System Check

Posted: December 30, 2011
Threat Metric
Threat Level: 10/10
Infected PCs 37

System Check Description

System Check Screenshot 1System Check may look just like a broad-featured file-checker and defragmenter, but in reality, System Check lacks any of the multitudes of features that System Check claims to have. Due to its lack of value as a defragger, System Check creates fake alerts and errors in hopes of bamboozling you into spending money on its full version before you realize that these warnings are fake. Because System Check is a clone of preexisting types of rogue defraggers and shares their characteristics, including a proclivity towards browser redirects attacks and attacks that attempt to conceal program shortcuts, SpywareRemove.com malware researchers recommend that you delete System Check ASAP with any anti-malware program that's capable of handling scamware-based PC threats.

A Revamped Rogue Defragger with the Same Hoax Behind Its Warnings

System Check, despite being marketed as a product unto itself, is simply a clone of other types of fake defragmenters from the FakeSysDef with a fresh appearance and name to make System Check appear reputable. Examples of clones of System Check that SpywareRemove.com malware researchers have rounded up include System Defragmenter, Ultra Defragger, HDD Control, Win HDD, Win Defrag, Win Defragmenter, Disk Doctor, Hard Drive Diagnostic, HDD Diagnostic, HDD Plus, HDD Repair, HDD Rescue, Smart HDD, Defragmenter, HDD Tools, Disk Repair, Windows Optimization Center, Scanner, HDD Low and Hdd Fix. In most cases, infection by System Check or a similar type of rogue defragger is the result of contact with a malicious website or advertisement that installs System Check via drive-by-download scripts. This is often disguised in the form of a fake warning message or online scanner for your PC.

Major characteristics of System Check and other scamware from its family include:

  • Fake alerts and errors that describe problems that aren't actually afflicting your computer. This is a prelude to requests by System Check to purchase a full version of its software to remove nonexistent PC threats.
  • Web browser hijacks which leads your browser to hostile sites like System Check's own homepage.
  • Attacks on your file-viewing preferences that hide files from Windows Explorer (the default file-viewing program for the Windows OS).
  • Moving program shortcuts to obscure and arbitrary locations such as your Temp folder.

System Check: A New Lie for Each Checkup

Because contact with System Check's website, which System Check will constantly-redirect your browser towards, can be considered a security risk, and because System Check lacks any non-malicious functions, SpywareRemove.com malware experts advise that you delete System Check as soon as System Check's presence is made clear. Anti-malware program that are capable of removing System Check's clones should also be apt at removing System Check, which hasn't been found to include any updated defenses. However, you should be certain to disable System Check and any related PC threats (such as Trojan droppers) prior to scanning your PC.

You should also strive to avoid paying credence to any of System Check's fake alerts and warnings, which can come in a wide range of formats and may present alarming, if false, information.

System Check Screenshot 2System Check Screenshot 3System Check Screenshot 4System Check Screenshot 5System Check Screenshot 6System Check Screenshot 7System Check Screenshot 8

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to System Check may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%ALLUSERSPROFILE%\Application Data\cDdouyYokr9NKbE.exe File name: cDdouyYokr9NKbE.exe
Size: 355.57 KB (355576 bytes)
MD5: 79734449cfb8415815378fb06b29d2cf
Detection count: 83
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data\
Group: Malware file
Last Updated: January 2, 2012
%ALLUSERSPROFILE%\Application Data\yhyz0qorihyGn.exe File name: yhyz0qorihyGn.exe
Size: 651.77 KB (651776 bytes)
MD5: 9ae7080af36215007c50f440567e2bc3
Detection count: 8
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data\
Group: Malware file
Last Updated: January 2, 2012
%ALLUSERSPROFILE%\Application Data\zayz0qorhnhyGn.exe File name: zayz0qorhnhyGn.exe
Size: 450.8 KB (450808 bytes)
MD5: 2f49377701f33764160faacfe1698024
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data\
Group: Malware file
Last Updated: January 2, 2012
%Temp%\smtmp\ File name: %Temp%\smtmp\
Group: Malware file
%Temp%\smtmp\1 File name: %Temp%\smtmp\1
Group: Malware file
%Temp%\smtmp\2 File name: %Temp%\smtmp\2
Group: Malware file
%Temp%\smtmp\3 File name: %Temp%\smtmp\3
Group: Malware file
%Temp%\smtmp\4 File name: %Temp%\smtmp\4
Group: Malware file
%Documents and Settings%\[USERNAME]\Local Settings\System Check\[RANDOM] File name: %Documents and Settings%\[USERNAME]\Local Settings\System Check\[RANDOM]
Group: Malware file
%Documents and Settings%\[USERNAME]\Local Settings\System Check\[RANDOM].exe File name: %Documents and Settings%\[USERNAME]\Local Settings\System Check\[RANDOM].exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%Documents and Settings%\[USERNAME]\Local Settings\Application Data\~[RANDOM] File name: %Documents and Settings%\[USERNAME]\Local Settings\Application Data\~[RANDOM]
Group: Malware file
%Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\ File name: %Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\
Group: Malware file
%Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\System Check.lnk File name: %Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\Uninstall System Check.lnk File name: %Documents and Settings%\[USERNAME]\Start Menu\\Programs\System Check\Uninstall System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%Documents and Settings%\[USERNAME]\Desktop\System Check.lnk File name: %Documents and Settings%\[USERNAME]\Desktop\System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%StartMenu%\Programs\System Check\ File name: %StartMenu%\Programs\System Check\
Group: Malware file
%StartMenu%\Programs\System Check\System Check.lnk File name: %StartMenu%\Programs\System Check\System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%StartMenu%\Programs\System Check\Uninstall System Check.lnk File name: %StartMenu%\Programs\System Check\Uninstall System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file
%UserProfile%\Desktop\System Check.lnk File name: %UserProfile%\Desktop\System Check.lnk
File type: Shortcut
Mime Type: unknown/lnk
Group: Malware file

Additional Information

The following messages's were detected:
# Message
1Critical Error RAM memory usage is critically high. RAM memory failure.
2Critical Error! Damaged hard drive clusters detected. Private data is at risk.
3System Error An error occurred while reading system files. Run a system diagnostic utility to check your hard disk drive for errors.

14 Comments

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.