Spyware Parasites: Terms and Definitions

notavirusAdWareWin32FakeInstallerwu

Fri, 20 Nov 2009 05:13:35 EST

not-a-virus:AdWare.Win32.FakeInstaller.wu is a malicious adware program that displays banner adverts and sends personal user information to a central server for hackers to gain access to it. not-a-virus:AdWare.Win32.FakeInstaller.wu is installed via shareware and freeware programs. not-a-virus:AdWare.Win32.FakeInstaller.wu will monitor the user's Internet activity and then display advertisement banners and popups in the infected machine based on the websites the user visited. Remove not-a-virus:AdWare.Win32.FakeInstaller.wu immediatley and do not give the malicious program any time to do its devious dirty work.

TrojanBATQhost

Fri, 20 Nov 2009 05:10:41 EST

Trojan.BAT.Qhost is another evil product from the notorious Trojan horse stable which churns out parasitic malware whose primary purpose is to remain hidden in the system in order to download and install a stronger threat such as a bot. Trojan.BAT.Qhost is delivered to a victim through a misleading email message, or via a malicious website, which installs the vicious Trojan horse on a computer through vulnerabilities in web browser software such as Microsoft Internet Explorer. Trojan.BAT.Qhost lurks silently on the infected machine, deviously carrying out a multitude of misdeeds, such as downloading malware spyware, while the victim continues on with normal activities totally unaware. For your computer's safety Trojan.BAT.Qhost should be removed immediately.

TrojanDNSblocker

Fri, 20 Nov 2009 05:04:45 EST

Trojan.DNSblocker is a malicious Trojan horse which enters a computer or network in stealth mode and opens up backdoors to welcome a multitude of malware rogue viruses to the infected system. Trojan.DNSblocker then modifies the system settings and creates a false start up registry entry. Trojan.DNSblocker downloads other spyware including a spyware keylogger which records keystrokes and captures the user's activity. Trojan.DNSblocker should not be given the freedom to do its dirty work and must be eradicated without fail.

NewMalwareu

Fri, 20 Nov 2009 05:01:54 EST

New Malware.u is a disturbing malware infection attacking Windows XP and Vista operating systems. New Malware.u will inject malicious .exe and .dll files and prevent users from accessing the registry. New Malware.u affects computer systems through pornographic adult websites, corrupt multimedia codecs, spam or through suspicious file sharing downloads. New Malware.u is a destructive malware that can seriously destroy your Windows system. Have New Malware.u removed immediately.

TrojanDropperWin32Agentbeu

Fri, 20 Nov 2009 04:57:25 EST

Trojan-Dropper.Win32.Agent.beu is a malicious Trojan that enters a computer or network in stealth and opens up backdoors to welcome a multitude of malware rogue viruses to the infected system. Trojan-Dropper.Win32.Agent.beu, which is also known as Mal/Generic-A, then modifies the system settings and creates a false start up registry entry. Trojan-Dropper.Win32.Agent.beu's symptoms include the characteristics of an identified security risk by downloading of other spyware including a spyware keylogger which records keystrokes and captures the user's activity. Trojan-Dropper.Win32.Agent.beu should not be given the freedom to do its dirty work and must be eradicated immediately.

TrojanClickerWin32VBiframeajw

Fri, 20 Nov 2009 04:52:23 EST

Trojan-Clicker.Win32.VBiframe.ajw is a malicious Trojan horse that may represent security risk for the compromised system or its network environment. Trojan-Clicker.Win32.VBiframe.ajw uses backdoors to install contaminated files from the internet onto a compromised computer. Trojan-Clicker.Win32.VBiframe.ajw may spread via drive-by downloads and does not require a user's permission to run on a computer. Trojan-Clicker.Win32.VBiframe.ajw comes bundled with a malicious installation program. It is advisable to remove Trojan-Clicker.Win32.VBiframe.ajw as soon as it is detected.

