Fast-antimalware-scanv3.com

Fast-antimalware-scanv3.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Fast-antimalware-scanv3.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in an attempt to trick the user into purchasing the fake spyware remover Personal Antivirus.

Posted on July 7, 2009 in Rogue Websites

Celebs-docs.com

Celebs-docs.com is a browser hijacker promoting the rogue anti-spyware application known as System Security. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Celebs-docs.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in an attempt to intimidate the user into purchasing the fake spyware remover System Security.

Posted on July 7, 2009 in Rogue Websites

Advanedprospywarescanner.com

Advanedprospywarescanner.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Advanedprospywarescanner.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in an attempt to trick the user into purchasing the fake spyware remover Personal Antivirus.

Posted on July 7, 2009 in Rogue Websites

Malware Protection 2009

Malware Protection 2009 is a rogue anti-spyware application known to infiltrate a computer without user informed consent, with the assistance of affiliated trojans and vulnerabilities in security. Once active, Malware Protection 2009 runs fake system scans that display fictitious or sometimes grossly exaggerated infection results, along with fabricated security alerts, all in order to intimidate the user into believing that his computer is infected. Malware Protection 2009 then prompts the user to purchase the commercial version of this software in order to combat these supposed threats. Do not be fooled, and remove Malware Protection 2009 as soon as possible.

Posted on July 6, 2009 in Rogue Anti-Spyware Program

Ieprotectionlist.com

Ieprotectionlist.com is a browser hijacker promoting the rogue anti-spyware application known as Personal Antivirus. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Ieprotectionlist.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, all in order to intimidate the user into purchasing the fake spyware remover Personal Antivirus.

Posted on July 6, 2009 in Rogue Websites

Your PC is Not Protected Popup

"Your PC is not protected" popup is a fake security alert employed by the rogue anti-spyware application known as AntivirusBEST in order to intimidate users into believing that their computers are infected. The "Your PC is not protected" popup reads as follows: "Your PC is not protected. Security center reports that AntivirusBEST is inactive. Antivirus software helps to protect your computer against viruses and other security threats. Click here for the suggested actions. Your system might be at risk now." This fake warning message is a means by which AntivirusBEST may trick users into purchasing and downloading the malicious software, in the hopes of combating this threat. Do not be fooled. Remove as soon as possible.

Posted on July 6, 2009 in Fake Error Messages

W32.Fujacks.CA

W32.Fujacks.CA is a worm that, once inside a computer and active, may begin infecting executable files, causing unspecified damage to a system should a user attempt deleting them. W32.Fujacks.CA typically spreads through unsecured network shares, infiltrating a computer with the assistance of affiliated trojans and exploits in security systems.

Posted on July 6, 2009 in Worms

Scan-spyware-now.com

Scan-spyware-now.com is a browser hijacker promoting the rogue anti-spyware application known as Antivirus System PRO. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Scan-spyware-now.com domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results in order to intimidate the user into purchasing the fake spyware remover Antivirus System PRO.

Posted on July 6, 2009 in Rogue Websites

Best-av.info

Best-av.info is a browser hijacker promoting the rogue anti-spyware application known as AntivirusBEST. Due to affiliated trojans infiltrating the computer via security exploits and modifying the browser settings, web-surfing activities are redirected to the Best-av.info domain. Once here, the computer is subject to a fake online scan that displays fictitious and sometimes grossly exaggerated infection results, in order to intimidate the user into purchasing the fake spyware remover AntivirusBEST.

Posted on July 6, 2009 in Rogue Websites

Trojan-keylogger.WIN32.Agent

Trojan-Keylogger.WIN32.Agent is a Trojan virus used by the rogue anti-spyware application XP Deluxe Protector, in order to gain access to a computer system. Trojan-Keylogger.WIN32.Agent is designed to record keystrokes in order to give remote unauthorized users access to personal and financial information data, which can lead to identity theft.

Posted on July 6, 2009 in Keyloggers

Twitter Under Siege: Is 4chan to Blame?

It would appear that the popular imageboard 4chan may be behind yet another raid on the social networking website Twitter. On Sunday, a large number of falsified accounts were created in order to push the NSFW (Not Suitable/Safe for Work) trending topic, "#gorillapenis", all the way to the top of the list. 4chan has been linked to internet subcultures and activism in the past, most notably Project Chanology, a protest movement against the practices of the Church of Scientology. It has long been the harbinger of various attacks on many different sites, most recently YouTube Porn Day, in which 4chan and eBaum's World organized a mass porn carpet bombing on YouTube. It would seem, however, that even eBaum's World is not safe from 4chan's ruthless style of pranking. The infamous imageboard website is calling this latest incursion...

Posted on July 5, 2009 in Computer Security

AntivirusBest (Rogue) uses BHO Module & Popular Affiliate Networks to Infect Users

AntivirusBest is doing its 'best' to catch unsuspecting computer users off guard with fake IE warning messages and the use of popular third-party affiliate networks to distribute its program. This week, we've seen a new rogue anti-spyware program called AntivirusBest that installs an Internet Explorer BHO (Browser Helper Object). The BHO module QWProtect.dll hijacks the IE browser and shows a fake warning message, meant to look as an IE message a user would normally see on their IE browser, under the IE toolbar as seen on Figure 1. Figure 1. Fake IE warning message The fake IE warning message reads: "Internet Explorer has found an unregistered version of AntivirusBest. To protect your computer, please register your AntivirusBest." Once the fake IE warning message is clicked on, a computer user is lead to an AntivirusBest download link....

Posted on July 2, 2009 in Computer Security

System Security 4.52

System Security 4.52 is a new rogue anti-spyware application emanating from the same family as System Security, System Security 2009 and System Security 4.51. Usually System Security 4.52 is downloaded onto a computer once a fake video codec is installed manually by an unknowing user. Once active, System Security 4.52 kills all .exe processes, leaving the system without fully operational and functional processes. Along with fake scan reports that display fictitious and sometimes grossly exaggerated infection results, the user is prompted to purchase and download the fake spyware remover System Security 4.52 in order to combat these threats.

Posted on July 2, 2009 in Rogue Anti-Spyware Program

PWSteal.OnLineGames

PWSteal.OnLineGames is a hazardous Trojan infection typically installed onto a computer via web browser security exploits, and without user knowledge or permission. PWSteal.OnLineGames, known under other aliases such as PWSteal.OnLineGames.ZDH, PWSteal.OnLineGames.CSX, PWSteal.OnLineGames.AQ, and PWSteal.OnLineGames.ZDJ.dll – is known to begin downloading additional malware onto the compromised computer once active, and may also place personal and financial information data at great risk of being stolen by unauthorized remote users.

Posted on July 2, 2009 in Trojans

Net.Worm.Koobface.ld

Net.Worm.Koobface.ld is a computer worm designed to enter a system and gather as much financial and personal information data as possible, before sending this information to an unauthorized remote user. Net.Worm.Koobface.ld spreads by targeting people using social networking websites, such as Facebook and MySpace, sending these users messages containing harmless subject matter, but redirecting the user who opens the message to a thid-party domain, unaffiliated with the social networking website, where they are prompted to download what is suggested as being an update to Adobe Flash player. Choosing to download this file, actually downloads Net.Worm.Koobface.ld onto the computer.

Posted on July 2, 2009 in Worms