Scanner.just-protect-pc.info Description:
Scanner.just-protect-pc.info (or Just-protect-pc.info) is worse than just a misleading website which it is. Scanner.just-protect-pc.info obtains visitors through hijacking their browsers and then goes obnoxious on the people who hit it as a result of such Internet jack-up activity. Scanner.just-protect-pc.info is related to the propagation of the rogue anti-spyware trickily called Antivirus. This hijacker holds your web activity hostage and drags you into the loop of browser redirects to the following URL: Scanner.just-protect-pc.info/scan.php?campaign=mmb_815609071&landid=6 which denotes a fabricated online scanner whose snapshot is shown below. After Scanner.just-protect-pc.info is through ‘checking’ your PC for infections, it does report many and then prompts that you install the commercial version of Antivirus program. However, considering the fact that this particular Antivirus software is a distortion of the overall notions of computer defense utilities, Scanner.just-protect-pc.info site is not less fraudulent. Continue reading »
Termlnch.com Description:
Termlnch.com is a scan site, unfortunately a fake one. Termlnch.com is affiliated with SafePcAv rogue antivirus product and is doing its very best to support that crimeware in every possible way. You don’t hit Termlnch.com for some apparent cause, you will just undergo a severely aggressive browser redirect influence of trojans that mess with your browser configuration previously. Termlnch.com has a URL tail that starts with ‘/scn/’ element followed by a string of random symbols. The virus affects your web browser in such way that you will visit Termlnch.com instead of the website you were going to access; this usually takes place once you open up Internet Explorer and suddenly find your homepage hijacked. You can draw one major conclusion from the appearance of Termlnch.com – that it is a scanner of some sort. In fact, it only mimics an online scan and, to be a bit more appealing, imitates the legit Windows interface that hosts this purported scan. Continue reading »
Paladin Antivirus Description:
Paladin Antivirus is a modified copy of the Malware Defense virus which has been active during the last month. Paladin Antivirus is dangerous in a few ways. To begin with, it enters your PC without any permission of the computer user. Also, Paladin Antivirus claims to detect the legitimate antispyware software installed on the victim’s workstation as malicious thus preventing it from running. This feature of Paladin Antivirus is particularly hazardous because it means you will have some hard time trying to uninstall this actual rogue security tool. After getting successfully uploaded, Paladin Antivirus makes some serious changes to Windows Registry making your system run its process Pav.exe every time the PC starts up. This will call forth many alerts and alleged security scanners which of course have absolutely nothing in common with real virus check procedure. Continue reading »
Livesoftrock.com Description:
The recently emerged rogue spyware removal program called Antivirus Soft has been redirecting people’s browsing to Livesoftrock.com which is one tricky domain. This browser hijacker is also known under a somewhat different URL, namely Livesoftrock.microsoft.com which is a spoof alert page that reads “Internet Explorer Warning – visiting this web site may harm your computer!”. There is no relation of Livesoftrock.microsoft.com with the world-famous company whose name it trades off. That site is not real and is a made-up domain which can be displayed only on computers infected with Antivirus Soft rogueware as a result of random HOSTs file changes. Now, let’s make the entire thing clear. You visit Livesoftrock.microsoft.com and Livesoftrock.com only on condition that your system was previously contaminated with the malicious code Continue reading »
Buy-is2010.com Description:
The website hosted at Buy-is2010.com is a component of the dirty activities of Internet Security 2010 malware. Buy-is2010.com is a domain the aforementioned rogue anti-spyware is using for purchasing purposes. The URL structure is not accidental: IS2010 stands for Internet Security 2010, and the ‘Buy’ component speaks for itself. According to the malware programs classification, Buy-is2010.com is referred to as a browser (or homepage) hijacker because people get forcibly redirected to its domain for, as it may seem, no relevant reason. There is a reason though. As soon as Internet Security 2010 virus gets onto your workstation, it does a lot of messy job over Windows Registry, Hosts file and System32 directory. The entire complex of these manipulations will make your PC act up. The compromised computer will generate some deceitful pop-ups, scanners and other types of misleading alerts. Along with these ads, you will get to hit Buy-is2010.com website whenever you click any one of those pop-ups. Continue reading »
