Posted on Thursday, 15th October 2009 by Bob
What is Windows Enterprise Defender? It sounds straight out of Star Wars, but the force you’ll be needing is a quick, effective removal, which can be a pain in the yoda with spyware like this. You need to remove this virus. It’s in the same family as the dreaded Windows PC Defender and Windows Additional Guard, both still causing havoc on millions of infected PCs. You must delete this threat before it corrupts everything that is important to you, and at worst, makes you the next victim of identity theft.
Delete Windows Enterprise Defender Right Now!
How Did I Get Infected With Windows Enterprise Defender?
Windows Enterprise Defender and badware just like it commonly end up on your computer due to the following causes:
- Freeware or shareware: Many times freeware or shareware is secretly bundled with spyware. It is how the developers earn money for the time they spent. It’s a sneaky, but it’s fairly common.
- Peer-to-peer software: Do you use a peer-to-peer (P2P) program or other application with a shared network? When you use these applications, you put your system at risk for mistakenly downloading an infected file, including software like Windows Enterprise Defender.
- Questionable websites: Malicious or questionable websites can install programs such as Windows Enterprise Defender through security holes and automatic downloads, such as video codecs. If you feel your browser is unsafe, consider using the newest version of Mozilla Firefox, Google Chrome, or Internet Explorer.
Automatically Detect & Remove Windows Enterprise Defender – Click Here to Download Spyware Doctor
What are Common Signs of Windows Enterprise Defender Infection?
- Slow Computer Performance
- Annoying Pop-Ups
- Taskbar Warnings
- Strange new icons and desktop backgrounds
- Internet Browsing Re-directs and Hijacks
- System Crashes
- High Pressure Marketing Tactics to “Purchase Full Version” of software
How Do I Remove Windows Enterprise Defender?
There are two methods. The manual way and the automatic way. First – if you want to try and remove it manually (and I only recommend this to IT Professionals!) you must disable all related system processes, adjust all related system DLL files and registry files in the LOCAL_HKEY_USER folder, block all related websites, and delete all program files with the Windows Enterprise Defender name.
Windows Enterprise Defender Manual Removal Instructions:
Stop Windows Enterprise Defender Processes:
Remove Windows Enterprise Defender Registry Keys:
HKEY_CLASSES_ROOT\WindowsEDefender.DocHostUIHandler
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes “URL” => “http://search-gala.com/?&uid=7&q={searchTerms}”
HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes “URL”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “[xSP_2:61a6083b6194a2314e3dd54cf9615e36_7]“
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “876902803″
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Windows Enterprise Defender”
Remove Windows Enterprise Defender Files and Folders:
c:\Documents and Settings\All Users\Application Data\c9ba
c:\Documents and Settings\All Users\Application Data\c9ba\WEDDSys
c:\Documents and Settings\All Users\Application Data\WEDDSys
%UserProfile%\Application Data\Windows Enterprise Defender
83.mof mozcrt19.dll sqlite3.dll unins000.dat WED.ico WindowsEDefender.exe vd952342.bd wed.cfg Windows Enterprise Defender.lnk cookies.sqlite cb.sys ddv.dll eb.sys energy.exe pal.sys PE.drv ppal.exe tempdoc.tmp search.xml
Delete Windows Enterprise Defender DLLs:
Note: In any Windows Enterprise Defender files I mention above, “%UserProfile%” is a variable referring to your current user’s profile folder. If you’re using Windows NT/2000/XP, by default this is “C:\Documents and Settings\[CURRENT USER]” (e.g., “C:\Documents and Settings\JoeSmith”). If you have any questions about manual Windows Enterprise Defender removal, go ahead and leave a comment.
How to delete Windows Enterprise Defender files in Windows XP and Vista:
- Click your Windows Start menu, and then click “Search.”
- A speech bubble will pop up asking you, “What do you want to search for?” Click “All files and folders.”
- Type a Windows Enterprise Defender file in the search box, and select “Local Hard Drives.”
- Click “Search.” Once the file is found, delete it.
How to stop Windows Enterprise Defender processes:
- Click the Start menu, select Run.
- Type taskmgr.exe into the the Run command box, and click “OK.” You can also launch the Task Manager by pressing keys CTRL + Shift + ESC.
- Click Processes tab, and find Windows Enterprise Defender processes.
- Once you’ve found the Windows Enterprise Defender processes, right-click them and select “End Process” to kill Windows Enterprise Defender.
