Ultimate Defender
|
Description:
|
Rogue Security Program
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Monday, April 21, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Rogue/Suspect Anti-Spyware Product
"Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Ultimate Defender"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\Ultimate Defender\Uninstall.exe
MD5: D4D3895B7CA26D5B2AC89599EAAD1992 Size:194256
MD5: 7AEA438D83EA0F4756A3B44C6BA69327 Size:198352
MD5: CADAF43678DECC713072F1A3A894CAA3 Size:192512
MD5: D4D3895B7CA26D5B2AC89599EAAD1992
%PROGRAMFILES%\Ultimate Defender\IeSafe.exe
MD5: 952872CB80F4C5D3994E9365D32BD82C Size:91856
%PROGRAMFILES%\Ultimate Defender\app.exe
MD5: CE24D61C11693BEE39D755A34B80EAE7 Size:1394384
%PROGRAMFILES%\Ultimate Defender\UltimateDefender.exe
MD5: 49C3C8F658A94D606C952A1552A04D70 Size:1296080
MD5: F33FC22EE22D1EF44AB8AF6BF159C5A9
%PROGRAMFILES%\Ultimate Defender\u0000019a.exe
MD5: 2F5B5DE886CBA060F9B37683436A2478 Size:50896
- Detected Files with variable Filenames:
MD5: F33FC22EE22D1EF44AB8AF6BF159C5A9 Size: 1304272
%PROGRAMFILES%\Ultimate Defender\UltimateDefender.exe
%SystemDiskRoot%\System Volume Information\_restore{48217A35-1A9B-4024-B732-47C966D1CABF}\RP1\A0001093.exe
%SystemDiskRoot%\System Volume Information\_restore{64C55BAE-0167-4E29-A424-980E0BCA06F2}\RP156\A0183656.exe
%PROGRAMFILES%\Ultimate Defender\UltimateDefender.exe.bak
Detecting items list:
- Files by Name
%START_PROGRAMSALL%\Ultimate Defender\Ultimate Defender Uninstall.lnk
%START_PROGRAMSALL%\Ultimate Defender\Ultimate Defender.lnk
%PROGRAMFILES%\Ultimate Defender\UltimateDefender.exe
- Files by MD5
MD5: F33FC22EE22D1EF44AB8AF6BF159C5A9 Size: 1304272
- Files by Directories
%START_PROGRAMSALL%\Ultimate Defender
%PROGRAMFILES%\Ultimate Defender
- Registry Keys
HKLM\SOFTWARE\Ultimate Defender
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ultimate Defender
HKCU\Software\Ultimate Defender
- Registry Values
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=Ultimate Defender
«
Go to Software Database