MalwareVirut

Fri, 20 Nov 2009 04:46:55 EST

Malware.Virut is a malicious malware program that deletes important files and makes your computer system or network completely unusable. Malware.Virut (also known as W32.Virut.CF) does not use network resources to spread, but can spread across a network by attaching itself to other computer worms. Malware.Virut can also open up a backdoor through which an attacker can gain access to any data stored on your machine, such as personal and financial information. Malware.Virut may also employ your PC to perform illegal botnet attacks. Malware.Virut poses a security threat to your PC and should therefore be executed immediately.

MalwareLurkasys

Fri, 20 Nov 2009 04:24:32 EST

Malware.Lurkasys is a malicious malware program which infects your PC and modifies other files by overwriting them. Malware.Lurkasys can drop additional threats onto the computer before spreading by infecting executable files on local and shared drives. Malware.Lurkasys may also include spyware that monitors your Internet activity and programs that change your web browser or dialup settings. Do not show this cyber menace any mercy and have Malware.Lurkasys termintaed immediately.

VBSRunner8192

Thu, 19 Nov 2009 05:04:57 EST

VBS/Runner.8192 is a generic detection name for a Trojan that opens a backdoor and allows the attacker to issue commands to control the infected PC. Unlike viruses, Trojans are spread manually and do not self-replicate. These deceptive programs like VBS/Runner.8192 often worm their way in to the system under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation. Once the server component is unwittingly installed on the victim's machine, it opens a port to send a notification to the hacker. The hacker can then connect to the machine using the client component. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC) and peer-to-peer networks. Symptoms include the presence of unknown files and registries and unexpected network traffic. VBS/Runner.8192 is severely dangerous to your PC and should be removed immediately.

AdwareEzula

Thu, 19 Nov 2009 05:02:55 EST

Adware.Ezula is a malicious Adware application designed to distribute annoying popup adverts. Adware.Ezula can collect and transmit information on your Internet browsing patterns. It embeds into your browser as a Browser Helper Object (BHO) and can be difficult to manually remove. Adware.Ezula also alters Web pages viewed in Internet Explorer and can add extra links to certain keywords that are targeted by advertisers. This adware also runs under the name TopText. Adware.Ezula should not be give the leeway to do its dirty work on any PC and should removed immediately.

Refprongeni

Thu, 19 Nov 2009 04:59:03 EST

Refpron.gen.i is a malicious Trojan horse that is spread manually, often under the premise that Refpron.gen.i will be beneficial or wanted. The most common method Refpron.gen.i uses to install itself involves devious system or security exploits, and unsuspecting users manually executing unknown programs. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC) and peer-to-peer networks. Refpron.gen.i may cause unwanted HTTP sessions, connections to malicious sites and unknown search engines. Refpron.gen.i poses a huge security threat to your PC and should be executed immediately.

SecureKeeper

Thu, 19 Nov 2009 04:55:25 EST

SecureKeeper, which is also called Secure Keeper, is a Rogue Anti-Spyware Program from the notorious WiniGuard family. SecureKeeper injects the system with malicious Trojans which force changes to the Windows registry and delivers fake system scans. SecureKeeper does not need your permission to be installed, it steals in as a video codec or another tool. SecureKeeper will start threatening computer users by displaying different warnings and producing fake scan results. Do not trust the application. These are only tactics to make you spend money for nothing in return. Remove SecureKeeper upon detection to prevent system damage.

EcoAntivirus

Thu, 19 Nov 2009 04:44:40 EST

Eco Antivirus is a Rogue Anti-Spyware Program that enters your computer using Trojans or devious security exploits. When Eco Antivirus starts operating, it creates fake scans and displays fake alert messages or false scan reports which claim: 'Your computer is infected.' These tactics are used to scare you. Do not let Eco Antivirus convince you to spend money and have Eco Antivirus terminated immediately.

