Home Malware Programs Rogue Anti-Spyware Programs AntiSpyHunter

AntiSpyHunter

Posted: August 22, 2008

AntiSpyHunter is a rogue anti-spyware program that, like many other rogue anti-spyware programs, uses the name of a legitimate anti-spyware program to either disguise themselves as a real anti-spyware program or to piggyback on the traffic coming from the brand name. In this case, AntiSpyHunter is using the trademark name SpyHunter. This tactic can lead to confusion for an Internet user since both programs have similar names. AntiSpyHunter is not associated with the legitimate anti-spyware program SpyHunter.

AntiSpyHunter installs on your computer system with the help of Trojan Zlob or other malicious methods. You may have also downloaded AntiSpyHunter from a rogue website thinking it would remove your spyware threats. Once AntiSpyHunter's trial version is installed, it will run a fake system scan to generate a list of spyware results that are supposedly found in your system. Along with this scan, popups and fake system alert messages may appear to "inform" you about your supposed infections.

If you click on any of these messages, you'll be redirected to AntiSpyHunter's rogue website to further download AntiSpyHunter's licensed version. The rogue website will promote AntiSpyHunter as a legit software, do not be tricked by its malicious tactics.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %ProgramFiles%\AntiSpyHunter\AntiSpyHunter.exe
    2 %ProgramFiles%\AntiSpyHunter\AntiSpyHunter.url
    3 %ProgramFiles%\AntiSpyHunter\unins000.dat
    4 %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\AntiSpyHunter.lnk
    5 %UserProfile%\Desktop\AntiSpyHunter.lnk
    6 %UserProfile%\Start Menu\Programs\AntiSpyHunter\AntiSpyHunter on the Web.lnk
    7 %UserProfile%\Start Menu\Programs\AntiSpyHunter\AntiSpyHunter.lnk
    8 %UserProfile%\Start Menu\Programs\AntiSpyHunter\Uninstall AntiSpyHunter.lnk
    9 AntiSpyHunter.exe

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run AntiSpyHunter
Loading...