Home Malware Programs Rogue Anti-Spyware Programs SpyDefender 2010

SpyDefender 2010

Posted: September 1, 2010

SpyDefender 2010 is a rogue anti-spyware program that spreads via Trojans. Once SpyDefender 2010 is inside a system it will display bogus scanners and security alerts claiming that the system is infected. Then SpyDefender 2010 will coerce the victim into purchasing its non-existent full version in order to remove the purportedly detected infections. SpyDefender 2010 should not be trusted and infected users should remove it upon detection.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 C:\Documents and Settings\All Users\Start Menu\Programs\SpyDefender\SpyDefender.lnk
    2 C:\Program Files\SpyDefender\bases.dat
    3 C:\Program Files\SpyDefender\regkey.dat
    4 C:\Program Files\SpyDefender\SpyDefender.exe
    5 C:\Program Files\SpyDefender\unins000.dat
    6 C:\Program Files\SpyDefender\unins000.exe

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}HKEY_LOCAL_MACHINE\software\microsoft\Windows\CurrentVersion\Run "SpyDefender"HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}{BA08E0F5-6963-4013-AAA6-40976F428F86}_is1
Loading...