Softwaredefense.net

By LoneStar in Browser Hijackers

Translate To:

Softwaredefense.net is a deceptive website that is only encountered by victims that have been infected with Trojans related to the malicious website. Softwaredefense.net is able to redirect a browser to a fake online system scanner that will indicate that your system is infected with dangerous malware. The scan is run by the rogue security application Ghost Antivirus, therefore all scan reports are fabricated. The aim of Softwaredefense.net is to scare users into purchasing the "full version" of Ghost Antivirus in order to remove the purportedly detected malware. If you encounter Softwaredefense.net on your system, it is recommended that you install a legitimate security application to completely remove Softwaredefense.net and all malware related to it.

File System Details

Softwaredefense.net may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%WINDOWS%\system32\[random].dll
Name: %WINDOWS%\system32\[random].dll Type: Dynamic link library
2.	[random path]\[random]onin.exe
Name: [random path]\[random]onin.exe Type: Executable File
3.	%Program Files%\Ghost Antivirus\lib\WMILib.dll
Name: %Program Files%\Ghost Antivirus\lib\WMILib.dll Type: Dynamic link library
4.	%UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
Name: %UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe Type: Executable File
5.	%Program Files%\Ghost Antivirus\GhostAV.exe
Name: %Program Files%\Ghost Antivirus\GhostAV.exe Type: Executable File
6.	%UserProfile%\Application Data\Ghost Antivirus\unins000.exe
Name: %UserProfile%\Application Data\Ghost Antivirus\unins000.exe Type: Executable File
7.	%Program Files%\Ghost Antivirus\unins000.dat
Name: %Program Files%\Ghost Antivirus\unins000.dat Type: Data file
8.	%Program Files%\Ghost Antivirus\working.log
Name: %Program Files%\Ghost Antivirus\working.log
9.	%Program Files%\Ghost Antivirus\lib\ghost.sql
Name: %Program Files%\Ghost Antivirus\lib\ghost.sql
10.	%Program Files%\Ghost Antivirus\lib\version.db
Name: %Program Files%\Ghost Antivirus\lib\version.db
11.	%Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Ghost Antivirus Home Page.lnk
Name: %Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Ghost Antivirus Home Page.lnk Type: Shortcut
12.	%UserProfile%\Application Data\Ghost Antivirus\
Name: %UserProfile%\Application Data\Ghost Antivirus\
13.	%UserProfile%\Application Data\Ghost Antivirus\Uninstall Ghost Antivirus.lnk
Name: %UserProfile%\Application Data\Ghost Antivirus\Uninstall Ghost Antivirus.lnk Type: Shortcut
14.	%UserProfile%\Application Data\Ghost Antivirus\lib\properties
Name: %UserProfile%\Application Data\Ghost Antivirus\lib\properties
15.	%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png
Name: %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png
16.	%UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
Name: %UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
17.	%Program Files%\Ghost Antivirus\register.ico
Name: %Program Files%\Ghost Antivirus\register.ico
18.	%Program Files%\Ghost Antivirus\web.ico
Name: %Program Files%\Ghost Antivirus\web.ico
19.	%Program Files%\Ghost Antivirus\lib\
Name: %Program Files%\Ghost Antivirus\lib\
20.	%Program Files%\Ghost Antivirus\lib\listing.cfg
Name: %Program Files%\Ghost Antivirus\lib\listing.cfg
21.	%Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\
Name: %Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\
22.	%Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Purchase License.lnk
Name: %Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Purchase License.lnk Type: Shortcut
23.	%UserProfile%\Application Data\Ghost Antivirus\uill.ini
Name: %UserProfile%\Application Data\Ghost Antivirus\uill.ini
24.	%UserProfile%\Application Data\Ghost Antivirus\lib\links.txt
Name: %UserProfile%\Application Data\Ghost Antivirus\lib\links.txt
25.	%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Ghost Antivirus.lnk
Name: %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Ghost Antivirus.lnk Type: Shortcut
26.	%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
Name: %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
27.	%Program Files%\Ghost Antivirus\
Name: %Program Files%\Ghost Antivirus\
28.	%Program Files%\Ghost Antivirus\uninst.ico
Name: %Program Files%\Ghost Antivirus\uninst.ico
29.	%Program Files%\Ghost Antivirus\Languages\
Name: %Program Files%\Ghost Antivirus\Languages\
30.	%Program Files%\Ghost Antivirus\lib\Infected.wav
Name: %Program Files%\Ghost Antivirus\lib\Infected.wav
31.	%Documents and Settings%\All Users\Desktop\Ghost Antivirus.lnk
Name: %Documents and Settings%\All Users\Desktop\Ghost Antivirus.lnk Type: Shortcut
32.	%Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Ghost Antivirus.lnk
Name: %Documents and Settings%\All Users\Start Menu\Programs\Ghost Antivirus\Ghost Antivirus.lnk Type: Shortcut
33.	%UserProfile%\Application Data\Ghost Antivirus\settings.ini
Name: %UserProfile%\Application Data\Ghost Antivirus\settings.ini
34.	%UserProfile%\Application Data\Ghost Antivirus\lib\
Name: %UserProfile%\Application Data\Ghost Antivirus\lib\
35.	%UserProfile%\Application Data\Ghost Antivirus\lib\times.conf
Name: %UserProfile%\Application Data\Ghost Antivirus\lib\times.conf
36.	%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png
Name: %UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png

Registry Details

Softwaredefense.net may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

HKEY_CURRENT_USER\Software\Microsoft\FTP

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ghost Antivirus_is1

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Softwaredefense.net

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen