Description of rouge asectool.exe
This malware is part of rogue program "Advanced Security Tool". It is installed on your computer without your knowledge. Once it is running, it will block you from running any security program so that make itself hard to remove. And then it will disable your internet connection so that you can not download any update for your security programs. Then the malware will perform a fake scan to your computer and then stating your computer is infected by some malware, but it will not allow you to remove those infections until you purchase its full version. Actually all the infections reported by this rogue program are not existing.
Objects of rouge asectool.exe
Registry Value:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run :AdvSecTool=C:\Documents and settings\%UserName%\Application Data\asectool.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon: Shell=explorer.exe C:\Documents and settings\%UserName%\Application Data\asectool.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon: Shell=explorer.exe C:\Windows\System32\ntload.exe
Registry Key:
HKEY_CLASSES_ROOT\CLSID\{80c10400-59cb-4c79-97ce-cc693103afca}
HKEY_CLASSES_ROOT\Interface\{4B66E1DF-4DE3-4CDA-83B5-11673EADAB0B}
HKEY_CLASSES_ROOT\Interface\{9692BE2F-EB8F-49D9-A11C-C24C1EF734D5}
HKEY_CLASSES_ROOT\TypeLib\{58B4E0F5-F122-4C02-B038-C482D998486A}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{80c10400-59cb-4c79-97ce-cc693103afca}
File:
%UserProfile%\Application Data\asectool.exe
C:\Windows\System32\ntload.exe
C:\Documents and settings\%UserName%\scan.dll
How to remove rouge asectool.exe with Adware Away
Adware Away can completely remove rouge asectool.exe and all related malware. Just follow the steps below:
- 1. Launch Adware Away
- 2. Click "Start Scan" button and wait for the scan completes
- 3. Click "Fix Selected" button in the scan result window
- 4. Reboot your computer if Adware Away prompts to reboot.
Adware Away scan result for rouge asectool.exe (Note: result may be different between different variants)
About Adware Away and Customizing Removal Service
Adware Away is the only product that doesn't provide free trial vesion in anti-malware industry. We have 100% confidence to remove any malware with Adware Away and its customizing removal service. The download link is to download a scan-only version, you are required to purchase it before using it to remove the malware it finds.
Customizing removal to remove any new variant of rouge asectool.exe
If the above automatical method doesn't work, you can request a customizing removal service to let us help you remove this new variant manually, just follow the steps below:
- 1. Launch Adware Away.
- 2. Click "Customizing Removal" tab.
- 3. Click "Diagnostic Scan" button and wait for the scan completes.
- 4. Send us the scan log file.
- 5. Our technical support will analyze your log file and send you back a removal guide file
- 6. When you receive the removal guide file, just drag and drop it into Adware Away window, the removal to the new variant will be done.