MalVBBancA

Thu, 19 Nov 2009 04:41:47 EST

Mal/VBBanc-A is a malicious Trojan horse that enters a computer or network and deviously opens up backdoors to welcome a multitude of malware to the infected system. Mal/VBBanc-A, also known as Trojan-Downloader.Win32.Banload, then modifies the system settings and creates a false start up registry entry. Mal/VBBanc-A's can also download other spyware including a spyware keylogger which records keystrokes and captures the user's activity. Mal/VBBanc-A should not be given the freedom to do its dirty work and must be eradicated immediately.

PatchedRarSFX

Thu, 19 Nov 2009 04:29:12 EST

Patched-RarSFX is a Trojan program that is deceptively installed to download malware and unwanted software onto an unsuspecting victim's computer. Patched-RarSFX can download adware, spyware or other malware from multiple servers on the Internet. Patched-RarSFX can also steal passwords, disable anti-virus applications and modify files to deny the user access to anti-virus websites. Patched-RarSFX poses a high risk to a PC's security with symptoms which include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Patched-RarSFX may can also transmit personal information without your consent and severely compromise the performance of your computer. Remove this malicious malware immediately.

TROJ_MALAGENTHG

Thu, 19 Nov 2009 04:23:25 EST

TROJ_MALAGENT.HG is installed through devious exploits to deceive the user by downloading other harmful malware and unwanted software onto the infected computer. TROJ_MALAGENT.HG can download adware, spyware and other malware from various servers and sources on the Internet. Other symptoms include opening illicit network connections, self-mutation and the ability to disable weak software security. Other risks which may prove detrimental to the computer user include the transmission of personal information without the user's consent. TROJ_MALAGENT.HG can severely degrade the performance of your computer and should be executed immediately.

TrojanDropperWin32Agentaymt

Thu, 19 Nov 2009 04:14:07 EST

Trojan-Dropper.Win32.Agent.aymt is a malicious Trojan horse that enters the computer while the user is unaware and downloads corrupt files from Internet. Victims have reported that once this malicious virus is active can block all programs on the computer, even Internet Explorer. The user will then be bombarded by fake system scan messages which claim the computer needs an anti-virus program to run smoothly again. Do not fall for these blatant lies and remove Trojan-Dropper.Win32.Agent.aymt immediately.

TrojanWin32FraudPackzwr

Wed, 18 Nov 2009 08:43:07 EST

Trojan.Win32.FraudPack.zwr, or Mal/FakeAV-AD, is a malicious Trojan horse that may represent a security risk for the compromised PC system or its network environment. Trojan.Win32.FraudPack.zwr contains characteristics of a rogue antispyware application that uses aggressive and deceptive advertising along with false reports of exaggerated system security threats to persuade users to download and purchase their product. Trojan.Win32.FraudPack.zwr creates a startup registry entry which produces false security reports to scare the user into purchasing useless anti-spyware programs. Trojan.Win32.FraudPack.zwr shows all the signs of a high security risk and should be removed from the computer system immediately.

ClearwayShield

Wed, 18 Nov 2009 05:04:35 EST

Clearway Shield is a Rogue Anti-Spyware Program, which will convince you to spend money for nothing in return. Clearway Shield makes use of malicious trojans to enter the system, and will mislead users with fake advertising which promotes a so-called "licensed version". Clearway Shield spews out annoying pop-ups that claim the system is infected by various parasites, and urges the user to download a useless anti-spyware program in order to take care of the issues. Clearway Shield also performs fake system scans that mark legitimate files as threats to create the illusion that the user's system is infected. Clearway Shield has neither the ability to detect nor remove parasites, and will only make your system slow, block legitimate security software, and disable system services. Remove Clearway Shield immediately before it takes control of your computer.

