Posted by Grinler on November 18, 2009 · Views: 459
|
|
Enterprise Suite is a rogue anti-spyware program that is promoted
through the use of fake online scanner sites and misleading advertisements.
When this program is installed it will be configured to start automatically.
The installer will also create numerous files on your computer that will then
be detected as malware by Enterprise Suite when it scans your computer. The files
that this rogue creates are:
%UserProfile%\Recent\ANTIGEN.dll
%UserProfile%\Recent\ANTIGEN.sys
%UserProfile%\Recent\ANTIGEN.tmp
%UserProfile%\Recent\cid.dll
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\ddv.tmp
%UserProfile%\Recent\PE.dll
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\ppal.exe
%UserProfile%\Recent\runddlkey.drv
%UserProfile%\Recent\std.sys
%UserProfile%\Recent\tempdoc.dll
%UserProfile%\Recent\tjd.exe
%UserProfile%\Recent\tjd.sys
This method of creating the files that will be detected by the same program
is becoming more and more common with rogues. They do this to substantiate the
existence of supposed malware files even on machines that are completely clean.
Therefore, please do not believe any of the scan results presented by this program.
While Enterprise Suite is running you will also see a constant barrage of fake
security alerts and warnings appear on your desktop. These warnings will state
that a virus has been detected or that active malware is sending data on the
Internet. Just like the scan results, these fake security alerts are just another
method where the program is trying to trick you into thinking that you have
a security problem.
Without a doubt, Enterprise Suite is a scam designed to trick you into purchasing
the program to remove fake infections. It goes without saying that you should
not purchase this program and if you already have, we suggest you contact your
credit card company to dispute the charges. Finally, to remove this infection
and any related malware, please use the removal guide below.
Read the full entry ...
|
Posted by Grinler on November 18, 2009 · Views: 646
|
|
SafeKeeper is a rogue anti-spyware program from the Wini
family. This rogue is promoted through the use of Trojans that pretend to be
video codecs or flash updates that are required to watch an online video. When
a user runs the Trojan it will download and install SafeKeeper onto your computer
and configure it to start automatically. The same Trojan will also create numerous
files in the C:\Windows and C:\Windows\System32 folder that are then detected
as malware when SafeKeeper scans your computer. The program, though, will
then state it will not remove them until you first purchase it. This is obviously
a scam as the programs creates the same files it will detect to try and trick
you into thinking there is actual malware on your computer. The reality is that
these files are harmless and do not pose any risk to your computer. Thus this
programs scan results should be ignored.
The Trojan that installed SafeKeeper will also display fake security alerts
and messages on your desktop. These alerts will state that active malware has
been found, that your being attacked by a remote computer, or that you are sending
sensitive data to a remote location. The Trojan will also display a fake Windows
Security Center screen that will suggest that you purchase SafeKeeper to protect
yourself. Just like the scan results, these fake warnings and messages should
be ignored as they are just another attempt to make you think your computer
has a security problem.
As you can see, you should not purchase this program regardless of what it
may state. If you have already purchased the program, then please contact your
credit card company and dispute the charges. Last, but not least, please use
the guide below to remove this infection and any related malware for free.
Read the full entry ...
|
Posted by Grinler on November 16, 2009 · Views: 595
|
|
Personal Protector is a rogue anti-spyware program that is
promoted through fake online scanners and aggressive advertising. When installed,
Personal Protector will be configured to start automatically. Once started it
will scan your computer and state that there are a variety of infections on
your computer, but will not remove them until you first purchase the program.
In reality, these scan results are all fake or are legitimate programs being
classified as infections. Therefore, please do not act upon any of the scan
results that this program shows you as you may delete legitimate Windows files.
If you are infected with Personal Protector, please do not purchase this program
based on what it says. If you have already purchased it, then we suggest you
contact your credit card company and dispute the charges. Last, but not least,
to remove Personal Protector and any related malware, please follow the steps
in the removal guide below.
