Threat Description:
Security Tool Firewall Alert is a part of the nefarious plan being deployed by one of the most invasive scareware applications presently, called Security Tool. This spoof popup warning message usually appears when the user of the infected computer tries to open a web browser. The objective of the rogue anti-spyware we’ve mentioned is to render PC usage virtually unbearable. It makes the system operate slower than before, blocks the execution of some processes and prevents the victim from going online. Security Tool Firewall Alert is merely a small fragment of these tactics, being a false privacy notification that encourages clicking the “Activate Security Tool” button. In case you do, you will get redirected automatically to a web page that indulges in distributing the registered version of the rogueware in question. This could be Soldierantivirus.com or similar hijacker-site. If you are receiving Security Tool Firewall Alerts that look like the one depicted below, then you should definitely have your system checked by a professional anti-malware solution.
“Security Tool Warning” Popup Description:
“Security Tool Warning” is a misleading and extremely annoying system alert that denotes the presence of the hazardous rogue anti-spyware on your computer, namely – Security Tool scam. Once Security Tool embeds its malcode into your computer system, it will keep bombarding you with “Security Tool Warning” pop-ups which are definitely not wanted. “Security Tool Warning” tells you that “Your PC is still infected with dangerous viruses” (this is a citation from the alert’s text). Such method is a rather widespread scare technique being used broadly in the ransomware distribution industry. “Security Tool Warning” claims you are having serious security issues and must install Security Tool program to eliminate them all. But don’t fall victim of this deceitful scam – “Security Tool Warning” is just a scare method for ripping you off.
ProtectPcs Description:
Have you run into ProtectPcs software and you’re not sure where you got it from? Well, we are afraid you’ve been trapped by this rogue anti-spyware application which is an aggressive cyber invader designed to rip you off in a relentless way. It’s characteristic of ProtectPcs to get into one’s computer unnoticeably. This can be feasible through exploiting the malware called trojan horses which spot security holes in your Operating System and drag more severe viruses inside. Now, let’s describe the second phase of ProtectPcs activity aboard the infected computer. It starts with the rogue making changes to the Registry and creating new entries there. The outcome of this is modifying the startup information and running ProtectPcs executable each time you log into Windows. This will lead to a nagging pop-up campaign consisting of ads, scanners and occasional browser redirects. The above activity aims to make you a hostage of ProtectPcs scam and have you buy its licensed version. It goes without saying that ProtectPcs must be neither believed nor purchased.
“Warning! Antivirus is run in demo mode” Popup Description:
“Warning! Antivirus is run in demo mode” is a misleading system tray alert displayed by the fake spyware remover called AntiMalware. “Warning! Antivirus is run in demo mode” popup does not actually mean you are having any problems with your antivirus software, nor does it testify to the necessity of updating it . It’s merely a direct symptom of the presence of above-mentioned scareware, i.e. AntiMalware, on your computer. “Warning! Antivirus is run in demo mode” alert is triggered by trojan viruses controlled by AntiMalware rogue once it infiltrates your system. In other words, “Warning! Antivirus is run in demo mode” popup is generated by your system only because it has been configured to, by the trojan viruses affiliated with AntiMalware scam. You see, when a scareware application installs onto a new computer, it creates some new entries in Windows registry
“Critical vulnerables found!” Popup Description:
A few days ago, a new rogue anti-spyware product emerged to attack the cyber community with some new hacking tricks like the “Critical vulnerables found!” popup. The above-mentioned nasty program is called Internet Security 2010, and it’s a dangerous virus that installs on to computers regardless of whether the users want it or not. When on board your PC, Internet Security 2010 tries to make the user get a wrong impression about the security status of his/her machine. “Critical vulnerables found!” popup is a fake alert that gets repeatedly triggered by Internet Security 2010 in order to make you think your system is at risk of being affected by hazardous viruses. “Critical vulnerables found!” popup reads “Proactive system found several active vulnerabilities on your computer”. If you happen to fall for “Critical vulnerables found!” popup entrapment, chances are you will push the “Fix my computer” button
