SpyHeal
SpyHeal is a purported anti-spyware application to scan for and remove spyware from users' computers. SpyHeal is known to be distributed through exploits that also download adware/spyware on users' computers without notice or consent. SpyHeal
typically shows balloon-like graphic that pops up from the system tray with a false warning that the computer is infected with spyware. Scan results report false positives in order to frighten the user into paying for the program.0
General information:
| Malware Name: |
SpyHeal |
| Malware Type: |
Rogue Security Program |
| Company Name: |
SpyHeal |
| Company URL: |
http://spyheal.com/
|
| Threat Level: |
Elevated Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
SpyHeal is the worldâs leading spyware solution that destroys spyware infections present on our PC while blocking and protecting our system from malicious intrusions before they become a problem. SpyHealâs deep computer scan seeks
out and destroys hidden spyware infiltrations and infections throughout your computerâs hard drive and removable media. SpyHealâs state of the art spyware monitoring system prevents spyware from entering and infecting your computer
â before it becomes a problem. Easily navigable menus and customizable options offer flexibility with maximum computer security.
Spyware Description:
SpyHeal is a purported anti-spyware application to scan for and remove spyware from users' computers. SpyHeal is known to be distributed through exploits that also download adware/spyware on users' computers without notice or consent. SpyHeal
typically shows balloon-like graphic that pops up from the system tray with a false warning that the computer is infected with spyware. Scan results report false positives in order to frighten the user into paying for the program.0
Characteristics/Symptoms:
-> False positives work as good to purchase -> False scan results -> Uses inadequate scan/detection scheme -> Uses out of date ref database0
Additional information might be found here:
Processes Running:
SpyHeal.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\[USER]\Start Menu\Programs\SpywareHeal\SpywareHeal 2.2.lnk |
634 |
Shortcut |
| C:\Documents and Settings\[USER]\Start Menu\Programs\SpywareHeal\Uninstall SpywareHeal 2.2.lnk |
607 |
Shortcut |
| C:\Program Files\SpywareHeal\antispy.sh |
1387104 |
SH File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\SpyHeal\Lang |
| C:\Program Files\SpyHeal\Logs |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionRun |
SpywareHeal |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallSpywareHeal |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstallSpywareHeal |
UninstallString |