SmoothDefender2009

Wed, 18 Nov 2009 04:58:34 EST

Smooth Defender 2009 is a Rogue Anti-Spyware Program that relies on backdoor trojans to get into your PC system. Smooth Defender 2009 will try to scam you out of your money for its proclaimed "licensed version". Once inside the system, Smooth Defender 2009 floods the user with pop-ups and fake system notifications, claiming the system is infected and in need of security software. While this may be true, Smooth Defender 2009 does not have the ability to detect threats. Smooth Defender 2009 will perform fake system scans that mark harmless files as threats, and urge the user to purchase it's "licensed version" in order to terminate the infections. Once detected Smooth Defender 2009 must be removed from the system immediately.

Win32SuspectCrc

Wed, 18 Nov 2009 04:51:18 EST

Win32.SuspectCrc is another malicious Trojan horse that may represent security risk for a compromised PC system or a network environment. Win32.SuspectCrc should not be taken lightly and contains characteristics of a severe security risk. Win32.SuspectCrc penetrates the system without the user's knowledge or permission and easily contacts a remote server to download other harmful parasites onto the infected computer. Symptoms include your computer screen flipping upside down or inverting and documents or messages printing on your printer by themselves. For the safety of your computer, Win32.SuspectCrc should be removed immediately.

ApplicationCoopen

Wed, 18 Nov 2009 04:39:24 EST

Application.Coopen is a malicious Adware application which modifies the user's Active Desktop background and downloads an adware program that delivers of annoying advertising content to the user and in some cases gathers personal information from the user's computer. Application.Coopen can use up your computers resources and is responsible for the numerous popup ads you will receive when browsing the Internet. Application.Coopen will ultimately try and convince the user to purchase a useless anti-spyware kit. Do not give Application.Coopen the time and space to operate and have it terminated immediately.

TrojanDialerQB

Wed, 18 Nov 2009 04:32:31 EST

Trojan.Dialer.QB is malicious backdoor Trojan that runs in the background and allows remote access to the compromised system. Trojan.Dialer.QB can download a pornographic dialer program that will attempt to connect to an extremely expensive international phone number, using your computers modem, and will then download pornographic content. Trojan.Dialer.QB will then produce annoying pop-ups and will try to convince you to purchase a useless anti-virus program to rid the system of the dialer. Do not fall for this trickery and have Trojan.Dialer.QB removed immediately.

W32Gosys

Wed, 18 Nov 2009 04:23:09 EST

W32.Gosys is a malicious Worm that spreads via computer networks. W32.Gosys opens a back door on the compromised computer and may cause additional damage to the system by recording keystrokes, updating itself and downloading files to execute commands. Once installed, W32.Gosys creates files in main Windows OS directories. W32.Gosys also creates/modifies certain registry entries so that it runs whenever Windows starts. Please use an automatic removal tool below to terminate W32.Gosys from the system before damage occurs.

Win32VirutGen4

Wed, 18 Nov 2009 04:15:57 EST

Win32.Virut.Gen.4 is a malicious Worm programmed to delete important files and make your computer system or network completely unusable. Win32.Virut.Gen.4 does not use network resources to spread, but can spread across a network as part of another worm. Win32.Virut.Gen.4 will rely on you to unknowingly send it on through emails, pirated software, or removable media such as CDs, DVDs or removable storage devices. If Win32.Virut.Gen.4 is detected, remove it before it starts wreaking havoc.

GenericDroppermf

Tue, 17 Nov 2009 06:34:45 EST

Generic Dropper.mf is a Trojan dropper designed to infiltrate your computer and open a conduit by which large amounts of adware and spyware can be piped to your system. Generic Dropper.mf, also known as Trojan-Dropper.MSIL, opens up a large security hole on your computer and is a very dangerous threat to the security of your personal and financial data. The additional adware downloaded through Generic Dropper.mf can also generate annoying popup adverts. Do not fall prey to Generic Dropper.mf's trickery and have the parasite removed immediately.

