Threat Description:
Speaking about Pc-winlive.com website, we ought to mention that it is a hijacker, i.e. a domain pushing insecure software. Pc-winlive.com is associated with the campaign of Windows Defender 2010 scareware promotion. It’s integrated with the rogue antivirus software’s billing system and thus serves for the purpose of selling this nasty tool. Pc-winlive.com is visited if a random alert generated by Windows Defender 2010 is pushed. So it just redirects your browser and makes you to go online places you definitely don’t feel like visiting. Pc-winlive.com describes the sponsoring rogue antivirus software as fast, safe, easy to use and trusted by millions. But in fact, Windows Defender 2010 is a corrupt application that intrudes on your machine without asking if you mind or not. It can’t and doesn’t help you protect your computer at all. So if you get directed to Pc-winlive.com, don’t forget to check your system for viruses and other malware using reliable security software that does work.
Threat Description:
The people who designed Avgroupwebsite.com want to take your money and run off. Actually, Avgroupwebsite.com is live to promote the program called Antivirus Soft. Please allow us just a little digression – Antivirus Soft is rogue anti-malware utility being rotated to arrive at one basic goal. It scares people into buying this scam software, Avgroupwebsite.com being a domain helping this rogueware achieve this had objective. Antivirus Soft tends to change your browser configuration and reset the HOSTS file to fit your Internet surfing into browser redirect loop. So you will have some hard time attempting to access a random site. Avgroupwebsite.com will show in browser location bar instead of pretty much every URL you are targeting. There exist two variants of this hijacker. One looks like Internet Explorer warning that notifies you about unsafe online activity. The other is Antivirus Soft official site (see screenshot).
Threat Description:
W32.Scrshotvid is a self-replicating computer worm that tends to propagate via removable media, or as a hidden component of downloaded files that seem harmless. The biggest risk arising from W32.Scrshotvid intrusion is that of privacy violation probability. This nefarious parasite is able to open security holes in the compromised system from the inside. These so-called backdoors will be used to further establish a stealthy connection with an external server which is hackers’ analytic center. Along with this obscure indirect influence, W32.Scrshotvid is as well capable of uploading dangerous files onto the targeted OS thus making the PC exposed to many other infections such as spyware, trojans, rogue antivirus tools etc. W32.Scrshotvid is sensitive to the stuff being typed by the infected PC’s user. It records these data and sends them to cyber criminals for further processing. These can be your credit card details, passwords and other personally identifiable information which is strictly private.
Threat Description:
A vivid exemplification of today’s scareware activity is Secure-your-pc.info site which performs a function of a browser hijacker. The website we mentioned above is home to Antivirus – a rogue anti-spyware application meant for pulling some money from trustful people’s credit card accounts. Visiting Scanner.Secure-your-pc.info (another variation of this hijacker) is always an outcome of fraudulent browser redirecting. This annoying thing is typically caused by trojan viruses residing on your computer without your knowledge. Secure-your-pc.info contains some basic information about Antivirus program such as its features including fully automated real-time protection, instant updates, intelligent PC protection etc. These are of course made-up and imaginary characteristics of this scam software. This particular variant of scare tool is designed to brainwash people into spending some money on its full version. It detects some non-existent parasites on your workstation and then insists that you register it to remove them all. If it’s Scanner.Secure-your-pc.info you get directed to, you will witness a falsified scanner that kind of checks your machine for viruses and does find some.
Threat Description:
If you try to visit Razure.info website you will probably end up hitting some odd blank page. But there is much more to that domain. It’s a blacklisted one. With a specified URL tail, it appears to be a fake online scanner. Razure.info is trying to push people into buying General Antivirus rogue malware remover; consequently it’s classified as a browser hijacker. Razure.info is a site people get redirected to in case their systems get trespassed onto by a certain trojan virus. For you to understand what kind of a scan runs on Razure.info, we are providing a screenshot of this malicious phenomenon. Unlike many other known browser hijackers, Razure.info is more aggressive in terms of the pop-ups it displays. Those are all phony security warnings that attempt to alarm you regarding the purported fact that some hazardous parasites have been found inside your Operating System. Razure.info will then run a scan progress bar that sort of indicates the status of the alleged virus check.
