Installdiskscaner.net

Installdiskscaner.net is a browser hijacker promoting the rogue anti-spyware application known as System Security 2009. Due to affiliated trojans infiltrating the computer through security vulnerabilities and modifying the browser settings, web-surfing activities are redirected to the Installdiskscaner.net domain. Here the computer is subject to a fake online scan that reports fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing the fake spyware remover System Security 2009. Author of Installdiskscaner.net: Innovagest2000

Posted on May 27, 2009 in Rogue Websites

Trojan.Agent.amjj

Trojan.Agent.amjj typically infiltrates a system via security vulnerabilities, though sometimes it may be installed manually, without a user's knowledge or permission. Once installed, Trojan.Agent.amjj may compromise a machine further by downloading and installing additional malware onto the computer. Login and password information, as well as personal and financial data, is at risk of being sent to an unauthorized user who may use this knowledge to perform forged identity crimes.

Posted on May 27, 2009 in Trojans

Wowpa KI

Wowpa KI (also known as Trojan-GameThief.Win32.WOW.fqt and Trojan-Downloader.Win32.Agent.biho by Kaspersky, PWS-Mmorpg.gen and Generic Downloader.x by McAfee, Mal/Generic-A by Sophos, and Infostealer.Gampass by Symantec) is a Trojan that infiltrates a computer through security vulnerabilities. As soon as Wowpa KI is installed and active in the system, Wowpa KI steals login and password information, sending it to a remote server. This invariably leads to identity theft.

Posted on May 27, 2009 in Trojans

Trojan.Clicker.VB.cvt

Trojan.Clicker.VB.cvt is a computer infection that is known to slip into a system through a browser exploit or security hole. Trojan.Clicker.VB.cvt, once installed, may compromise personal information stored on the computer allowing a remote attacker to gain access to it. In addition to Trojan.Clicker.VB.cvt allowing hackers access, it may install additional malicious applications or files onto the system without any informed consent. Trojan.Clicker.VB.cvt may be difficult to manually detect or remove in many cases.

Posted on May 27, 2009 in Trojans

Virusinfocheck.com

Virusinfocheck.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Typically intruding Trojan viruses will modify your browser settings in order to redirect your web-surfing activities to the virusinfocheck.com domain, where a false online scan of your computer reports fabricated infection results. This is to ensure you are intimidated enough to purchase and install Personal Antivirus.

Posted on May 27, 2009 in Rogue Websites

Trojan.Downloader.Nonaco

Trojan.Downloader.Nonaco is a harmful downloader trojan horse, a modification of the destructive Nonaco trojan horse family. TrojanDownloader:Win32/Nonaco is usually spread via unknown spam e-mail attachments, suspicious shareware and file sharing utilities or via porn adult websites. Once trojan horse Nonaco is inside a system it will install 784953.dll, 219725.dll payloads and download additional malware infections onto the infected system.

Posted on May 27, 2009 in Trojans

Securityimplement.com

Securityimplement.com is a browser hijacker promoting the rogue anti-spyware application known as System Security 2009. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Securityimplement.com domain. Here the computer is subject to a fake online scan that reports fictitious and sometimes grossly exaggerated infection results, in order to intimidate the user into purchasing the fake spyware remover System Security 2009. Author of Securityimplement.com: Innovagest2000

Posted on May 27, 2009 in Rogue Websites

"WinPC Antivirus Firewall Warning"

"WinPC Antivirus Firewall" Warning is one of several falsified security alerts generated by WinPC Antivirus. This fake antivirus reports nonexistent problems to fool people into purchasing the program. The "WinPC Antivirus Firewall" Warning message reads as follows: "FIREWALL WARNING Hidden file transfer to remote host was detected WinPC Anrivirus has detected that somebody is trying to transfer your private data via Internet. We strongly recommend you to block the attack immediately. Details of the attack Remote host transfer IP: 97.216.34.74 Remote user computer name: FORENSICS User E-mail: IP-adress: Blocking is recommended [Block attack] [Allow]" "WinPC Antivirus Firewall" Warning is a clear symptom of Win PC Antivirus residing on a computer. Remove WinPCAntivirus in order to remove pop-ups such as "Win PC Antivirus Firewall" Warning.

Posted on May 27, 2009 in Fake Error Messages

Winpcantivirus2010.com

Winpcantivirus2010.com is a browser hijacker promoting the rogue anti-spyware application known as WinPC Antivirus. Due to affiliated trojans infiltrating the computer and modifying the browser settings, web-surfing activities are redirected to the Winpcantivirus2010.com domain. Here the computer is subject to a fake online scan that reports fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing the fake spyware remover WinPC Antivirus.

Posted on May 27, 2009 in Rogue Websites

Small AB

Small AB is a downloader Trojan that infiltrates a computer through system vulnerabilities. Once Small AB is active inside the computer, it typically downloads additional malware onto the system. Small AB may also lead to identity theft, increase the chance of hacker botnets and bombard the compromised machine with annoying popup windows.

Posted on May 26, 2009 in Trojans

'Spyware Protect 2009 Windows Security Alert' Fake Message

'Spyware Protect 2009 Windows Security Alert' or simply 'Windows Security Alert', is a fake system alert created by rogue anti-spyware application Spyware Protect 2009. The alert message reads as follows: "Windows Security alert. Windows reports that this computer is infected. Antivirus software helps to protect your computer against viruses and other security threats. Click here to scan your computer. Your system might be at risk now." Following this security notification's prompts will result in the user downloading and installing the fake spyware remover Spyware Protect 2009.

Posted on May 26, 2009 in Fake Error Messages

Backdoor.Small.uc

Backdoor.Small.uc is a malicious backdoor infection that may be installed onto a computer via security exploits or through additional malware, in most cases without the user's informed consent . Once active on the system, Backdoor.Win32.Small.uc opens a remote link to an outside attacker, leaving personal and financial data information vulnerable and exposed. This can lead to identity theft.

Posted on May 26, 2009 in Backdoors

Backdoor.Refpron

Backdoor.Refpron (referred to as Backdoor:Win32/Refpron.M by Sophos) is a backdoor Trojan that provides an unauthorized user with remote access, and in some cases complete control, of a victim's system. Thus Backdoor.Refpron places any and all personal and financial information data at great risk of being stolen, while other files may be uploaded, downloaded and deleted from the hard drive. Computer security and stability may be further degraded as Backdoor.Refpron can download other malicious applications.

Posted on May 26, 2009 in Backdoors

"Presto Tuneup System Alert"

Presto Tuneup System Alert is a fake security notification that reads as follows: "System Alert Needless programs and files have been detected on your PC. Click here to remove them immediately with Presto Tuneup." This is not a legitimate system alert, and in reality, this warning message is displayed by the rogue anti-spyware program Presto Tuneup - a malicious application that utilizes the Presto Tuneup System Alert and other schemes to persuade people to purchase this fake spyware remover.

Posted on May 26, 2009 in Fake Error Messages

Presto TuneUp

Presto TuneUp screenshot

Presto TuneUp is a rogue anti-spyware application and clone of Fast Antivirus 2009. Presto TuneUp belongs to the family and is a program that is able to generate fake system scan results for the purpose of forcing computer users to purchase a full version of the Presto TuneUp application. Once installed, usually by a Trojan horse infection, Presto TuneUp displays aggressive popup alerts and system warnings further confusing computer users. Presto TuneUp is not able to detect or remove computer parasites infections as it claims to on the prestotuneup.com website. Presto TuneUp is heavily advertised on www.pestotuneup.com. It is highly advisable that computer users avoid use of the...

Posted on May 22, 2009 in Rogue Anti-Spyware Program