Threat Description:
Av-2010.com is a hijacker site helping Antivirus Soft rogue security program spread through the Internet. It paralyzes your web surfing ability and redirects your browser to a bogus alert page that informs (or rather – misinforms) you about some problems Internet Explorer has allegedly encountered. That is a misleading message that encourages you to follow the further instructions and in the long run end up on Av-2010.com selling Antivirus Soft scam. The underlying essence of this hijacker lies inside Antivirus Soft malcode. This rogue antivirus solution incorporates its own Registry keys into the corresponding Windows directory thus disabling some essential computer functions. One of those is the victim’s capability of surfing the Internet, Av-2010.com hijacker being the outcome. You will not only appear to have browsing trouble, you will as well find it problematic to run any processes because the malware will state they are all infected and close them immediately.
Threat Description:
A browser redirect virus (browser hijacker) driving traffic to Scanner.the-antivirus-best.info is pushing the rogue anti-spyware program known as Antivirus. Yes, it does actually sound odd that software called Antivirus could possibly be rotated as scareware. This is the unfortunate truth about the world of rogues of today. Fake security applications can obtain most trustworthy denominations just to trick people and eventually rip them off. If you get redirected to Scanner.the-antivirus-best.info it either means you clicked a contagious ad on the web or got a trojan horse on your computer that is affecting your web browser to reroute it constantly. Scanner.the-antivirus-best.info looks like My Computer – the well-known interface from Windows. The precise picture of Scanner.the-antivirus-best.info is shown below – please have a look at the screenshot we’ve made. As you see, the website under analysis appears to scan your computer for viruses somehow. But this is an imitation of My Computer UI and the scan proper.
Threat Description:
Securitypccare.com is a sleek-looking website that assists Windows Defender 2010 rogue antivirus application in its advancement. Securitypccare.com is a site one gets rerouted to, if his/her computer gets attacked by Windows Defender 2010 or one of its related fake anti-spywares (e.g. Antivirus XP 2010). Like with any browser redirect activity, it’s all based on trojans’ work which results in forced browser settings modification. Securitypccare.com appears in a browser window if you happen to click one of Windows Defender 2010 ads generated to scare you into believing something is really amiss with your computer. So basically Securitypccare.com browser redirect issue is derivative from the impact Windows Defender 2010 rogueware impairs to your system. In any case, the malicious trial version of the rogue security application, as well as the affiliated trojans, must be quickly found and disabled.
Threat Description:
Info-protector.com is a small section in the complicated mechanism of Antivirus Soft scareware propagation. It contains a payload option suggesting people who visit it to buy the worthless and quite mendacious program we have mentioned above. Info-protector.com is identified as a browser hijacking entity that gets hit only in case you get rerouted there. In other words, Info-protector.com is driven traffic to owing to the pranks of Antivirus Soft fake security application if it infiltrates your computer system. All the multiple popup notifications generated in great quantity by the affiliated malware make you end up on Info-protector.com where you see some really uncomforting suggestions all of which are bound to making you waste some bucks for something that won’t do you any good, i.e. Antivirus Soft fraud. Whenever you encounter Info-protector.com web page and if you are not sure why you actually got there, be aware you’ve got some more serious issues to resolve.
Threat Description:
PC-Inspector.net (or PC-Inspector.microsoft.com) is an impersonation of one of Antivirus Soft rogue anti-spyware’s intricacies aiming to arrive at its pre-determined malignant milestones. PC-Inspector.net is target web page Antivirus Soft redirects its victims to. It is associated with fraudulent payment (billing) system so it is completely fit to maintain the commercial aspect of Antivirus Soft scareware campaign. If Antivirus Soft scareware happens to inject your system, it makes your web-surfing impossible as it jacks up your browser and replaces every site you want to hit with PC-Inspector.microsoft.com which is an improvised IE warning page. This is done through some manipulations with your system settings that have to do with network connections. The virus distorts Windows HOSTS file and thus makes you hit PC-Inspector.microsoft.com at random. In order to prevent this from taking place, you need to disable and completely neutralize Antivirus Soft rogueware which is taking over your workstation to eventually ruin it unless you pay some money for its license unknowingly supporting the international hacking endeavors.
