Remove Vista Defender Pro, or ave.exe (Vista Defender Pro, or ave.exe Removal)

March 25th, 2010 | by Alex |

Vista Defender Pro, or ave.exe Descriptions:

Vista Defender Pro (VistaDefenderPro) is just one more fake application, coming from the same family as XP Defender Pro and Win 7 Defender Pro. The rogueware is specifically designed for users of Windows Vista. The hackers have used the legible name in order to make their malicious software look more trustful to computer users. However, don’t even think about downloading Vista Defender Pro to your personal computers.

Vista Defender Pro is a fake product based on Trojans and can do huge harm to your machine and the entire system. It does not even block some executable files and programs but it also start annoying computer users with fake scans and warning messages. Keep in mind that you must always update your antivirus in order to keep away from the threats like this.

Be sure you visit trustful website and do not download any video codecs or updates for your flash player from the unknown sources. These days web has become really dangerous. Be sure that you, your family and friends keep these rules as well.

Never trust Vista Defender Pro. Never install it. In case Vista Defender Pro has been installed to your machine without your knowledge, download the spyware removal tool, or use the instructions provided below to get rid of the rogueware.

ams Detect Vista Defender Pro automatically – Download SpyHunter* Spyware Detection Utility

Vista Defender Pro, or ave.exe Manual Removal Instructions:

Stop These Vista Defender Pro Processes:
(Learn how to do this)
ave.exe

Find and Delete These Vista Defender Pro Files:
(Learn how to do this)
%UserProfile%\AppData\Local\ave.exe

Remove These Vista Defender Pro Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%1? %*
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%1? %*
HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%1? %*
HKEY_CLASSES_ROOT\secfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%1? %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%Program Files%\Mozilla Firefox\firefox.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%Program Files%\Mozilla Firefox\firefox.exe” -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\ave.exe” /START “%Program Files%\Internet Explorer\iexplore.exe”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = “1?
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallOverride” = “1?

ams Detect Vista Defender Pro automatically – Download SpyHunter* Spyware Detection Utility

bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark


Add this page to Favorite (For Internet Explorer)


Disclaimer

  1. 5 Responses to “Remove Vista Defender Pro, or ave.exe (Vista Defender Pro, or ave.exe Removal)”

  2. By Jason on Mar 28, 2010 | Reply

    Recently the Vista Defender Pro virus installed itself on my PC. I paid for it on my Credit Card and am wondering how I can possibly get it refunded. I would greatly appreciate a response from anyone that can help me. Thanks for your time:)

  3. By Alex on Mar 29, 2010 | Reply

    Hello Jason, you should call your credit card issuer (usually there is a phone number on the back of the card) and tell them that you are a victim of a cyber crime and you want to make a charge back of this transaction. It is also very common that your credit card info is now possessed by the criminals, so it is a must-do thing. Call your bank ASAP.

    Regards

  4. By Pete on Apr 5, 2010 | Reply

    Hi Alex,

    Back in January, the Antivirus Live program got onto my Windows Vista 64-bit system. I got rid of it then and last week I got “Vista Defender”. I got rid of Vista Defender relatively quickly. I do always visit trusted websites and never download anything that would look suspicious. Someone had sent me a file on Mediafire that I wanted to download and when i went to the site that’s when it happened. A pop-up from Futon Critic came up and then the warnings started.

    Are “Antivirus Live” and “Vista Defender” the same program? I know they do the same thing. Maybe “Antivirus Live” lay dormant and came back under a different name? I am using and running MalwareBytes and Super Anti-Spyware. I’d prefer not to restore my whole system if I didn’t have to. Any ideas or advice?

    Thanks!

  5. By Alex on Apr 9, 2010 | Reply

    Hi Pete,

    From all info i have on these rogues, they are branches of two different rogue families. The mechanism of infection is always the same, the only difference are the malware executable`s filenames, their locations and registry modifications. Did you try to locate the “ave.exe” process (is it really present on your computer)?

    Regards

  6. By Andre on Apr 23, 2010 | Reply

    Can someone help?
    I recently obtained the ave.exe and I was wondering how to get it removed, I followed the processes listed above, but I wasn’t able to locate a few of them.

Post a Comment