PE_VIRUXA1

Tue, 17 Nov 2009 06:30:04 EST

PE_VIRUX.A-1 is a malicious Worm that can be deviously installed on a computer when users visit malicious websites. PE_VIRUX.A-1 is configured to infect files and modify system privileges to create a backdoor for hackers to gain full access to the infected computer. PE_VIRUX.A-1 poses a high security threat to the infected computer and must be extracted from the system immediately.

W32AutorunAUW

Tue, 17 Nov 2009 06:27:07 EST

W32/Autorun-AUW is a network-aware worm that infects a system and then attempts to replicate across the entire existing network. W32/Autorun-AUW has been found to produce outbound traffic and also illegally download unknown files from the Internet. W32/Autorun-AUW also creates a startup registry entry and contains all the characteristics of a severe security risk. W32/Autorun-AUW should be terminated from the infected system immediately.

TrojMdropCID

Tue, 17 Nov 2009 06:25:11 EST

Troj/Mdrop-CID is a Trojan that stealthily enters a computer or network and opens up backdoors for the spread of dangerous malware. Troj/Mdrop-CID easily modifies the system settings and creates a false start up registry entry. Troj/Mdrop-CID shows all the characteristics of an identified security risk by downloading of other spyware, including a spyware keylogger which records keystrokes and captures users' personal activity. Troj/Mdrop-CID must be eradicated upon detection.

TrojClickrN

Tue, 17 Nov 2009 06:19:58 EST

Troj/Clickr-N is a Trojan spy program designed to steal confidential user data and take over the victim"s computer. When launched, Troj/Clickr-N creates a file to ensure that the Trojan is launched automatically when the system is rebooted. Troj/Clickr-N can also steal personal login and password data from for Internet banking systems by substituting fake pages for genuine banking system pages. Troj/Clickr-N is designed to steal bank account data and passwords to common applications such as IE Password Protected Sites, IE AutoComplete Fields, Firefox, Opera and a whole host of Instant Messaging tools. In order to spread via the local network, Troj/Clickr-N tries to copy itself to network machines and shared folders. To curb Troj/Clickr-N from spreading via networks, servers used by domain administrators should be disinfected and strong passwords should be used. Do not give Troj/Clickr-N the space to do its dirty work, have the parasite removed immediately.

Win32AlmanB

Tue, 17 Nov 2009 06:14:08 EST

Win32.Alman.B is another malicious backdoor Trojan that runs in the background and allows hackers remote access to an infected PC. Win32.Alman.B modifies other files on the system by infecting or overwriting them. Win32.Alman.B can also download corrupt files to the local computer that may represent security risk. Win32.Alman.B may be installed on a system when users unknowingly visit malicious websites and uses rootkit technology to evade scanners. Win32.Alman.B poses a severe threat to any computer and should be removed immediately.

MalwareFiala

Tue, 17 Nov 2009 06:10:39 EST

Malware.Fiala is a malicious Trojan horse that attempts to drop a corrupt file and run it on a compromised computer. Malware.Fiala sets the drive to autoplay by creating an autorun.inf file in its root directory. If the drive is shared across the network then other remote computers can be infected by Malware.Fiala when they try to access the shared network. Malware.Fiala contains all the characteristics of a high security risk and should be terminated immediately.

W32SillyDC

Tue, 17 Nov 2009 05:48:59 EST

W32.SillyDC is a malicious network-aware Worm that detects variants of the W32.Silly family of viruses which spreads via removable media. Malware.SillyDC can download other malicious applications referenced in autorun.inf files that may be located on removable drives or network drives. W32.SillyDC will try to spread to other computers and should be removed from the infected computer upon detection.

TrojanDownloaderVBSAgent

Tue, 17 Nov 2009 04:18:24 EST

Trojan-Downloader.VBS.Agent is a devious Trojan horse that secretly enters a computer or network and opens up backdoors to welcome a multitude of malware to the infected system. Trojan-Downloader.VBS.Agent then modifies the system settings and creates a false start up registry. Trojan-Downloader.VBS.Agent also downloads of other spyware including a spyware keylogger which records keystrokes and captures the user's personal activity. Trojan-Downloader.VBS.Agent should not be given the freedom to do its dirty work and must be removed immediately.