Threat Description:
There can be no positive feedback about Pc-carelive.com for the simple reason that it is a browser hijacker distributing malignant software. Pc-carelive.com has to do with Windows Defender 2010 or any of its kin fake anti-spyware programs. When this scareware hits your workstation without your consent, it issues many fake alerts and counterfeit malware interception reports. All of these ads suggest you to register your copy of the ‘security’ software, and it’s precisely when you click such prompts that you get rerouted to Pc-carelive.com. When on that site, all you see is some recommendations to purchase Windows Defender 2010 whose commercial version comes in several variations depending on how long the license should act. So as you see, Pc-carelive.com appears to be redirected to; and when it’s done, it attempts to swindle you into buying software you don’t need at all. Moreover, the application being promoted through Pc-carelive.com is not safe to have installed on one’s machine.
Threat Description:
5win-wellcome.com is what we classify as a browser hijacker, i.e. a domain name people hit after their browsers get directed there because of trojan activity. 5win-wellcome.com is promoting the recent scareware called Antivirus 7 which is showing huge rapidity of propagation during the past few days. PC users visit 5win-wellcome.com resulting from a click on a purportedly safe SERPs (Search Engine Results Pages) link or an online advertisement placed by hackers on popular web resources such as social networking portals. You all of a sudden realize you’ve navigated to a web page that right away displays a popup warning telling you that Antivirus 7 has found some unsafe software on your computer. That is just the beginning though. 5win-wellcome.com will then get down to ‘scanning’ your system for malware. This improvised scan is a bogus one and does not reflect any security information you can trust. It’s just picture that was ‘drawn’ by the bad guys beforehand for you to fall for it and think it’s checking your machine online for real.
Threat Description:
Win-live-care2010.com is a new part of the hideous mechanism pursuing the objective of promoting rogue security software. Win-live-care2010.com is pushing Windows Defender 2010 crimeware whcih is a general name for a group of insecure applications exploiting the same common malcode (e.g. XP Guardian or XP Antivirus Pro 2010). If one of the above-mentioned unsafe programs penetrates into your system, it will generate deceptive scanners and popup ads that erroneously report many infections and recommend you to get this whole thing fixed. It’s then that you get rerouted to Win-live-care2010.com without your consent. When on Win-live-care2010.com, you can either exit it or do what it prompts. The former option (i.e. navigating away) will prove to be merely a temporary relief because the still hijacked browser will exhibit the same activity over and over. So you will get one principal choice: to purchase Windows Defender 2010 or one of its clone rogue anti-spywares; or get rid of Win-live-care2010.com hijacker.
Threat Description:
Onecare-antivirus2010.com is entirely devoted to distributing malicious software. The site we have indicated is a browser hijacker of Windows Defender 2010 – a rogue anti-spyware product that has been ’successfully’ invading its own malicious niche in the world of scareware applications. You probably won’t run into Onecare-antivirus2010.com unless your PC gets struck by Windows Defender 2010 or any of its clone applications (there are around 10 of them on the whole). The crimeware tends to jack up the web browser on the machine it hits. This will be a reason for browser rerouting that takes place forcibly. In other words, when you try to launch your web browser you will be re-navigated to Onecare-antivirus2010.com which insists that you need to register some software you definitely do not need. This sort of activity is common with rogueware applications and targets new sales of the fraudulent licenses.
Threat Description:
Hourbrand.com is a web page designed to intimidate computer users into buying rogue anti-spyware, Virus Protector being the sponsoring scareware. Hourbrand.com looks as if it were some legit online scanner but it’s critical to know that it’s not genuine. One more essential thing to keep in mind is that if you are getting redirected to Hourbrand.com it means you have a trojan virus on your computer which is actually calling forth this annoying browser activity. Also, the web page being described in this article contains malicious scripts which, if passed over to your system, may cause some additional unwanted symptoms. Hourbrand.com tries to persuade you that it’s scanning your computer for malware and other security issues. No wonder it reports many detected items when through. The plan of Hourbrand.com hijacker pre-supposes the presence if a malignant downloader in its structure.