«Internet Explorer Warning – visiting this web site may harm your computer!» alert Popup Description:
If your online surfing keeps taking you to a page that says «Internet Explorer Warning – visiting this web site may harm your computer!» , you should by no means believe you are actually about to visit an insecure website. The reason of your hitting a page whose snapshot you can see below is as follows: your computer has been attacked by the unregistered version of the rogue anti-spyware program called Antivirus System Pro. It’s namely Antivirus System Pro that is using trojans to redirect your browser to the fake warning page under consideration. “Internet Explorer Warning – visiting this web site may harm your computer!” page suggests the unsuspecting PC users a few options to choose for resolving the framed-up security issue: to purchase Antivirus System Pro, to check your machine for viruses
Antivirus System Pro alert Popup Description:
Antivirus System Pro alert is a sign of serious computer infection – to be more specific the Antivirus System Pro badware. However, it’s not the threat mentioned in Antivirus System Pro alert that you should worry about. We mean this alert itself if a bogus one and it’s triggered by a counterfeit antivirus program to make you install and purchase its full version. That probably sounds intricate, doesn’t it? Well, that’s what the rogue anti-spywares are all about – intricacy and ultimate fraud. Antivirus System Pro alert says “Infiltration alert. Your comptuer is being attacked by an Internet virus. It could be a password-stealing attack, a trojan-dropper or similar”. Our friendly advice is NOT to believe a single word mentioned in Antivirus System Pro alert. The fake system warning under consideration also says your PC is contaminated with the threat called Win32/Nuqel.E and recommends removing it.
«Bloodhound.PDF.8 – Trojan Found!» Popup Description:
«Bloodhound.PDF.8 – Trojan Found!» Popup is a sign denoting that your system is contaminated with the dangerous rogue anti-spyware called Personal Antivirus or its updated version known as Alpha Antivirus. Actually, Bloodhound.PDF.8 is an existing malware program referring to the category of Trojans which is known to exploit some weak spots in Adobe Acrobat reader to implement malicious activity. However, this time Bloodhound.PDF.8 is used only as a dummy to scare people into thinking their PCs are seriously infected. This fake menace will be communicated through “Bloodhound.PDF.8 – Trojan Found!” pop up which reports a “heuristic detection” and recommends eliminating the threat by choosing the “Block” option on this fake notification. The thorough analysis of cases when “Bloodhound.PDF.8 – Trojan Found!” pop up appeared
«Recommendations …» Popup Description:
«Recommendations …» Popup is one of the ways the counterfeit spyware remover called WiniBlueSoft manifests itself. On the outside, “Recommendations” Popup resembles a Windows Security Center alert which would probably be reasonable to trust if it weren’t for the fact that it’s dangerous rogue anti-spyware that is promoted through it. Recommendations Popup states your computer is infected with spyware and you need WiniBlueSoft utility to protect yourself against the detected threats and internet attacks. If you follow the cunning recommendations prompted on Recommendations Popup, you will install WiniBlueSoft licensed version which requires making an online payment. With WiniBlueSoft inside your system, you may forget about safe web-surfing and normal computer use. It’s because WiniBlueSoft tends to make the compromised computer operate much slower and decreases the data exchange rate via the Internet.
“Trojan Detected!” Pop up Description:
“Trojan Detected!” Pop up is a malicious and absolutely misleading attribute of WinPC Antivirus rogue anti-spyware. Just imagine how ironical it is – “Trojan Detected!” popup is issued by…Trojans, but real ones. These Trojans accompany the propagation campaign of WinPC Antivirus scareware and intrude on the target system absolutely undetected, so you won’t know you have them on board until they start triggering weird popups like the one described. “Trojan Detected!” notification usually pops up from the system tray in the bottom right-hand corner of your desktop. “Trojan Detected!” popup tells you that “a piece of malicious code was found in your system…” and suggests depriving your computer of the infection using WinPC Antivirus, which is actually a worthless badware program and should be avoided at all costs.