PersonalProtector

Mon, 16 Nov 2009 13:54:47 EST

Personal Protector is a rogue security program and clone of the rogue anti-spyware program Personal Guard 2009. Both Personal Protector and Personal Guard 2009 use the same methods of displaying bogus parasite popup alerts and system scan results to scare computer users into buying a full version of the malicious security program, Personal Protector or Personal Guard 2009. Personal Protector should never be used for your computer security needs. Personal Protector is unable to detect or rid your system of parasites nor will be protect you from legitimate future threats. It is highly advisable that Personal Protector is detected and safely removed with a reputable spyware removal tool.

LinkSafeness

Mon, 16 Nov 2009 10:19:04 EST

Link Safeness is a rogue anti-spyware program that comes from the group of attackers that created the fake security applications known as Site Villain and AntiAID. Link Safeness uses some of the same ridiculous methods to get computer users to believe that they need to purchase a full version of Link Safeness in order to remove detected parasites. Anything that Link Safeness detects is fabricated. Link Safeness is not a legitimate security application and should never be used for parasite detection or removal purposes. It is suggested that you remove Link Safeness the instant that it is detected by a trustworthy spyware scan tool.

ControlCenter

Mon, 16 Nov 2009 08:49:57 EST

Control Center is a Rogue Anti-Virus application that has the same characteristics as the notorious Privacy Center malware program. To avoid Control Center, Internet users must be aware of websites they visit and the files downloaded onto the computer. Control Center spreads via the Internet so browsing must be exercised with extreme caution. The Control Center virus can also come from a fake security website or fake multi-media websites that ask users to download a fake code needed to view a video online. If detected, Control Center must immediately be terminated.

SpywarePerfect

Mon, 16 Nov 2009 05:26:16 EST

Spyware.Perfect is a malicious Trojan horse that poses a severe security risk to a compromised system. Spyware.Perfect has up to 15 different variations which have all been noted as dangerous to PC security. Victims have reported that once Spyware.Perfect is active it blocks all programs on the computer, even the Internet Explorer web browser application. Spyware.Perfect must not be allowed to do its dirty work and should be destroyed once detected on any computer or network.

BackdoorCiadoor

Mon, 16 Nov 2009 05:19:50 EST

Backdoor.Ciadoor is another malicious Trojan horse that represents a security risk for a compromised PC system or a network environment. Backdoor.Ciadoor should not be taken lightly and contains characteristics of a severe security risk. Backdoor.Ciadoor penetrates the system without the user"s knowledge or permission and easily contacts a remote server to download other harmful parasites onto the infected computer. Symptoms may include your computer screen flipping upside down or inverting and documents or messages printing on your printer by themselves. For the safety of your computer, Backdoor.Ciadoor should immediately be removed.

TrojanDownloaderWin32Banloadadws

Mon, 16 Nov 2009 05:16:39 EST

Trojan-Downloader.Win32.Banload.adws is a malicious Trojan horse that gains entry to a compromised computer or network via a backdoor. Trojan-Downloader.Win32.Banload.adws will then operate in stealth mode to download corrupt files to the local computer that may represent security risk. Do not allow Trojan-Downloader.Win32.Banload.adws the time to infect your PC and have it terminated immediately.

SiteVillain

Mon, 16 Nov 2009 05:08:32 EST

SiteVillain is a clone of the most recent rogue anti-spyware program in the notorious WiniSoft family that created AntiAID. SiteVillain has the same functions as it's predecessor and typically uses trojans and drive-by downloads to enter the system. SiteVillain relies on misleading advertising to trick users into purchasing it's so-called "license". SiteVillain performs malicious actions to trick users into purchasing it, and to protect itself from removal. SiteVillain displays annoying pop-ups and fake system notifications, claiming the user's system is infected. SiteVillain then performs fake system scans which mark harmless files as threats, creating the illusion that the user's system is infected. SiteVillain will then urge the user to purchase it's "licensed version" in order to dispose of the threats. SiteVillain will block legitimate security software, hijack the Internet browser, and disable certain system services, such as System Restore, and Registry Editor. SiteVillain poses a high threat to any system and should be removed immediately.