Threat Description:
Mega-scan-pc-new14.biz is a perilous domain that hides some trickery which can potentially damage a random computer system and challenge the users’ privacy. Mega-scan-pc-new14.biz is promoting a notorious bogus spyware removal tool called Security essentials 2010 which is known for its aggressive nature and greediness. The trojan viruses that have to do with Security essentials 2010 are covert enough to enter your workstation without letting the firewall stop this intrusion. It’s namely these tiny parasites that actually render your PC helpless before the disruptive impact of the scareware we have mentioned above. Mega-scan-pc-new14.biz is where you will have to go now and again with these trojans on board. Having gotten rerouted to that insecure and misleading site, you see something that looks like My Computer window when you open in on your PC. This likelihood is more than deceitful. The disk names will probably not match with yours. Besides, Mega-scan-pc-new14.biz will display some weird scanner in that UI.
Threat Description:
Yourpcdefender.net is a malicious site related to the malvertising patterns of Antivirus Soft rogue security application. The website in question is not just one of the million domains containing some bulk information. It’s a hijacker, which means people get redirected there forcibly, i.e. via getting their browsers rerouted. It’s the activity of trojan viruses to blame for that. The trojans ‘representing’ Antivirus Soft get into your system and change certain parameters such as Windows HOSTS file and browser configuration. Consequently, the victim will be hardly capable of surfing the Internet normally. Almost every site you will want to visit will be replaced with Yourpcdefender.net which is definitely not safe to hit. On Yourpcdefender.net, you will see info on some basic definitions and functions of Antivirus Soft describing it from the better side. However, Antivirus Soft is just one of rogue anti-spyware tools inhabiting the worldwide web. It hunts for some profit and misleads people into believing it can actually do something. Considering Yourpcdefender.net to be a trusty site is a big illusion and must not come to your mind if you happen to get diverted there.
Threat Description:
If Antivirus Vista 2010 program gets into your system, it because a heck of a menace. Antivirus Vista 2010 is actually scam software designed to take advantage of trustful people and make them pay some money for services they do not need at all. This scareware application requires no authentication when intruding on you. It will simply sneak inside exploiting some weak spots of your system. Once aboard your workstation, Antivirus Vista 2010 will adjust some of the OS settings to make itself ‘comfortable’. After this preliminary activity is complete, Antivirus Vista 2010 will start driving you nuts. It will trigger loads of malware interception reports to try and convince you that you have a lot of PC defense job to do. Antivirus Vista 2010 runs fabricated scanners and displays deceptive alerts to make it look like your PC has many infections inside. The logical further action of yours suggested by Antivirus Vista 2010 will be to register its full version based on the alleged statement that it’s pretty much the only one which is capable of helping your ‘badly contaminated’ PC.
Threat Description:
Control Manager is an updated copy of Control Center fake anti-spyware program. It hails from a scareware workshop that released too many unsafe applications to be considered legal. Control Manager is integrally associated with trojan horses that assist this rogue in trespassing on computers and PC networks. After penetration, Control Manager will be sure to produce such a huge quantity of unrealistic spyware detection notifications that you’ll find it problematic to work on your machine like you used to. The junkware under analysis will state that it has found a variety of malware components inside your system. This is a scheme rogue anti-spywares tend to employ for achieving their scam goals of taking people’s money away. It attempts to persuade you that it’s useful and that you badly need its licensed version to handle all those risks you’ve supposedly stumbled upon. The truth is your only issue is Control Manager itself, and there exist no parasites this program ‘detects’ on your PC.
Threat Description:
Dr. Guard (aka Dr.Guard) is a program that uses questionable practices for achieving its very fraudulent goals. Dr. Guard refers to the exact same group of malicious tools as Paladin Antivirus which has been one of the primary concern issues within the antimalware community during this month. The rogue antivirus software which is the subject of this article enters a computer without having to ask for your permission. It takes advantage of social engineering and can as well disguise itself as some program you might need. Anyway, we are driving at the point that Dr. Guard is unlikely to be prevented from infiltrating your system – it’ll probably prove to be just a bit too sophisticated and stealthy for your system defense. After this unhampered trespassing, Dr. Guard adjusts your system to perceive it as good and helpful software. It drops some files onto your system and changes Windows Registry.