Threat Description:
Dr. Guard (aka Dr.Guard) is a program that uses questionable practices for achieving its very fraudulent goals. Dr. Guard refers to the exact same group of malicious tools as Paladin Antivirus which has been one of the primary concern issues within the antimalware community during this month. The rogue antivirus software which is the subject of this article enters a computer without having to ask for your permission. It takes advantage of social engineering and can as well disguise itself as some program you might need. Anyway, we are driving at the point that Dr. Guard is unlikely to be prevented from infiltrating your system – it’ll probably prove to be just a bit too sophisticated and stealthy for your system defense. After this unhampered trespassing, Dr. Guard adjusts your system to perceive it as good and helpful software. It drops some files onto your system and changes Windows Registry.
Threat Description:
One must remark that Avcommand.net is one pesky site. Not only does it outrageously redirect your web browser, it’s also related with the distribution of one of the most perilous malware presently, known as Antivirus Soft. Simply visiting Avcommand.net is unlikely to make you suffer any consequences; it’s just a harmless site like millions of others out there. However, hitting that site might be a forcible experience, i.e. it may result from a browser hijack. In case you are curious what this is, allow us to provide additional info on this issue. Hijackers are computer parasites that set up one’s browser to hit pre-defined domains. This doesn’t ever do without the use of trojan viruses so browser hijacking is a general PC security matter. Antivirus Soft is latent enough to get into your computer system without you noticing this and do some unpleasant pranks there. The trojan horses affiliated with this scam software will be sure to redirect you to Avcommand.net which suggests you to buy Antivirus Soft’s license.
Threat Description:
Www1.pcsecureshield.in is a new support site for Security Antivirus crimeware. Just a quick note: Security Antivirus is a malicious solution which tells you it can help your computer get cleaned up from any malware, spyware, trojans etc. In order to persuade people into believing this, the rogueware has plenty of resources at its disposal. It displays deceitful popup ads, runs deliberately fabricated virus scanners and hijacks a victim’s browser. Www1.pcsecureshield.in is an exemplification of the last point above. It’s a site you get forcedly directed to if Security Antivirus trojans get into your system. Along with being a fabricated scan page, Www1.pcsecureshield.in is also linked to a fraudulent download service that enables people to install Security Antivirus and purchase its commercial version. Do not hesitate to close the browser windows if Www1.pcsecureshield.in is being visited – that’s the only judicious decision to make.
Threat Description:
Based on our malware analysis, we advise you to abstain from visiting Av-protect.com site. The blackhat things that we found about that domain are as follows. Av-protect.com is promoting a program which is classified as rogue anti-spyware. It is called Antivirus Soft and is an aggressive digital impostor application that pretends to help you without being able to. Browser redirect activity ending up on Av-protect.com is one of the numerous symptoms of Antivirus Soft malvertising. This rogue software gets onto your machine in an unsolicited manner and never asks for authorization from you. Having made itself comfortable enough inside your system, this scare program distorts many things such as the Registry, files and additionally, it modifies HOSTS file and browser settings. You will have some hard time going to any website you target. When typing in some URL, all you will get is Av-protect.com or its clone Av-protect.microsoft.com which serves for intimidating purposes (please see the fake warning page screenshot below).
Threat Description:
Av-Super.com is a home site of the new rogue malware removal program denominated Antivirus Live 2010. It’s curious that Av-Super.com is visited by most people not because they enter its URL in the browser address field. The common way to hit that site is through browser hijack implemented by a bunch of trojan viruses as they penetrate into your computer. Av-Super.com is positioned as an information website describing the characteristics of Antivirus Live 2010 and encouraging people to purchase that scam software. The site contains a number of tabs such as ‘Features’, ‘Purchase’, ‘Screenshots’ etc. An interesting thing is the ‘Top Testimonials’ section which is identical with all rogue anti-spywares representing this family. The only thing that is a variable there is the scareware’s name. That doesn’t seem like testimonials one could trust, does it? Just like the rest of Av-Super.com content. It’s filled up with fake statements, untrue description and even wrong screenshots of the junkware being advertised.
Threat Description:
There is a big interrogation mark about the practices of Antivirus Live 2010 software. As we were analyzing this program, it became apparent to us that it is a clone of Antivirus Live, a previously known rogue security application that had been causing quite a fuss about its activity the last couple of months. You never spot the moment Antivirus Live 2010 appears on your computer because it needs no authorization of yours to get in. This scam software manages to find and make use of security exploits to intrude so there are weak chances that your AV guard succeeds in intercepting and stopping its malcode on its way. Antivirus Live 2010 does some bad things to System Registry of the injected workstation. It tends to add new keys there and therefore make your OS run some bad executables. Another aspect of Antivirus Live 2010
Threat Description:
The parasitic cyber creature called PWSteal.Bividon must be banned from accessing your computer or else you may suffer some bad consequences. The biggest threat behind this infection is its stealth and bad intensions. PWSteal.Bividon can infiltrate even those PCs that are well virus-protected. It uses backdoor tactics to attack computers so even a minor security split spotted by this malware will do. Once integrated with your system without your knowledge, PWSteal.Bividon can gather your private information and record your keystrokes. The whole thing will not stop at constant monitoring of your activity; PWSteal.Bividon will be sure to try finding ways to send the collected data to its masters. It’s not comforting to know that your personal details such as passwords, credit card numbers etc. get into criminals’ greedy hands. Additionally, PWSteal.Bividon meddles with your Windows Registry and stuffs your system up with unnecessary junk files – this makes your PC run slower than usual.
Threat Description:
Whichever way you may analyze PC Defender software it appears to be unwanted by all means. This pseudo anti-spyware tool is a reflection of cyber-crooks’ effort to get richer by taking advantage of many computer users’ curiosity and trustfulness. PC Defender gets disguised as some sort of a codec needed to watch popular and rare online multimedia content. You won’t even notice a tiny trojan hop onto your machine and start messing with its settings. This program appears on one’s computer as freeware first and then starts using some belligerent methods to force the victim to actually register and pay for it. PC Defender is all about popping different kinds of alerts that lie to you telling you about the great number of parasitic software elements on your system. If you still have some doubts regarding the truthfulness of those ads, PC Defender
Threat Description:
Virus Protector is an example of corrupt software that jacks up your computer and demands money for its mythical services it can’t possibly provide. The advent of Virus Protector onto your PC is always a surprise because this rogue anti-spyware employs a number of backdoor techniques to compromise the targeted workstation. This potentially unwanted application makes a mess out of your system structure through changing such critical parameters as Registry values and System32 directory. Virus Protector eventually becomes a master of the challenged PC gradually turning it into an enslaved entity. It forces your OS to execute dangerous processes every single time the PC loads up. For savvy perception, these internal background manipulations may seem hardly noticeable until Virus Protector starts to show itself from a different aspect. It will display a wealth of popup alerts and other types of notifications in order to persuade you that your computer is at risk.
Threat Description:
Antimalware Doctor is a program based on backdoor intrusion capabilities, deceptive ads usage and scare tactics. It has been invented by computer crooks with the intent to rob innocent computer users. Antimalware Doctor is all about trojan viruses when it comes to trespassing on you without making you aware. Since Antimalware Doctor’s infiltration is usually latent, you will know it’s in your system already after it alters your Registry and adds dangerous files to your OS. Antimalware Doctor will try to tickle your nerves by issuing a variety of ads (pop-ups, scanners etc.) that inform you about lots of infections which have been allegedly found on your workstation. Since Antimalware Doctor invades your system to the deepest level reaching out as far as the Registry, it will get your PC running the processes that are associated with this rogue.