We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Rogue:Win32/Cedel
Detected by Microsoft Defender Antivirus
Aliases: Trojan:Win32/Cedel (other)
Summary
Rogue:Win32/Cedel is a rogue rogue antivirus program that imitates the Microsoft Malicious Software Removal Tool (MSRT). It displays fake alerts that the computer is infected and then redirects the user to a website to purchase the fake program.
Â
Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software.  Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.Â
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software.  Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.Â
Â
To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:
Â
Â
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.
To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:
Â
Â
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.
Additional remediation instructions for Rogue:Win32/Cedel
This threat may make lasting changes to a computer’s configuration that are NOT restored by detecting and removing this threat. For more information on returning an infected computer to its pre-infected state, please see the following article/s:Â
- Enabling Windows Security Center/Action Center alerts:
- For Windows 7: http://windows.microsoft.com/en-us/windows7/What-happened-to-Windows-Security-Center
- For Windows Vista: http://windows.microsoft.com/en-US/windows-vista/Using-Windows-Security-CenterÂ
- For Windows XP: http://support.microsoft.com/kb/889737
- Using the system's recovery options:
- For Windows XP: Installing and using the Recovery Console in Windows XP
- For Windows Vista: System Recovery Options in Windows Vista
- For Windows 7: System Recovery Options in Windows 7
- For other support and help related articles, go to:
- Windows 7: http://support.microsoft.com/gp/windows7
- Windows Vista: http://support.microsoft.com/ph/11732Â
- Windows XP:Â http://support.microsoft.com/ph/1173
- Microsoft Security TechNet Center: http://technet.microsoft.com/security/default.aspx
Follow us
