Threat Database Rogue Websites is a rogue website that promotes the fake anti-spyware application Personal Defender 2009. Once the PC is infected the user’s homepage will be redirected to the rogue site. False pop-ups and alerts will appear stating that Trojan-Spy.Win32.Banker.aiw has infected the user’s computer. It is important to remember that these fabricated infections and alerts appear for the sole purpose of misleading the user into purchasing the full version Personal Defender 2009 application. It is advisable that the user remove the infection without hesitation.

File System Details may create the following file(s):
# File Name Detections
1. ictun.exe
2. isfun.exe
3. pmmon.exe
4. VideoAccessCodecInstall.exe
5. zafhemm.dll
6. isfmntr.exe
7. isfmm.exe
8. msmsgs.exe
9. xbaqktfv.exe
10. gtawclv.dll
11. icmntr.exe
12. icun.exe
13. nvctrl.exe
14. spwoqbmv.exe
15. duzakwq.dll
16. Security Troubleshooting.url
17. Online Security Guide.url

Registry Details may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IExplorer Security Plug-in
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Explorer Secure Bar

URLs may call the following URLs:


Most Viewed