Trojan:Win32/Oficla.E

Trojan:Win32/Oficla.E is a security risk that attempts to download dangerous files from a remote location. Trojan:Win32/Oficla.E may give a remote attacker access and control of a compromised PC, also allowing the attacker to download more malware onto the system. Trojan:Win32/Oficla.E may also inject malicious code into a running process in order to download a fake anti-spyware program. Trojan:Win32/Oficla.E should be automatically removed with a legitimate security tool to ensure its complete eradication.

Posted on December 7, 2009 in Trojans

Trojan-Downloader.Small.grk

Trojan-Downloader.Small.grk will put an infected system at risk of further infection by opening a backdoor to the system. Once Trojan-Downloader.Small.grk has accessed a system, it may produce outbound traffic and create a start-up registry key. Trojan-Downloader.Small.grk will attempt to steal a victim's sensitive information such as online banking details or credit card number. Trojan-Downloader.Small.grk may also compromise the security settings of certain security programs on an infected system. It is advisable to remove Trojan-Downloader.Small.grk as soon as possible if detected.

Posted on December 7, 2009 in Trojan Downloader

P2P-Worm.Win32.Palevo.lfs

P2P-Worm.Win32.Palevo.lfs is a worm that replicates across existing file-sharing networks and removable USB drives. On accessing a system, P2P-Worm.Win32.Palevo.lfs will utilize an autorun.inf file to automatically launch itself. P2P-Worm.Win32.Palevo.lfs may allow other malware to be downloaded onto a victim's system. The presence of P2P-Worm.Win32.Palevo.lfs may also slow down the normal operation of a system therefore, if detected P2P-Worm.Win32.Palevo.lfs should be removed immediately.

Posted on December 7, 2009 in Worms

Live PC Care

Live PC Care screenshot

Live PC Care enters a system via stealthy Trojans that are unknowingly downloaded or executed by users. Once inside, the Trojan creates random files on the system, that are later detected as parasites when a fake system scan is conducted. Live PC Care will bombard a system with fake scan reports, pop-ups and virus alerts in order to convince a victim that there are multiple infections present on the system. The user will then be informed that the only solution to the problem is to purchase the full version of Live PC Care. Live PC Care, a member of the family is a useless program that will do more harm than good to your computer system. Live PC Care is a deceptive security application...

Posted on December 7, 2009 in Rogue Anti-Spyware Program

PC Live Guard

PC Live Guard screenshot

PC Live Guard is a fake anti-spyware program that may tamper with a computer's security settings and end essential security related processes. PC Live Guard belongs to the family and propagates via malware such as a Trojan Downloader. Once PC Live Guard is inside a system, PC Live Guard will conduct a system scan, display random warning notifications and display annoying pop-up adverts. This is all done to convince you that you have several malware infections on your computer system, which can only be removed with PC Live Guard. All the scan reports and virus alerts are fabricated and not to be taken seriously. Some known clones of PC Live Guard include

Posted on December 7, 2009 in Rogue Anti-Spyware Program

Defendersiteblock.com

Defendersiteblock.com is a browser hijacker that is involved in the distribution of the rogue security program Cyber Security. Defendersiteblock.com displays a warning page that notifies a user of malignant internet activity. The user will then be directed to purchase Cyber Security in order to continue browsing safely. All warnings and software advertised on Defendersiteblock.com are malicious and not to be trusted.

Posted on December 4, 2009 in Rogue Websites

Protection-estore.com

Protection-estore.com is a rogue webpage created to promote the fake anti-spyware program, Personal Security. Protection-estore.com is inserted into a victims hosts file by sneaky Trojans that change the settings to ensure that the victim is continuously redirected to Protection-estore.com. Protection-estore.com advertises Personal Security as the "Best Spyware Protection". Don't be fooled, Personal Security is a useless application and Protection-estore.com cannot be trusted.

Posted on December 4, 2009 in Rogue Websites

Osadwarekill2009.com

Osadwarekill2009.com is a deceptive webpage that advertises the rogue anti-spyware program Antivirus System PRO. By using a stealthy Trojan to spread, Osadwarekill2009.com is inserted into a victim's hosts files, resulting in the victim being frequently redirected to Osadwarekill2009.com. Osadwarekill2009.com will then display fake security alerts in order to persuade the victim to purchase Antivirus System PRO. By no means should users purchase Antivirus System PRO, it is a useless program.

