Advanced Security Tool 2010 is a rogue antivirus software once running it start implanting itself using a mof file and batch file to enter the rogue by itself in real legitimate windows security center
Interface GUI Is like this :
This is one not actually reskined by safety Antispyware and WinPC Defender however fakerean is tripled itself rogue family or other multiple times
How he implant itself to legitimate security center
He first open itself a batch file with command wscui.cpl and mofcomp it use the security center resources and command to make the rogue product visible to real security center
Look in trial version
So looking at other payloads and he also drop viruses junk files to be classifited as virus malware backdoor trojan and other it make invalid exe dll reg acebot and other it have random files name.
If we ignore or click close or later or something to continue unprotected look like that
So i decided to activate the rogue :
The version of activation is differently too far this rogue does not require email so pretty fragile for a little cracking for his code.
Once we ignore bypass activation or a payload alert we got this
And if we wanna to make change to turn off and on we got also this
I forgot once restart pc we get the payload un used by the rogue. replace explorer.
And support ?
Here is all ingredients from this fakerean they are so located in %appdata%
asectool.exe md5 : a2f34f8c19beaff52730fd438570e133
He drop most of the files
So the payload like firewall alert is sinister :
It use the username of the PC And the ComputerName
Also update black version
This version is not blocking little bit from executables
I am also asked are you sure?
Activation Code after i debug little bit here is code i found :
3547-74831239063-9802
After activation it show the code that is valid and store into registry Called Advanced Security
The dialog is a braviax looking window.
After i activated i need to cleanup and restart program.WHAT??
Threat removed.
Once activated i can also update but he refresh the inject of security center files because is turned on high protection
Full version still no threats :
Let's do an update
And the legitimate security center was disabled or notify that rogue up to date and scanning virus on
You have to erase him with MBAM
I also tested on windows 10 and higher os but most fully error and compatibility mode to XP
Video Review i release him video review in 2017 and i cracked in 2019:
