What You Need to Know About Conficker

If you're not familiar with it yet, then you had best continue reading. The Conficker, also known as Downup, Downadup and Kido, is a computer worm that surfaced in October 2008 and targets the Microsoft Windows operating system. On Wednesday, April 1, the latest variant of the Conficker downloaded new instructions. The sophistication of this worm and its botnet had many concerned, though apparently the amount of legitimate concern is a matter of debate. If, however, you are concerned, then here are some things you should know: The overwhelming majority of systems infected with Conficker were infected due to vulnerability in the Windows RPC facilities. This vulnerability, however, was patched in October. If you happened to install that patch before Conficker was released (late December '08) then you were protected and still are. If you...

Posted on April 4, 2009 in Computer Security

Boo Bomber 2

Boo Bomber 2 is an application that overloads the connection by pinging. Pinging is a mechanism in which a weblog discloses to a server that it has updated its content. When an application overloads a connection it causes a DoS attack. A DoS attack is a denial-of-service attack which tries to make a network unable to operate by flooding it with worthless data of traffic.

Posted on April 4, 2009 in Flooders

ErrorRepair Tool

ErrorRepair Tool is a fraudulent registry cleaner that uses trojans in order to gain access to a computer and infiltrate it. Once active, ErrorRepair Tool launches numerous fake security alerts along with obsessive advertisement pop-ups in order to intimidate the user into purchasing the full version of ErrorRepair Tool.

Posted on April 3, 2009 in Malware


Antiviruslivescanv3.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Due to affiliated trojans infiltrating your computer via security exploits and modifying your browser settings, you will find your web-surfing activities being continuously redirected to the Antiviruslivescanv3.com domain. Here you are subject to a fake online scan that reports various fictitious infection results, all in order to scare you into purchasing Personal Antivirus.

Posted on April 3, 2009 in Rogue Websites

System Protector Fake Pop-Up

The 'System Protector' fake pop up is a misleading security alert that is closely associated with the rogue security program System Protector. Usually, the 'System Protector' fake pop up will appear as a notification from the Task Bar and will contain some variant of the following text: "System Protector Your system security status is LOW! Please change your security settings." "System Protector – Threats detected. WARNING! 9 vulnerabilities found!!! Dangerous malware and viruses have been found during last scan. It is strongly recommended to remove all found threats from your computer." Clicking on the 'System Protector' fake pop up will start the download and installation of System Protector. Once the installation process ends, the computer system reboots automatically. Due to the fact that System Protector makes changes to the...

Posted on April 2, 2009 in Fake Error Messages


WebSecurityVoice.com is a browser hijacker promoting the distribution of the rogue anti-spyware application known as System Security 2009. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the WebSecurityVoice.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing the fake spyware remover System Security 2009.

Posted on April 2, 2009 in Rogue Websites


Free-webscaners.com is a browser hijacker promoting the rogue anti-spyware application known as Antivirus XP Pro. It achieves this goal by infiltrating your computer with trojan viruses, which modify your browser settings in order to redirect web-surfing activities to the free-webscaners.com domain. Here your computer is subject to aggressive advertising and fake online scans, all of which report fictitious infection results hoping to scare you into purchasing and installing Antivirus XP Pro.

Posted on April 2, 2009 in Rogue Websites

System Security 2009

System Security 2009, also known as System Security, is a rogue anti-spyware application. System Security 2009 may infiltrate the computer via security vulnerabilities and backdoors provided by affiliated trojans. Once active, System Security 2009 is configured to start automatically, prompting the user to run a fake online scan. When this scan is complete, fabricated infection reports are displayed, usually intimidating the user into purchasing the rogue spyware remover System Security 2009.

Posted on April 2, 2009 in Rogue Anti-Spyware Program

April Fool's Day and Still No Sign of Conficker.C

Many experts believe we may see other malicious actions take place from Conficker.C in the days to come. The April Fool's Day Worm or Conficker.C infection has not caused any major issues as of yet. We have kept an eye on Coficker.C all day for April 1st and so far and we do not have any incidents to report. This does not mean everyone is in the clear when it comes to being infected with Conficker.C as experts continually work with 116 countries to combat the worm before anything malicious happens. What is now known about Conficker.C since April Fool's Day has come? What we do know about Conficker.C is that on April 1st a master computer will take control of millions of computers or "zombie computers" that were already infected with Conficker.C. What does this mean? It could mean that an estimated 10 million computers could be used to...