Read the full entry ...
|
Posted by Grinler on November 16, 2009 · Views: 1,651
|
|
Control Center is a rogue computer optimization suite from
the same family as Privacy
Center. This program is promoted through the use of misleading web sites
and fake online anti-malware scanners that state your computer has a problem.
These sites will then prompt you to download and install Control Center to fix
the problem on your computer. When the program is installed it will be configured
to start automatically when Windows starts. Once running it will scan your computer
and state that there are numerous problems with various components of Windows.
If you try and see what these problems are, though, it will state that you need
to purchase the program to see the results. In reality, the program is not finding
any problems at all, but is just saying that they exist in order to trick you
into purchasing the program.
Control Center was created for one purpose and that is to make you think your
computer has problems so that you then purchase the program to fix them. It
goes without saying that you should not purchase this program, and if you already
have, please contact your credit card company to dispute the charges. Finally,
to remove this infection and any related malware, please use the removal guide
found below.
Read the full entry ...
|
Posted by Grinler on November 16, 2009 · Views: 1,250
|
|
LinkSafeness is a rogue anti-spyware program from the Wini
family. This rogue is promoted through the use of Trojans that pretend to be
video codecs or flash updates that are required to watch an online video. When
a user runs the Trojan it will download and install LinkSafeness onto your computer
and configure it to start automatically. The same Trojan will also create numerous
files in the C:\Windows and C:\Windows\System32 folder that are then detected
as malware when LinkSafeness scans your computer. The program, though, will
then state it will not remove them until you first purchase it. This is obviously
a scam as the programs creates the same files it will detect to try and trick
you into thinking there is actual malware on your computer. The reality is that
these files are harmless and do not pose any risk to your computer. Thus this
programs scan results should be ignored.
The Trojan that installed LinkSafeness will also display fake security alerts
and messages on your desktop. These alerts will state that active malware has
been found, that your being attacked by a remote computer, or that you are sending
sensitive data to a remote location. The Trojan will also display a fake Windows
Security Center screen that will suggest that you purchase LinkSafeness to protect
yourself. Just like the scan results, these fake warnings and messages should
be ignored as they are just another attempt to make you think your computer
has a security problem.
As you can see, you should not purchase this program regardless of what it
may state. If you have already purchased the program, then please contact your
credit card company and dispute the charges. Last, but not least, please use
the guide below to remove this infection and any related malware for free.
Read the full entry ...
|
Posted by Grinler on November 13, 2009 · Views: 2,294
|
|
System Defender is a rogue anti-spyware program that is promoted
through the use of fake online scanner sites and misleading advertisements.
When this program is installed it will be configured to start automatically.
The installer will also create numerous files on your computer that will then
be detected as malware by System Defender when it scans your computer. The files
that this rogue creates are:
%UserProfile%\Recent\ANTIGEN.dll
%UserProfile%\Recent\ANTIGEN.sys
%UserProfile%\Recent\ANTIGEN.tmp
%UserProfile%\Recent\cid.dll
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\ddv.tmp
%UserProfile%\Recent\PE.dll
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\PE.sys
%UserProfile%\Recent\ppal.exe
%UserProfile%\Recent\runddlkey.drv
%UserProfile%\Recent\std.sys
%UserProfile%\Recent\tempdoc.dll
%UserProfile%\Recent\tjd.exe
%UserProfile%\Recent\tjd.sys
This method of creating the files that will be detected by the same program
is becoming more and more common with rogues. They do this to substantiate the
existence of supposed malware files even on machines that are completely clean.
Therefore, please do not believe any of the scan results presented by this program.
While System Defender is running you will also see a constant barrage of fake
security alerts and warnings appear on your desktop. These warnings will state
that a virus has been detected or that active malware is sending data on the
Internet. Just like the scan results, these fake security alerts are just another
method where the program is trying to trick you into thinking that you have
a security problem.