HackAV.AG Description:
HackAV.AG is a dangerous trojan horse. It specializes mostly on stealing private information focusing on the user’s financial details. HackAV.AG is able to intercept the queries from your server to websites that are in some way related with banking information. HackAV.AG can then record your keystrokes and thus harvest the information about passwords and other strictly confidential data. Along with being a banking-related prankster, HackAV.AG is as well known to ‘enjoy’ downloading malware such as rogue antivirus programs by spotting and opening security holes in your Operating System. HackAV.AG is therefore a universal system disruptor that compromises one’s privacy and affects many system functioning parameters. HackAV.AG can act as a rootkit while running on your computer. It means this trojan virus stays on the background and hardly ever discloses itself. This is why it’s a matter of great importance to keep one’s security software duly updated and perform regular virus scans on schedule. Continue reading »
SafePcAv Description:
Having come across SafePcAv software while surfing the Internet, you should stay away from it and take prompt steps to remove it in case the scam got inside your computer. SafePcAv is actually a fake virus removal tool, following and replacing the GuardWWW rogue anti-spyware which appeared a few days ago. SafePcAv has one single objective, which is to fool you around and force you into paying some money. The tactical move being applied by SafePcAv is that of intimidation. This malware will pretend to find dangerous malware entities on your PC and will communicate this misleading information via its popup ads and scanners. Once SafePcAv takes advantage of you, it suggests you the following deal: to go ahead and register its paid full version so as to make sure your computer stays safe and sound. It’s too bad though that SafePcAv will not defend your machine from any insecure programs. Continue reading »
Sysmessage.org/warning Description:
Sysmessage.org/warning is a web page telling you about the detection of unsafe Internet activity and threat of virus attack. Sysmessage.org/warning is in fact a very tricky page which is deeply embedded into the structure of Antivirus Plus (aka Antivirus+) crimeware distribution scheme. Sysmessage.org/warning is a homepage hijacker that redirects your browsing to the bogus alert page as shown on the screenshot below our post. The main idea of this phony alert is to persuade the victim that there is a lot of malicious stuff going on inside the computer system. Should this part of the malicious plan get successfully completed, Sysmessage.org/warning will manage to push the user into choosing the option that suggests getting ‘full advanced real-time protection’. This one leads to yet another scam site hosted at Antivirplus.org/buy.php which actually recommends you to buy Antivirus Plus and get your ‘defense’ software. Continue reading »
Content Cleaner Description:
Content Cleaner (aka ContentCleaner) is a program that misleads users and makes them suffer the bad consequences of its residing inside the targeted PC. Content Cleaner is a very typical rogue anti-spyware application and hardly deviates much from the regular rogueware features. It enters your computer like a spy, leaving the user no chances to intercept its malcode on the intrusion stage. Right after Content Cleaner gets downaloded by trojans, it molds an environment inside your computer which eases the further overwhelming bad influence of this program. It will be sure to add new Registry entries and create contagious files. With these manipulations completed, Content Cleaner will be able to determine the sequence of processes which get executed as your system is running. The ‘ContentCleaner.exe’ process will turn out to get triggered immediately after your machine loads. Now that Content Cleaner can actually work in full, it will bombard you with a lot of alerts and system scanners which Continue reading »
Frameste.com Description:
Frameste.com is a site so obnoxious and misleading that it can make you doubt if your computer is properly protected and safe or not. Frameste.com scans your PC for spyware and other infections, without actually checking it. How is that possible, you probably wonder? The answer is – Frameste.com is nothing but a deceitful browser hijacker that jacks up your IE and keeps diverting your Internet sessions. Why does Frameste.com do that? And there is the answer – it tries to promote GuardWWW rogue anti-spyware. After the falsified scanner at Frameste.com reports insecure software on your PC, it will be sure to recommend you a solution of its own to get these security issues straight. Like you have probably figured out, Frameste.com prompts you to activate GuardWWW license. Please understand that GuardWWW is a dangerous application and any sites whatsoever related to it are misleading at best. Continue reading »