VirToolWin32Vbinder

Mon, 16 Nov 2009 04:56:48 EST

VirTool.Win32.Vbinder is a banking Trojan that disables the firewall and steals sensitive financial data like credit card numbers, online banking login details. VirTool.Win32.Vbinder also contains threat characteristics of a ZBot and will make screen snapshots, download additional components and provide a hacker with the remote access to the compromised system. VirTool.Win32.Vbinder operates in stealth-mode and can also download a keylogger program that steals personal information such as banking details and credit card numbers. VirTool.Win32.Vbinder contains characteristics of a high security risk and should be terminated from the compromised computer upon detection.

BackdoorWin32IdicafgenA

Mon, 16 Nov 2009 04:47:18 EST

Backdoor:Win32/Idicaf.gen!A is a malicious backdoor Trojan that runs in the background and enables hackers with remote access to a corrupted computer system. Backdoor:Win32/Idicaf.gen!A has been found to produce outbound traffic and create a startup registry entry that loads once Windows is booted. By using Backdoor:Win32/Idicaf.gen!A, hackers can remotely control the machine without a user's knowledge. Have Backdoor:Win32/Idicaf.gen!A removed from the system immediately to prevent further damages.

WormWin32AutoRunbc

Mon, 16 Nov 2009 04:39:14 EST

Worm.Win32.AutoRun.bc is a network Worm that multiplies by making copies of itself across a compromised network. Worm.Win32.AutoRun.bc may lead to data loss or other faults including reduced system performance. Worm.Win32.AutoRun.bc is a definite security risk to a computer system and users should remove this threat immediately after detection.

DownloaderBWP

Mon, 16 Nov 2009 04:29:37 EST

Downloader-BWP, or Trojan-Dropper.Win32.Decay, is a malicious Trojan dropper that enters a computer or network in stealth and opens up backdoors to welcome a multitude of malware to the infected system. Downloader-BWP can modify the system settings and create a start up registry entry. Downloader-BWP's symptoms include the downloading of a spyware keylogger which records keystrokes and captures the user's activity. Downloader-BWP should not be given the freedom to do its dirty work and must be removed.

TrojanGameThiefWin32Maganiaawwk

Mon, 16 Nov 2009 04:23:00 EST

Trojan-GameThief.Win32.Magania.awwk is a harmful Trojan horse that enters users' systems without their knowledge or consent. Trojan-GameThief.Win32.Magania.awwk, also known as Trojan:Win32/VB, may set the drive to autoplay by creating an autorun.inf file in its root directory. If the PC's drive is shared across a network then other remote computers can be infected everytime they try to access the shared network. Trojan-GameThief.Win32.Magania.awwk can also download a malicious application that attempts to steal passwords, login details, and other confidential information. Trojan-GameThief.Win32.Magania.awwk also shows a tendency of downloading other malicious files from the Internet and automatically execute it into the victim's machine. Trojan-GameThief.Win32.Magania.awwk must be eliminated from the system immediately if detected.

TrojanDownloaderWin32Agentcpnd

Mon, 16 Nov 2009 03:23:37 EST

Trojan-Downloader.Win32.Agent.cpnd is a Trojan program that is deceptively installed to download malware and unwanted software onto an unsuspecting victim's computer. Trojan-Downloader.Win32.Agent.cpnd may download adware, spyware or other malware from multiple servers on the Internet. Trojan-Downloader.Win32.Agent.cpnd poses a high risk to a PC"s security. Trojan-Downloader.Win32.Agent.cpnd's symptoms include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Trojan-Downloader.Win32.Agent.cpnd may also transmit personal information without your consent and severely compromise the performance of your computer. Remove this malicious malware immediately to prevent damage to the infected system.