Without a doubt, System Defender is a scam designed to trick you into purchasing
the program to remove fake infections. It goes without saying that you should
not purchase this program and if you already have, we suggest you contact your
credit card company to dispute the charges. Finally, to remove this infection
and any related malware, please use the removal guide below.
Read the full entry ...
|
Posted by Grinler on November 11, 2009 · Views: 3,467
|
|
AntiAID is a rogue anti-spyware program from the Wini family.
This variant is slightly different than previous versions as the it has changed
its graphical user interface, or GUI. This rogue is advertised through Trojans
that pretend to be video codecs or flash updates that are required to watch
an online movie. When a user runs the Trojan it will download and install AntiAID
onto your computer and configure it to start automatically. The same Trojan
will also create numerous files in the C:\Windows and C:\Windows\System32 folder
that are then detected as malware when AntiAID scans your computer. The program,
though, will then state it will not remove them until you first purchase it.
This is obviously a scam as the programs creates the same files it will detect
to try and trick you into thinking there is actual malware on your computer.
The reality is that these files are harmless and do not pose any risk to your
computer. Thus this programs scan results should be ignored.
The same Trojan will also display fake security alerts and messages on your
desktop. These alerts will state that active malware has been found, that your
being attacked by a remote computer, or that you are sending sensitive data
to a remote location. The Trojan will also display a fake Windows Security Center
screen that will suggest that you purchase AntiAID to protect yourself.
Just like the scan results, these fake warnings and messages should be ignored
as they are just another attempt to make you think your computer has a security
problem.
As you can see, you should not purchase this program regardless of what it
may state. If you have already purchased the program, then please contact your
credit card company and dispute the charges. Last, but not least, please use
the guide below to remove this infection and any related malware for free.
Read the full entry ...
|
Posted by Grinler on November 11, 2009 · Views: 637
|
|
SystemWarrior is a rogue anti-spyware program from the Wini
family. This rogue is advertised through Trojans that pretend to be video codecs
or flash updates that are required to watch an online movie. When a user runs
the Trojan it will download and install SystemWarrior onto your computer and
configure it to start automatically. The same Trojan will also create numerous
files in the C:\Windows and C:\Windows\System32 folder that are then detected
as malware when SystemWarrior scans your computer. The program, though, will
then state it will not remove them until you first purchase it. This is obviously
a scam as the programs creates the same files it will detect to try and trick
you into thinking there is actual malware on your computer. The reality is that
these files are harmless and do not pose any risk to your computer. Thus this
programs scan results should be ignored.
The same Trojan will also display fake security alerts and messages on your
desktop. These alerts will state that active malware has been found, that your
being attacked by a remote computer, or that you are sending sensitive data
to a remote location. The Trojan will also display a fake Windows Security Center
screen that will suggest that you purchase SystemWarrior to protect yourself.
Just like the scan results, these fake warnings and messages should be ignored
as they are just another attempt to make you think your computer has a security
problem.
As you can see, you should not purchase this program regardless of what it
may state. If you have already purchased the program, then please contact your
credit card company and dispute the charges. Last, but not least, please use
the guide below to remove this infection and any related malware for free.
Read the full entry ...
|
Posted by Grinler on November 9, 2009 · Views: 3,281
|
|
AntiMalware is a rogue application from the same family as
Active
Security. When this program is installed it will be configured to start
automatically when you log into Windows. The installer will also attempt to
uninstall anti-virus programs that it feels can potentially detect it and thus
remove it. The list of security programs that the installer tries to remove
includes:
- NOD32
- Malwarebytes' Anti-Malware
- Agnitum
- AVG
- F-Secure
- Avira AntiVir
- avast!
- Kaspersky
- BitDefender
- Sophos
When AntiMalware is started it will scan your computer and detect numerous
infections on your computer, but will not remove them until you purchase the
program. These infections, though, are all fake and do not exist on your computer.
