IronDefender
IronDefender is a rogue antispyware program from the same scammers who created SafetyGuard. IronDefender may spread through its affiliated Trojans that are capable of challenging even the most capable Operating System. IronDefender's trial version will proceed to run each time Windows starts up, which will result in various annoying pop-up ads and deceptive system scans appearing on your computer. Any reported infections are fabricated and should not be taken seriously. These are merely scare tactics employed in order to frighten you into purchasing the full commercial version of IronDefender. IronDefender's trial version and full version will do absolutely nothing for detection or removal of spyware or any other type of computer infection. IronDefender should be detected and removed with a reliable anti-spyware program that is designed to remove rogue anti-spyware applications.
File System Modifications
- The following files were created in the system:
# File Name 1 %UserProfile%\Desktop\hash 2 %UserProfile%\Desktop\IronDefender.lnk 3 %UserProfile%\Local Settings\Temp\[random characters].exe 4 c:\Documents and Settings\All Users\Start Menu\Programs\IronDefender.lnk 5 c:\Program Files\FDFCA\ 6 c:\Program Files\FDFCA\F0E84.exe 7 c:\Program Files\FDFCA\Uninstall.exe 8 c:\WINDOWS\[random characters].bin 9 c:\WINDOWS\[random characters].cpl 10 c:\WINDOWS\[random characters].dll 11 c:\WINDOWS\[random characters].exe 12 c:\WINDOWS\system32\[random characters].bin 13 c:\WINDOWS\system32\[random characters].cpl 14 c:\WINDOWS\system32\[random characters].dll 15 c:\WINDOWS\system32\[random characters].exe
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\IronDefenderHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "vur4.exe"HKEY_LOCAL_MACHINE\SOFTWARE\IronDefenderHKEY..\..\..\..{RegistryKeys}HKEY_CURRENT_USER\Software "Install_Dir" = "C:\Program Files\FDFCA"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "F0E84.exe"HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}IronDefender
Additional Information on IronDefender
- The following messages's were detected:
# Message 1 Spyware Alert!
Your computer is infected with spyware. It could damage your critical files or expose your private data on the Internet. Click here to register your copy of IronDefender and remove spyware threats from your PC.Warning
Your computer is under a great risk! Malware applications are still running. This will lead to the loss of personal date and system damage.
Do you want to remove the malware and protect your system?Security Center Alert!
Infiltration Alert!
Your computer is being at
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.