« Shieldsafeness
Constructor.Win32.Bifrose.j »

SoftStronghold

No Comments
Sumo3000 By Sumo3000 in Rogue Anti-Spyware Program | 0 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...

SoftStronghold Description

 
 
Image Screenshot
[+] Click Image to Enlarge
 
 

SoftStronghold is a vicious rogue anti-spyware program that comes from the group of fake security programs known as WiniGuard, Soft Cop, Soft Soldier, TRE Antivirus and others. SoftStronghold is usually installed without permission through the use of a Trojan that pretends to be a video codec or flash player update.

Once SoftStronghold is installed onto a PC, then it can start to initiate system scans that display fake results all in an effort to get computer users to purchase a full version of SoftStronghold. SoftStronghold is not effective for the tasks of detecting and remove spyware parasites.

Type: Rogue AntiSpyware Programs

How Can You Detect SoftStronghold?

 
 

Download SpyHunter’s Detection Scanner
to Detect SoftStronghold.

 
 

SoftStronghold Technical Report

As new SoftStronghold details are reported by our customers and findings from our Threat Research Center, we will update this section.

The following SoftStronghold files with its MD5s were created in the system:

File Name File Size MD5
setup[1].exe 882334 303147c8c699434761e868c897eefe0a
SoftStronghold.exe 786432 f24a37e85ef69886dc1dd50e7f876e83

SoftStronghold has typically the following processes in memory:

  • C:\WINDOWS\10246h9zktool4d5.exe
  • C:\WINDOWS\system32\205z0sp95ad.exe
  • SoftStronghold.exe
  • C:\Program Files\SoftStronghold Software\SoftStronghold\uninstall.exe
  • C:\WINDOWS\system32\20151worm9z4.ocx
  • %Temp%\akx4.tmp.exe
  • C:\Program Files\SoftStronghold Software\SoftStronghold\SoftStronghold.exe
  • C:\WINDOWS\1045ztroj92a.ocx
  • C:\WINDOWS\system32\2069sz5mbot179.dll

SoftStronghold creates the following registry entries:

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftStronghold
  • SoftStronghold
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “SoftStronghold”
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “akx4.tmp.exe”
  • HKEY_CURRENT_USER\Software\SoftStronghold
  • HKEY_LOCAL_MACHINE\SOFTWARE\SoftStronghold

Important Article Disclaimer

ESG Support Center

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Technorati
  • YahooMyWeb
This entry was posted on 10/26/09 and is filed under Rogue Anti-Spyware Program. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Top Malware

Recommended Products

Featured Videos

Poll

How much money have you spent trying to rid your PC of spyware?
View Results

Recent Articles

Top FAQs

Follow Us on Twitter

Archives

Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2010. Enigma Software Group USA, LLC. All Rights Reserved.