HeretoFind is adware that may redirect all of your URLs beginning with "http://" or "www." to, due to affiliated trojans infiltrating your computer via security exploits and modifying your browser settings.

Posted on September 19, 2008 in Browser Hijackers

Antivirus Lab 2009

Antivirus Lab 2009, AntivirusLab 2009 or AntivirusLab 2009 2.1, is a rogue anti-spyware program. Antivirus Lab 2009 is known to deceive computer users with fake security warning messages stating that their computer system is flooded with spyware. This tactic is widely used by many rogues roaming the Internet today, their final purpose is to sell a fake anti-spyware program as a legitimate software. Antivirus Lab 2009 promises to remove the user's spyware infections once he/she has spent his/her money on this major scam. Antivirus Lab 2009 may be installed with the help of Trojans through a fake video codec download or from a rogue website. Users usually download Antivirus Lab 2009's trial version thinking it'll be an effective spyware remover. In addition, Antivirus Lab 2009 may display fake system tray alerts and launch its fake...

Posted on September 18, 2008 in Rogue Anti-Spyware Program

AntiMalware 2009

AntiMalware 2009 or AntiMalware2009, is a rogue anti-spyware program. AntiMalware 2009 is usually installed in the user's computer system with the help of Trojan Zlob or the user may have downloaded it from a malicious website. Once installed, the user may receive annoying popup notifications of imaginary spyware infections. These fake notifications redirect the user to fraudulent websites, such as, that sell AntiMalware 2009 as a legitimate software. AntiMalware 2009 is not able to detect nor remove any spyware infections. AntiMalware 2009 is an infection itself. In addition, AntiMalware 2009 is able to emulate a computer system scan and trick users into believing their computer systems are flooded with spyware. The result of this scan is entirely bogus and is only meant to push users into purchasing the "full"...

Posted on September 18, 2008 in Rogue Anti-Spyware Program


InstantAccess is a porn dialer which, by exploiting the user's modem, connects to pornographic servers. InstantAccess automatically launches on every startup and reboot. This will result in the user's phone line being charged high rates. Additional malware may also be installed by InstantAccess.

Posted on September 14, 2008 in Dialers

MicroAV Security Center

MicroAV Security Center is a rogue anti-spyware program. MicroAV Security Center is popularly known to use dubious mechanisms to steal money from computer users. MicroAV Security Center may be installed in the user's computer system by a Trojan bundled in a fake video codec download or the user may have downloaded it thinking it would remove his/her spyware infections. Once infected, the user may receive numerous popups stating that the user's computer system is flooded with spyware. In order to remove these imaginary threats, the user will be urged to purchase MicroAV Security Center's full version. However, MicroAV Security Center is not able to detect nor remove any spyware in the system. In addition, MicroAV Security Center may run its fake system scanner to "detect" spyware infections in the user's computer system. Once the fake...

Posted on September 12, 2008 in Rogue Anti-Spyware Program

ErrorSmart, Trojan.Small.bpu, more – SpyHunter Update v.9.20

SpyHunter Spyware Definitions Update: v.9.20 (09/11/2008) SpyHunter Latest Program Update: v.3.5.11 ErrorDoctor Golden Palace Casino Trojan.FakeAlert MSLagent System Antivirus 2008 Trojan.Downloader.Exchanger Trojan.Generic Trojan.VB.cpy Zlob.Trojan MSAntivirus 2008 Trojan.Obfuscated.gx Cleaner 2009 Trojan.Vundo Spyware Preventer Advanced Antivirus

Posted on September 11, 2008 in Database Updates

XP Protector 2009, Trojan.Downloader.Agent.vsa, SpyDevastator, more – SpyHunter Update v.9.19

SpyHunter Spyware Definitions Update: v.9.19 (09/10/2008) SpyHunter Latest Program Update: v.3.5.11 XPSecurityCenter Zlob.Trojan WinReanimator Trojan.Vapsup Virtumonde Trojan.Generic Internet Antivirus Antivirus 2009 Trojan.Vundo Trojan.FakeAlert Trojan.Obfuscated.gx

Posted on September 10, 2008 in Database Updates


Flooder.AOL.Ikobur overloads an internet connection by pinging which results in a DoS attack. These type of malicious attacks by hackers prevent users from using a website or service. Servers can be jammed or corrupted by such methods. Flooders may also be used for e-mail flooding.

