SpyHunter

SpyHunter

http://www.enigmasoftware.com/products/spyhunter/

SpyHunter is a powerful, real-time anti-spyware application certified by West Coast Labs’ Checkmark Certification System and designed to assist the average computer user in protecting their PC from malicious threats. SpyHunter is automatically configured to give you optimal protection with limited interaction, so all you need to do is install it for immediate and ongoing protection. As malware continues to evolve and become more sophisticated to avoid detection by anti-spyware/anti-virus programs, SpyHunter responds with advanced technology to stay one step ahead of today’s malware threats. SpyHunter offers additional customization capabilities to ensure every user is able to custom tailor SpyHunter to fit their specific needs. SpyHunter has the ability to detect and remove rootkits, which are used to stealth install rogue anti-spyware programs and other trojans. Rootkits use hidden and encrypted files and folders to avoid detection by traditional security software. SpyHunter’s newly integrated advanced rootkit detection technology allows it to perform an instant rootkit scan and promptly display a message upon detection. SpyHunter will then ask the user to reboot the computer and will remove the rootkit during the reboot process. In order to remove rootkits completely, Windows must be stopped upon boot because rootkits utilize other files that load and run with Windows. Therefore, to prevent rootkits from regenerating on a user’s computer, we’ve added a Compact OS into SpyHunter that allows your system to be booted without Windows so that the rootkit may be removed from your computer. If SpyHunter is not able to automatically remove a malware object, the Spyware HelpDesk, an interactive feature integrated into SpyHunter, allows our technicians to remotely analyze your machine and directly deliver a custom fix to specific malware problems that may be unique to your computer.

This software does not change the Windows boot time.

SPYHUNTER4.EXE Description: SpyHunter4 application Enigma Software Group USA, LLC. SpyHunter4 4.9.11.3987 MD5= 2E2E4803865E8C32C61FEA10DF017CB7 File is signed and the signature was verified. File size= 5076416 Related registry changes: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-21-1659004503-1708537768-1801674531-500\COMPONENTS\799475A3B22A0B94085DE6AF372B869F\F0D798E9408F3A1469C6B76BBEB5B68E: “%PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPYHUNTER4.EXE” HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\SPYHUNTER SECURITY SUITE: “%PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPYHUNTER4.EXE” HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{9E897D0F-F804-41A3-966C-7BB6EB5B6BE8}\DISPLAYICON: “%PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPYHUNTER4.EXE,0″
ESGIGUARD.SYS MD5= 2407B8164E966755BC6A4242FC9DE31E File is signed and the signature was verified. File size= 13904 Related registry changes: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-21-1659004503-1708537768-1801674531-500\COMPONENTS\1174B92FA6FF5564AB7271588E41DD45\F0D798E9408F3A1469C6B76BBEB5B68E: “%PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ESGIGUARD.SYS” HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ESGIGUARD\IMAGEPATH: “\??\%PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ESGIGUARD.SYS
SH4SER~1.EXE Description: Service SpyHunter 4 Service SpyHunter 4 Helper Service Start Type: loaded automatically by Server Manager Service scanner interface Enigma Software Group USA, LLC. SpyHunter4 4.9.11.3987 MD5= 05580AC1C1CD96D04EF74EBD18DC81C3 File is signed and the signature was verified. File size= 763840 Related registry changes: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SPYHUNTER 4 SERVICE\IMAGEPATH: “%PROGRAM FILES%\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE

Modified during installation:

~+ [INTERNET EXPLORER] [PROXY] :HKCU PROXYSERVER=”” ~- [INTERNET EXPLORER] [PROXY] :HKCU PROXYSERVER=FTP=192.168.174.1:808;HTTP=192.168.174.1:808;HTTPS=192.168.174.1:808;SOCKS=192.168.174.1:1080 ~+ [INTERNET EXPLORER] [PROXY] :HKCU PROXYENABLE=0 ~- [INTERNET EXPLORER] [PROXY] :HKCU PROXYENABLE=1 FILES ADDED:50

%APPDATA%\MICROSOFT\INSTALLER\{9E897D0F-F804-41A3-966C-7BB6EB5B6BE8}\ICONCF33A0CE.EXE %APPDATA%\MICROSOFT\INSTALLER\{9E897D0F-F804-41A3-966C-7BB6EB5B6BE8}\ICOND7F16134.EXE %APPDATA%\MICROSOFT\INSTALLER\{9E897D0F-F804-41A3-966C-7BB6EB5B6BE8}\ICONF7A21AF7.EXE %DESKTOP%\SPYHUNTER.LNK %PROGRAMS%\SPYHUNTER\SPYHUNTER EMERGENCY STARTUP.LNK %PROGRAMS%\SPYHUNTER\SPYHUNTER.LNK %PROGRAMS%\SPYHUNTER\UNINSTALL SPYHUNTER.LNK %PROGRAM FILES COMMON%\WISE INSTALLATION WIZARD\WIS9E897D0FF80441A3966C7BB6EB5B6BE8_4_9_11_3987.MSI %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\COMMON.DLL %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\CZECH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DANISH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DATA\DNS.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DATA\PROXY.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DEFMAN.DLL %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DEFS\2012062701.DEF %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DEFS\DEF.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DUTCH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ENGLISH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ESGIGUARD.SYS %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ESGRKCHK.EXE %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\EXECUTIONGUARD.DLL %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\FRENCH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\GERMAN.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\GIL.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\INSTALL.LOG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\ITALIAN.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\LICENSE.TXT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\LITHUANIAN.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\LOG\SPYHUNTER4_20120702_114356.LOG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\LOG\SPYHUNTER4_20120702_114613.LOG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\NATIVE.EXE %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\NORWEGIAN.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\PORTUGUESE.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\PURL.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SAFEOL.DAT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SCANLOG.LOG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SH4.COM %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SH4SERVICE.EXE %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SHDS.MHT %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SHSCANNER.DLL %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPANISH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SPYHUNTER4.EXE %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\SWEDISH.LNG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\UNKCACHE.DAT %WinDir%\INSTALLER\14600.MSI %WinDir%\9E897D0FF80441A3966C7BB6EB5B6BE8.TMP\WISECUSTOMCALLA21.EXE C:\SH4LDR\INITRD.GZ C:\SH4LDR\SHLDR C:\SH4LDR\SHLDR.MBR C:\SH4LDR\VMLINUZ

FILES[ATTR]MODIFIED:3

%PROFILE%\IETLDCACHE\INDEX.DAT %TEMP%\CE4CF87733651BF1F44DD1E02FC1A8E8 %SYSDIR%\DRIVERS\ETC\HOSTS

FOLDERS ADDED:13

%APPDATA%\MICROSOFT\INSTALLER %APPDATA%\MICROSOFT\INSTALLER\{9E897D0F-F804-41A3-966C-7BB6EB5B6BE8} %PROGRAMS%\SPYHUNTER %PROGRAM FILES COMMON%\WISE INSTALLATION WIZARD %PROGRAM FILES%\ENIGMA SOFTWARE GROUP %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DATA %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DEFS %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\DOWNLOADS %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\LOG %PROGRAM FILES%\ENIGMA SOFTWARE GROUP\SPYHUNTER\MON %WinDir%\9E897D0FF80441A3966C7BB6EB5B6BE8.TMP C:\SH4LDR

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit is required. Reviews. EULA. Privacy Policy.

Leave a Reply