Posted on December 4, 2009 in Rogue Websites

Winwarepro.com

Winwarepro.com is an untrustworthy webpage that maladvertises the fake security application Antivirus System PRO. A Trojan helps Winwarepro.com spread by infecting users' systems and modifying their hosts files to redirect them to Winwarepro.com. Winwarepro.com is a bogus warning page that informs victims that they have been browsing dangerous web sites. The fake warning is simply there to trick victims into purchasing Antivirus System PRO. Users are advised to use a reliable anti-spyware program to locate and remove the Trojan behind Winwarepro.com.

Posted on December 4, 2009 in Rogue Websites

Winsecure2009.com

Winsecure2009.com is a misleading webpage that uses a Trojan to spread as it infects unsuspecting users' systems. Winsecure2009.com, also known as Winsecure2009.microsoft.com, is not in any way connected to the legitimate Microsoft. Winsecure2009.com will only be encountered by a user who's hosts file has been tampered with by a Trojan. The Winsecure2009.com webpage displays a fabricated security warning, followed by a strong recommendation to purchase Antivirus System PRO in order to continue browsing safely. Antivirus System PRO is a useless anti-spyware application that cannot be trusted.

Posted on December 4, 2009 in Rogue Websites

Winguard-2009.com

Winguard-2009.com is a rogue website that uses a browser hijacking Trojan to spread. Winguard-2009.com maliciously promotes the purchase of Antivirus System PRO - a fake security application. Winguard-2009.com uses a number of gimmicks to trick users into believing that their computers are infected with numerous parasites. Once the Trojan has entered a system, it will modify the hosts file to ensure that the victim is redirected to Winguard-2009.com. Winguard-2009.com will display a fake security warning page and present an option to purchase Antivirus System PRO. Do not fall for bogus warnings displayed on Winguard-2009.com. Antivirus System PRO is a malicious program that should not be purchased.

Posted on December 4, 2009 in Rogue Websites

VirTool:WinNT/Sinowal.G

VirTool:WinNT/Sinowal.G is a Trojan with advanced stealth features that make it extremely difficult to manually detect. VirTool:WinNT/Sinowal.G may download additional parasites from a predefined website onto a compromised PC. VirTool:WinNT/Sinowal.G may also attempt to steal a victim's stored passwords. Due to its advanced stealth features, it is strongly recommended to automatically remove VirTool:WinNT/Sinowal.G with a recognized anti-spware/rootkit program.

Posted on December 4, 2009 in Trojans

W32.Imaut

W32.Imaut is a Windows platform worm that propagates via communication services such as Yahoo! Instant Messenger and Microsoft Windows Live Messenger. When inside a system, W32.Imaut may attempt to communicate with a remote server, and download harmful files onto the compromised PC. W32.Imaut is also able to disturb or prevent certain security-related processes from running.

Posted on December 4, 2009 in Worms

TrojanDropper:Win32/Jadtre.B

TrojanDropper:Win32/Jadtre.B is a dangerous program that generally targets Windows operating systems. TrojanDropper:Win32/Jadtre.B can secretly penetrate a system via deceptive means such as drive-by downloads. Once TrojanDropper:Win32/Jadtre.B is inside a computer system it will download and execute arbitrary files that may be harmful to the system. TrojanDropper:Win32/Jadtre.B may also affect the normal operation of the system. Anti-spware applications can detect and completely remove TrojanDropper:Win32/Jadtre.B.

Posted on December 4, 2009 in Trojans

PSWTool.MailPassView!sd6

PSWTool.MailPassView!sd6 is a password stealing Trojan that communicates with a remote server. PSWTool.MailPassView!sd6 typically uses distribution channels such as drive-by downloads and infected websites. PSWTool.MailPassView!sd6 is designed to search system files for sensitive information such as usernames, passwords and login details. The stolen information is sent to a remote attacker who may use the information for malicious activities such as Identity Theft.

Posted on December 4, 2009 in Trojans