In fact, AntiMalware is programmed to show the same scan results regardless
of the computer that it is running on. Some of the infections that this program
will state it detects on your computer include:
| Virus.Win32.Gpcode.ak |
Email-Worm.Win32.NetSky.q |
Net-Worm.Win32.Mytob.t |
Net-Worm.Win32.DipNet.d |
| Trojan-Downloader.JS.Multi.ca |
Backdoor.Win32.Agent.ich |
Rootkit.Win32.Agent.pp |
Trojan.Win32.Agent.dcc |
| Backdoor.Win32.Kbot.al |
Virus.Win32.Hala.a |
Trojan-PSW.Win32.Hangame.cp |
Trojan-Clicker.Win32.Agent.bm |
| Trojan-Clicker.HTML.IFrame.g |
Trojan-Clicker.Win32.NetBuie.b |
Trojan-Clicker.Win32.Tiny.a |
Trojan-Downloader.HTML.Agent.aq |
| Trojan-Downloader.NSIS.Agent.a |
Trojan-Downloader.VBS.Agent.cd |
Trojan-Downloader.Win32.Agent.alr |
Trojan-Dropper.Win32.Agent.sd |
| Trojan-Dropper.Win32.Checkin |
Trojan-Dropper.Win32.Small.go |
Trojan-Dropper.Win32.VB.or |
Trojan-Spy.Win32.Iespy.od |
Though these are the names of real infections, what AntiMalware is detecting
does not actually exist on your computer. Therefore, do not be concerned by
what the scan results of this program says.
While the program is running you will also see numerous fake security warnings
pop-up on your desktop. These security warnings will state that Internet Explorer
is infected, that an active malware has been found, or that a keylogger is present
on your computer. The text of some of these messages are:
User's activity loggers detected!
It's strongly recommended to remove detected threats right now!
AntiMalware detected the virus of the harmful
program on your computer!
Internet Explorer is infected with worm Rootkit.Win32.Agent.pp. This worm
can harm your computer.
AntiMalware network security alert
Network attack rejected!
Your computer is being attacked from remote host. Attack has been classified
as Remote code execution attempt.
Just like the fake scan results, these fake security warnings should all be
ignored as they are just trying to trick you into thinking there is a security
problem on your computer.
Without a doubt, AntiMalware was designed for one purpose; to trick you into
thinking you are infected so that you will then purchase AntiMalware to remove
the infections. You now know that if you see behavior as described above, you
should not purchase the program regardless of what it tells you. If you have
already purchased it, then please contact your credit card company and dispute
the charges stating that this software is a scam. Finally, to remove AntiMalware
and any related malware, please use the removal guide below.
Read the full entry ...
|
Posted by Grinler on November 9, 2009 · Views: 1,209
|
|
SystemFighter is a rogue application that uses false scan
results and fake malware files to try and convince you that you are infected.
This rogue is installed through rogues that pretend to be software required
to view an online video. When a user installs the Trojan, it will download and
install SystemFighter as well as create numerous harmless files on your computer
that have random filenames. These files will then be detected by SystemFighter
as infections when it scans your computer, but the program will not remove anything
until you purchase it. This method of creating files that will then be detected
when the program scans your computer is a scam being used to substantiate the
scan results. The reality is that these files are harmless and have no ability
to harm your computer. They are only being created to scare you into purchasing
the program.
The Trojan will also display fake security warnings on your desktop that contain
messages stating that your computer is under attack, that you are sending private
data to the Internet, or that an active malware has been found. It will also
display a fake Windows Security Center window that, unlike the legitimate version,
will suggest that you purchase SystemFighter in order to protect your computer.
Just like the scan results, these fake messages are just another attempt to
convince you to purchase the program and should be ignored.
As you can see, if you are infected with SystemFighter you should not purchase
the program. If you have already purchased it, then we suggest you contact your
credit card company and dispute the charges stating that the program is a scam.
Last, but not least, to remove this infection and any related malware, please
use the removal guide below.
Read the full entry ...
|
|
|