Fake Anti Spyware.GreatDefender - Spyware Detector

Home / Spyware Encyclopedia / Fake Anti Spyware.GreatDefender

Fake Anti Spyware.GreatDefender Technical Details

Category	Fake Anti Spyware
Discovered	12/30/2009 5:01:57 PM
Modified	1/2/2010 12:11:18 PM
Threat Level	High

Category Description

These are programs which look like any legitimate program but usually download without users permission, entice users into buying them by showing fake results to improve users PC performance. They may also download spyware and other unwanted programs.

Description

GreatDefender is Rogue Security Program. GreatDefender usually installed itself onto your PC without your permission, through Vundo Trojan, Virus or fake software. It uses aggressive and deceptive techniques to frighten the user into purchasing the program. It gives exaggerated report and claims of spyware found or false positives but will not remove spyware unless the user purchases the program.

Notice

Summary

The following http urls were started: NA

The hosts file was updated with the following url-to-ip mappings:

127.0.0.1	localhost
127.0.0.1	download.windowsupdate.com
127.0.0.1	http://update.microsoft.com

The following internet connection was established:

95.143.192.203 : 80

85.12.25.111 : 80

Process		greatdefender.exe
Drivers		N/A
Folder Created		%DAS.AU.SM.P%\GreatDefender %PF%\GreatDefender Software

The following Files were created:

Name	Version	Publisher	Signature (MD5)	File Size (in KB)
..\ajinzczq.exe	5.1.2600.5512	Microsoft Corporation	e844a5c869506bc7562869be299eb541	360960
..\greatdefender\greatdefender.exe	1.2.0.63	AntiSpy Software	b0a9cc80e7d883986ce55c2acaa7f16e	1635328
..\flash-hq-plugin.exe			0d07b86a25f32631f260d3744b4c0d24	66240
..\greatdefender.exe			d1a405b362684fe67891723e43b5bd7d	1731707

The following Registry Entries were created:

•	..\Software\greatdefender
•	..\Software\Microsoft\Windows\CurrentVersion\Uninstall\greatdefender
•	..\Software\Microsoft\Windows\CurrentVersion\Run\\"ajinzczq.exe"\"%win.sys32%\ajinzczq.exe"

The following images were captured:

Recommendation to remove Fake Anti Spyware.GreatDefender

Spyware Detector can remove Fake Anti Spyware.GreatDefender, and thousands of other Spyware automatically and instantly. Click here to download Spyware Detector and scan for free.

Download Spyware Detector and Scan for FREE

Search Threats