« ProcessGuard How to Use
VirusProtect 3.8 »

IEDefender

No Comments
Domesticus By Domesticus in Rogue Anti-Spyware Program | 102 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...

Do you have IEDefender?

This “IEDefender Removal Guide” article will show you how to identify and remove IEDefender. This guide will be updated as more information is available.

IEDefender Detection Test

Download SpyHunter’s Spyware Scanner Run SpyHunter’s Spyware Scanner to check for IEDefender infections on your PC.

IEDefender Description

IEDefender
IEDefender is classified as a rogue anti-spyware application because of its misleading and aggressive advertising practices. IEDefender creators and their marketing affiliates propagate and install IEDefender’s rogue anti-spyware application through a download that is bundled with a Trojan generated by a Browser Helper object (BHO). Most of these Trojan bundled downloads circulate in web sites that offer a “video codec” to view free adult entertainment videos. Once your computer gets infected with the Trojan, it will start showing up an annoying popup message: “NOTICE: Your system is infected and your computer performance is not at the highest level. Full system optimization will greatly increase your computer’s performance and prevent data loss”. Do NOT click on this fake error message because it will redirect your IE to IEDefender’s website where you will be forced to download IEDefender’s anti-spyware application. Moreover, the Trojan, which has come bundled from either IEDefender and/or their affiliates, hijacks your search engines (such as Google, Yahoo and MSN) and displays a fake warning message within your search results claiming that your computer is in serious danger because of hazardous parasites in your system. This is the manner how they attempt to trick the users into purchasing IEDefender full commercial version. Again, do NOT click on this fake error message because it will direct you IEDefender’s homepage where you will be offered to purchase IEDefender’s application. Parasite Type: A cocktail of Rogue Anti-Spyware Programs & Trojans.


IEDefender Method of Automatic Removal

The removal of spyware such as IEDefender can be a difficult process. If you regularly run a spyware scan with a good spyware remover, you can automatically detect IEDefender and other Spyware, Trojans, Rogue Anti-spyware, Adware, Browser Hijackers and other unwanted programs.

To quickly remove IEDefender, follow the instructions below:

  1. Download SpyHunter’s Spyware Scanner Download SpyHunter’s Spyware Scanner.

  2. Select “Start Scan” to run a full system IEDefender scan.

  3. Reboot your computer.

  4. Run another scan to pick up any remaining IEDefender infections.

** SpyHunter’s Spyware Scanner only allows you to detect IEDefender and other spyware. In order to remove IEDefender, we advise you to buy the full-version of SpyHunter. Weekly IEDefender file updates and technical support are available with SpyHunter’s spyware remover.

IEDefender Method of Infection

Click on the “How IEDefender Infects Your Computer” video to see an IEDefender infection in action! See through the eyes of an unsuspecting Internet user while him/her is being victimized by IEDefender. Tip: Turn your sound ON and watch the video in Full Screen mode to fully experience how IEDefender infects a computer.
In the “How IEDefender Infects Your Computer” video, the following IEDefender actions occur:

  • The Internet user surfs the Web and visits a questionable website. A large amount of rogue anti-spyware programs like IEDefender are mostly pushed through adult websites.

  • The Internet user downloads a free video codec called “Video ActiveX Enhancement 2.07″ which comes bundled with IEDefender. Freeware or shareware programs tend to come with unwanted programs such as IEDefender. Do not install any free software without reading its EULA. By simply reading a program’s EULA, you can determine whether a program you are installing has spyware bundled with it.

  • The Internet user is infected with the rogue anti-spyware program IEDefender. IEDefender runs a scan on the computer and gives a false spyware report claiming that the computer is infected with spyware. Once the scan is completed, a warning message appears with two buttons, one that says “Buy On-Line” and the other “Delete Spyware”. This deceptive tactic is an attempt to scare the Internet user into clicking the “Buy On-Line” button.

    • Fake warning message reads:

    • “Warning! 25 threats found! IEDefender has detected malicious spyware on your PC. To buy IEDefender On-Line, click ‘Buy On-Line’.” To enter your registration key click ‘Delete Spyware’.
  • The Internet user closes all the fake Windows error messages and warnings and is unaware that IEDefender is still running its malicious tasks in the background. IEDefender reloads itself on a timer so if the Internet user closes the program it will only take a few moments until it opens again. The average Internet user does not realize when spyware has infected his/her computer until it is too late and the spyware problem has already spread throughout the computer.

  • Internet user opens web browser and is redirected to a rogue website called asecurevalue.com. The Internet user is bombard with websites that pop up messages that tries to push a product on him/her. Ignore such messages! We recommend closing these windows by clicking on the X instead of the OK button.


    • IEDefender Anatomy

    As new IEDefender spyware components is reported by our customers and our Spyware Threat Research Labs, we will update this section. Name: iedefender.exe File Size: 574976 bytes MD5: 6d88232ea11bc9c1a1af2b043906eb02 Symbolic Links: Uninstall IEDefender.lnk IEDefender.lnk IEDefender.com WHOIS Information: Registration Service Provided By: ESTDOMAINS INC Contact: +1.3027224217 Website: http://www.estdomains.com Domain Name: IEDEFENDER.COM Registrant: PrivacyProtect.org Domain Admin (contact@privacyprotect.org) P.O. Box 97 All Postal Mails Rejected, visit Privacyprotect.org Moergestel null,5066 ZH NL Tel. +45.36946676 Creation Date: 05-Oct-2007 Expiration Date: 05-Oct-2008 Domain servers in listed order: ns2.iedefender.com ns1.iedefender.com

    IEDefender Manual Removal Instructions

    To learn the IEDefender manual removal process, read the step-by-step instructions provided on this section. Use Caution! Please read the instructions below carefully. Manual removal of IEDefender is a delicate procedure. Proceed at your own risk. Make sure you backup your system and close all open Internet Explorer windows before you manually remove IEDefender. If you are still having problems with IEDefender after completing these instructions, we recommend you download SpyHunter’s Spyware Removal Tool to safely remove IEDefender. To manually remove IEDefender, follow these removal steps: Step #1: How to Kill IEDefender files using Process Explorer.