Posted on September 10, 2008 in Flooders

Micro Antivirus 2009

Micro Antivirus 2009 or MicroAntivirus2009, is a rogue anti-spyware application, clone of MS Antivirus 2008. Micro Antivirus 2009 may have installed in the user's computer system by Trojan Zlob bundled in a fake video codec installation. Once infected, the user will receive a large amount of fake popup adverts and system notification messages informing the user about imaginary spyware threats found on his/her computer. Micro Antivirus 2009 will then offer Micro Antivirus 2009's full version to remove the imaginary spyware infections. Micro Antivirus 2009 may also display a rogue icon on the user's system tray stating that the user's computer is infected with spyware. Micro Antivirus 2009 may also launch its rogue system scanner and emulate a computer system scan. Micro Antivirus 2009 will then display a list of spyware infections and...

Posted on September 10, 2008 in Rogue Anti-Spyware Program

Trojan.Downloader.VB, Smart Antivirus 2009, XLG Security Center, more – SpyHunter Update v.9.18

SpyHunter Spyware Definitions Update: v.9.18 (09/09/2008) SpyHunter Latest Program Update: v.3.5.11 PWSteal.LdPinch Zlob.Trojan Trojan.FakeAlert Trojan.Generic Adware.ContextProgram.BHO Trojan-Downloader.aih PC Protection Center 2008 MSAntivirus 2008 PCHealthCenter XPAntivirus Antispyware 2008 XP Antivirus 2009 Windows Antivirus 2008 Vista Antivirus 2008 VirusRemover 2008 PCPrivacyCleaner Trojan.Vapsup TotalSecure2009 System Antivirus 2008 Deskbar Trojan.Inject.apd

Posted on September 9, 2008 in Database Updates

Protect your Visa card online with a personal password

"Protect your Visa card online with a personal password" email is a phishing scam. "Protect your Visa card online with a personal password" email informs you that you need to protect your Visa card with a new password. The email links to a scam webpage to steal your personal account information. The text of the email reads: "Subject: Protect your Visa card online with a personal password From: Reply-To: Verified by Visa protects your existing Visa card with a password you create, giving you assurance that only you can use your Visa card online. Simply activate your card and create your personal password. You'll get the added confidence that your Visa card is safe when you shop at participating online stores. You may activate now by entering your card number over our secure server. If your card issuer is participating...

Posted on September 9, 2008 in Phishing


EasyServ is a backdoor trojan that gives an attacker unauthorized remote access to a compromised computer. The threat runs a web server that shows the directory structure of any specified local hard drive. The intruder can steal any file using a web-based interface. EasyServ automatically runs on every Windows startup.

Posted on September 9, 2008 in Backdoors

Security Toolbar

Security Toolbar (Security Toolbar 7.1) is a nasty toolbar that has the ability to hijack your browser and redirect it to malicious websites that promote corrupt anti-spyware applications. Security Toolbar is notorious for unauthorized self-installation and transmission of additional parasites onto your computer. Security Toolbar will also pop-up large amounts of non-existent threat reports, in hopes of tricking you into buying a rogue anti-spyware application. If a computer user does not succumb to its offers, Security Toolbar may download and install a trial version of a certain rogue anti-spyware application that will also bombard the desktop with fake warning messages. Immediate removal of Security Toolbar is strongly recommended. Toolbars are very common among many web browser applications. The scrupulous creators of Security...

Posted on September 8, 2008 in Browser Hijackers


CoolWebSearch.image, a CWS variant and also known as CWS.image, is a malicious browser hijacker. CoolWebSearch.image takes advantage of security flaws in a web browser. Once installed, CoolWebSearch.image will change the user's browser settings, modify and redirect the homepage to its official site, display pop-up advertisements and conceal itself from detection. One possible sign of installation of the CoolWebSearch.image malware and of becoming infected is if the user sees the error message: "cannot find C:\WINDOWS\image.dll". CoolWebSearch.image will also reinstall itself after each startup and reboot. The user is advised to run a scan with reliable anti-spyware software to detect and remove the CoolWebSearch.image infection.

Posted on September 7, 2008 in Browser Hijackers

Cleaner 2009

Cleaner 2009 screenshot

Cleaner 2009 (or Cleaner2009) is another in the long line of rogue anti-spyware applications attempting to steal your money through aggressive advertising and scare tactics. Cleaner2009 performs system scans that show false positives and exaggerated spyware results. Though Cleaner 2009 attempts to appear legitimate, it is not a program you want to have on your computer. It is both a waste of time and most importantly, money. Cleaner 2009 prompts you with numerous warning messages and popups that state Cleaner2009 has detected spyware on your PC. Clearn2009 then bombards you with advertisements suggesting you purchase the full version of the Cleaner2009 application. The Cleaner 2009...

Posted on September 6, 2008 in Rogue Anti-Spyware Program