How to remove Windows Enterprise Defender registry keys:
Warning! Your registry is a vital key to your Windows system. If you plan on making any edits to your registry, you absolutely must backup your registry first in case anything goes wrong. Be forewarnd that a mistake when editing your registry can result in a computer that no longer boots up. These instructions are designed for IT Professionals and PC Experts.
- Select your Windows menu “Start,” and click “Run.” An “Open” field will appear. Type “regedit” and click “OK” to open up your Registry Editor.
- Registry Editor will open as a window with two panes. The left side Registry Editor’s window lets you select various registry keys, and the right side displays the registry values of the registry key you select.
- To find a registry key, such as any Windows Enterprise Defender registry keys, select “Edit,” then select “Find,” and in the search bar type any of Windows Enterprise Defender’s registry keys.
- As soon as Windows Enterprise Defender registry key appears, you can delete the Windows Enterprise Defender registry key by right-clicking it and selecting “Modify,” then clicking “Delete.”
How to delete Windows Enterprise Defender DLL files:
- First locate Windows Enterprise Defender DLL files you want to delete. Open your Windows Start menu, then click “Run.” Type “cmd” in Run, and click “OK.”
- To change your current directory, type “cd” in the command box, press your “Space” key, and enter the full directory where the Windows Enterprise Defender DLL file is located. If you’re not sure if the Windows Enterprise Defender DLL file is located in a particular directory, enter “dir” in the command box to display a directory’s contents. To go one directory back, enter “cd ..” in the command box and press “Enter.”
- When you’ve located the Windows Enterprise Defender DLL file you want to remove, type “regsvr32 /u SampleDLLName.dll” (e.g., “regsvr32 /u jl27script.dll”) and press your “Enter” key.
If you wish to restore any Windows Enterprise Defender DLL file you deleted, type “regsvr32 DLLJustDeleted.dll” (e.g., “regsvr32 jl27script.dll”) into your command box, and hit the “Enter” key.
Did Windows Enterprise Defender change your homepage?
- Click Windows Start menu > Control Panel > Internet Options.
- Under Home Page, select the General > Use Default.
- Type in the URL you want as your home page (e.g., “http://www.google.com”).
- Select Apply > OK.
Windows Enterprise Defender Removal in 10 Minutes:
Download Spyware Doctor to get rid of Windows Enterprise Defender in 10 minutes, automatically.
Automatic Removal. It’s What I Choose.
The risks of manual removal make automatic removal an easy decision for me. I don’t have enough time in the day to manually remove every infection that I come across; it’s way too time consuming, and risky. It’s easy to miss a file if you’re not careful, and it’s easy to adjust the wrong file and be left with a paperweight for a computer.
Posted in Threat Removal | Comments (5)
October 16th, 2009 at 11:49 pm
[...] Even with years of experience, I can’t risk making one tiny error and rendering a computer useless. When you are editing a system’s registry, such a disaster can easily occur. For these reasons I choose automatic removal and recommend 3 different tools in particular. All 3 will clean a computer and get it acting new again, and most importantly, will protect a computer against the next wave of deadly viruses and threats. It’s too good to pass up, and you’ll need a robust tool to uninstall windows enterprise defender. [...]
October 25th, 2009 at 3:07 pm
I downloaded Spyware Dr., but cannot get it to run. Windows Enterprise Defender is preventing any of my virus SW from removing it. I just got the virus yesterday, 24 October.
(Bob: Dennis, Try in Safe Mode w/Internet Disabled.)
November 18th, 2009 at 6:18 pm
[...] Defender is created by the same hackers who made the rogue spyware Windows Enterprise Suite. It detects badware that it installs itself, and then scares you into providing your credit card [...]
February 8th, 2010 at 11:47 am
[...] Even with years of experience, I can’t risk making one tiny error and rendering a computer useless. When you are editing a system’s registry, such a disaster can easily occur. For these reasons I choose automatic removal and recommend 3 different tools in particular. All 3 will clean a computer and get it acting new again, and most importantly, will protect a computer against the next wave of deadly viruses and threats. It’s too good to pass up, and you’ll need a robust tool to uninstall windows enterprise defender. [...]
February 24th, 2010 at 9:26 pm
[...] Even with years of experience, I can’t risk making one tiny error and rendering a computer useless. When you are editing a system’s registry, such a disaster can easily occur. For these reasons I choose automatic removal and recommend 3 different tools in particular. All 3 will clean a computer and get it acting new again, and most importantly, will protect a computer against the next wave of deadly viruses and threats. It’s too good to pass up, and you’ll need a robust tool to uninstall windows enterprise defender. [...]