    • 1a. How to Kill IEDefender processes.

      1. Download and install Process Explorer.

      2. Open Process Explorer.

      3. Locate the IEDefender processes listed below.

      4. To kill an IEDefender process, right-click the IEDefender process and choose the option “Kill Process Tree”.

      5. Kill the following IEDefender processes:
        IEDefender.exe
    • 1b. How to Kill IEDefender DLL files.

      1. Right-click the Explorer.exe process and choose the option “Properties”.

      2. Click on the “Threads” Tab, locate and highlight the IEDefender DLL files listed below.

      3. To kill IEDefender DLL files, click the “Kill” button.

      4. Kill the following IEDefender DLL files:
        mp3avi.dll dx50codec.dll askpbar.dll alisj.dll
    • Step #2: How to Delete IEDefender Registry Keys and Values.

      1. Right-click on your Desktop > select “New” option > select “Text Document” (.txt file) option.

      2. Rename the .txt file as a .reg file and call it “Delete_Registry_ IEDefender_3.8_Entities.reg”. This renamed .reg file is a command that creates a shortcut to your Windows registry and allows you to easily delete registry values.

      3. Right-click and select the “Edit” option.

      4. Copy and paste the IEDefender keys listed below.

      5. In the menu bar, go to “File” > select “Save” > then click the “X” button to close the file.

      6. Double-click on the .reg file.

      7. When the message box appears saying “Are you sure you want to add the information in C:DOCUME~1%username%DesktopDELETE~1.REG to the registry?”, click the “Yes” button.

      8. When the message box appears saying “Information in C:DOCUME~1%username% DesktopDELETE~1.REG has been successfully entered into the registry.”, click the “OK” button.

      9. The IEDefender registry keys have been deleted from your registry.

      10. Copy and paste the following IEDefender keys:
    • Step #3: How to Delete IEDefender Directories.

      1. To locate IEDefender directories, go to “Start” > “My Computer” > “Local Disk (C:)” > “Program Files” > “Show the contents of this folder”.

      2. Search and delete the IEDefender directories listed below.

      3. Right-click on the IEDefender folder and select “Delete”. option.

      4. When the message box appears saying “Are you sure you want to remove the folder [FOLDERNAME] and move all its contents to the Recycle Bin?”, click the “Yes” button.

      5. When the message box appears saying “Renaming, moving or deleting [FOLDERNAME] could make some programs not work. Are you sure you want to do this?”, click the “Yes” button.

      6. Search and delete the following IEDefender directories:
        IEDefender Video ActiveX Access

    • Step #4: How to Search and Delete C:WINDOWSSystem32alisj.dll.

      1. Go back to “Local Disk (C:)” > “Windows” > “System32″ > “Show the contents of this folder”.

      2. Search for alisj.dll.

      3. Right-click on the alisj.dll file and select the “Delete” option.

    • Step #5: How to Restore Original Default Home Page.

      1. Go to “Start” > “Control Panel” > “Internet Options”.

      2. Click on the General Tab > click the Use Default button under Home Page.

      3. Click “Apply” and then click the “OK” button.

      4. Open a Web browser to verify that your default homepage has been restored.

      Step #6: How to Remove the IEDefender Icons.

      1. If the IEDefender icons still remain on your Desktop, you can drag and drop them to the “Recycle Bin”.

      2. Reboot your computer to make sure all changes made for the removal of IEDefender are complete. If your computer still has issues, you should scan your computer for IEDefender with a spyware scanner.

    Congratulations!! You’ve completed our IEDefender manual removal tutorial.

    Submit IEDefender To Our Spyware Threat Research Labs

    Since IEDefender spyware components change constantly, you may come across application issues that prevent you from removing IEDefender completely. You can report IEDefender spyware components by using SpyHunter’s Free Support Log System. Our Support Log System takes snapshots of all the points of execution on your operating system, allowing us to precisely identify each and any problem. We encourage you to post your Support Logs on this article so we can help you come up with a custom fix. Below are the instructions on how to generate Support Logs using SpyHunter. Open SpyHunter > click on the “Generate Support Log” button > click on the “Copy to Clipboard” button to save your Support Logs > Post your Support Logs to this article.

    Disclaimer

    Warning!! Enigma Software Group can not be held responsible for any problems that may occur by using the information contained within this IEDefender removal guide. By following any of these IEDefender removal instructions, you agree to be bound by the disclaimer. If you do not agree, do not follow these IEDefender removal instructions. We make no guarantees that these IEDefender removal instructions will completely remove IEDefender. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means. In order to effectively clean and secure your computer, we recommend you purchase our spyware remover SpyHunter or seek professional help from a computer expert. ESG Support Center

    Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
    • Digg
    • del.icio.us
    • Furl
    • StumbleUpon
    • Technorati
    • YahooMyWeb
    This entry was posted on 12/25/07 and is filed under Rogue Anti-Spyware Program. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    Leave a Comment

    Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

    *
    To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
    Click to hear an audio file of the anti-spam word

    Top Malware

    Recommended Products

    Featured Videos

    Poll

    How much money have you spent trying to rid your PC of spyware?
    View Results

    Recent Articles

    Top FAQs


    Archives

    Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2009. Enigma Software Group USA, LLC. All Rights Reserved.