. At this point a "pre-scan" will complete and stop any malicious process. Also a list of options will appear along the right-hand side.
    RogueKiller Pre-Scan


Step 4: Remove Security Defender registry keys

To remove Security Defender malicious registry entries, we will need RogueKiller again.
RogueKiller also checks for rogue Registry entries, rogue drivers, and Master Boot Record (MBR) issues, so rootkits will be cut.
RogueKiller can also fix and restore a Host file, delete any Proxy entries, repair shortcut problems and unhide files.

CAUTION: This tool is not for beginners. In this step we will ONLY use the Registry tab.

To Delete Security Defender Registry entries:

  1. Always in Safe Mode run a scan, open RogueKiller and click on Scan.
    RogueKiller Scan Progress

  2. After a while, you should see a screen with scan results like the following one:
    RogueKiller Scan Results

  3. Click on the Registy tab, then click on the Delete button.
    RogueKiller Delete Registry Entries


Don't Reboot you computer yet, please stay in Safe Mode.


Step 5: Remove Security Defender files

Malwarebytes Anti-Malware is simply the best known FREE malware removal tools online.

To remove Security Defender files:

  1. Download Malwarebytes to your desktop from the following link:
    Malwarebytes Anti-Malware Download link
    MBAM Setup Icon

  2. Just Follow the easy setup process. Do not make any changes to the default settings
    When the setup is finished, make sure you leave both the Update Malwarebytes Anti-Malware and Launch Malwarebytes Anti-Malware checked.
    You can check or uncheck the Enable free trial of Malwarebytes Anti-Malware PRO as the malware removal is FREE.
    Then click on the Finish button. If Malwarebytes prompts you to reboot, please do not do so.
    Malwarebytes Anti-Malware Setup Wizard

  3. When Malwarebytes is launched, it will ask you to update the databse. Just click OK.
    Malwarebytes Anti-Malware Updating

  4. On the Scanner tab,select Quick scan and then click on the Scan.
    Malwarebytes Anti-Malware Quick Scan Screen

  5. When the scan is finished a message box will appear, click OK to continue.
    Then the screen results will show the various malware infections including Security Defender that Malwarebytes has found on your computer.
    the image below is just an example, your results will be different.
    Click on the Remove Selected button.
    Malwarebytes Anti-Malware Quick Scan Results Screen

  6. After Malwarebytes has finished the removal of Security Defender, you will get a message stating that you need to reboot your computer.
    Just Do so, and restart your computer in Normal Mode.
    Malwarebytes Anti-Malware Quick Reboot Message


Step 6: Check for any Security Defender left over

To make sure that your computer is now completely free of Security Defender, redo a Malwarebytes scan in Normal Mode.
After your are finished, Reboot your PC as asked by Malwarebytes anti-malware.


About

Sarah MelbenchI am Sarah Melbench and I am an Anti-Malware Enthusiast! I created this website to spread the word about the lastest malware infections. I write guides and tutorials about malware removal as well as reviews of anti-malware programs.Follow me on G+

Tagged with: ,
Posted in Manual Malware Removal
One comment on “Remove Security Defender
  1. LUCI says:

    I tried the above steps and the security defender firewall alert pops up everytime I click OK. It does not allow me to do anything. I have never had this happen before.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>