Posted on April 1, 2009 in Computer Security

Conficker.C Worm Flaw Found: Security Experts Expect Easy Detection

Security experts have discovered a security hole within the coding that commands Conficker Worm. This discovery may be the light at the end of the tunnel for those who worry that Conficker.C may be a devastating and an uncontrollable worm infection, infecting millions of computers all over the world. You may ask, what is this special discovery and how will it ease the worry of Conficker.C? The new discovery, that could make it easier to isolate Conficker infected systems, is not being heavily emphasized because it could give criminals a way to secretly hijack millions of computers. Security researchers and even the Conficker Cabal, a group of anti-worm researchers, are aware that exploiting too much information about discovered lapses or vulnerabilities within the Conficker coding could give the creators or hackers a new alternative to...

Posted on March 31, 2009 in Computer Security

Advanced Spyware Detect

Advanced Spyware Detect is a rogue anti-spyware application. Advanced Spyware Detect is designed to scare computer users with fake security notifications and scan results to convince them to purchase Advanced Spyware Detect. Advanced Spyware Detect, at first glance, appears to be a fully functional security program. Advanced Spyware Detect will not remove legitimate spyware or computer parasites from your system. Advanced Spyware Detect is advertised and sold from the www.advanced-spyware-protect-.com website. It is highly advisable that all computer users avoid visiting this malicious website. If a user purchases the full Advanced Spyware Detect application then it could be very difficult to get their money back. Another way for Advanced Spyware Detect to be installed onto your system, usually without notification to the computer...

Posted on March 31, 2009 in Rogue Anti-Spyware Program

System Protector

System Protector screenshot

System Protector, or SystemProtector, is a rogue anti-spyware program designed to trick users into believing it's a legitimate anti-spyware program. System Protector may be installed in the user's computer system by a Trojan, such as Zlob, through a rogue video codec download or the user may have downloaded it from a rogue website. Once Zlob is installed, the user will receive a large amount of fake notification messages stating that his/her computer is infested with spyware. In order to remove these threats, the user will be redirected to a fraudulent website to further purchase System Protector's full version. System Protector is also able to emulate a computer system scan. After System...

Posted on March 29, 2009 in Rogue Anti-Spyware Program


Packed.PolyCrypt.d is a generic class of Trojan virus that is specifically designed to generate artificial traffic to specific web sites. As with all Trojan applications, Packed.PolyCrypt.d is installed under deceptive pretenses, infiltrating your PC without the user's approval or knowledge. Furthermore, the security risks posed by Packed.PolyCrypt.d may also include the collection and transmission of personally identifiable information (PII) without consent thus severely degrading the performance and stability of the computer. Packed.PolyCrypt.d can self-replicate, and tends to spread without attaching to or infecting other programs and files. The best way to deal with the threat of Packed.PolyCrypt.d is to simply remove it from the affected PC system.

Posted on March 29, 2009 in Trojans

Mebroot N

Mebroot N is another version of the Trojan.Mebroot infection, and is very difficult to detect and remove without the aid of a spyware removal tool. Mebroot N, much like its counterpart, installs a rootkit to the infected system to conceal its identity from the user. Mebroot N may also infect the Master Boot Record (MBR), damage the user's system or cause it to become vulnerable from outside attacks. In addition to this, Mebroot N may also download other malware onto your system without notice.

Posted on March 29, 2009 in Trojans

CoreGuard Safebrowser

CoreGuard Safebrowser, also referred to as CoreGuard SafeExplorer, is a fake error message pop-up related to the rogue anti-spyware application CoreGuard Antivirus 2009. The CoreGuard Safebrowser pop-up resembles the recent dangerous CoreGuard Antivirus 2009 message, which aggressively appears on your system, claiming there are infections. The CoreGuard Antivirus 2009 infection that displays these CoreGuard Safebrowser pop-up messages is known to install Trojans such as Zlob, Generic and Vundo. Do not click on any suspicious pop-up windows or links that may appear on your computer, and remove CoreGuard Safebrowser pop-up immediately.

Posted on March 29, 2009 in Fake Error Messages