AntivirusLive

Fri, 13 Nov 2009 08:49:12 EST

Antivirus Live (also known as AntivirusLive) is the latest Rogue Anti-Spyware creation from the notorious Magic Software stable. Antivirus Live uses malicious cutting-edge techniques, including the use of backdoor Trojans. Once active, Antivirus Live disables the computer's security options, making it extremely difficult to uninstall through the Control Panel or via Safe Mode. Antivirus Live then starts spewing annoying popup ads and runs a security scan which reports the fake detection of numerous viruses and threats. Antivirus Live will recommend buying its licensed copy to solve the alleged spyware problems. Do not fall for Antivirus Live's trickery. This hazardous parasite should be terminated from the system immediately.

EnterpriseSuite

Fri, 13 Nov 2009 07:54:59 EST

Enterprise Suite is a Rogue Anti-Spyware Program that is downloaded via Trojans that come from fake online scanners, bogus websites or bundled with other malicious software. Once Enterprise Suite is installed, it will download Enterprise Suite files and display fake security alerts to scare the PC user into thinking that the computer is infected with spyware, worms and other malware. The rogue program will then imitate a system scan that will produce a false report of threats. The PC user will be convinced to pay for a full version of the program to remove the mentioned threats. Do not purchase this bogus application. It is recommended that you have Enterprise Suite removed from your PC immediately.

TrojClopackA

Fri, 13 Nov 2009 06:25:09 EST

Troj/Clopack-A is a malicious Trojan disguised as a seemingly legitimate computer program that has intentionally been designed to disrupt and damage computer activity. Troj/Clopack-A is used in conjunction with viruses and might download other malware and unwanted software onto an unsuspecting victim's computer. Troj/Clopack-A's symptoms include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Troj/Clopack-A can also transmit personal information without your consent and severely compromise the performance of your computer. Remove Troj/Clopack-A from the compromised system immediately.

GenAdWare

Fri, 13 Nov 2009 06:14:04 EST

Gen.AdWare is an annoying Adware Program that bombards computer users with annoying popup advertisments based on the user's browsing habits. Gen.AdWare can also monitor web surfing habits and send information to the malicious third parties. Gen.AdWare embeds itself into the compromised system as a Browser Helper Object (BHO), making it difficult to remove manually.

NetWormSpybot

Fri, 13 Nov 2009 06:04:30 EST

Net-Worm.Spybot is a network-aware worm that attempts to replicate across the existing network. Net-Worm.Spybot can also spread using Windows networking APIs, MAPI functions or email clients such as Microsoft Outlook. Net-Worm.Spybot often creates unknown email messages with a harmful program attached and, in some cases, sometimes attaches itself to outgoing email messages. Net-Worm.Spybot also uses a misleading message which suggests that the recipient should open the attachment to see something interesting or important. Net-Worm.Spybot should not be allowed to spread and must be removed from the infected system immediately.

MalBHOJ

Fri, 13 Nov 2009 05:47:32 EST

Mal/BHO-J is a dangerous Malware infection that is known to deviously attach itself to the root of any accessible drive on a vulnerable computer. Mal/BHO-J operates in the background within Windows, making it difficult to almost impossible to manually detect and remove. Mal/BHO-J poses a severe threat to the infected computer and should be removed immediately.

MalEncPkAO

Fri, 13 Nov 2009 05:34:09 EST

Mal/EncPk-AO is another malicious Trojan that may represent security risk for a compromised PC system or a network environment. Mal/EncPk-AO should not be taken lightly and contains characteristics of a severe security risk. Mal/EncPk-AO penetrates the system without the user's knowledge or permission and easily contacts a remote server to download other harmful parasites and malware onto the infected computer. Symptoms include your computer screen flipping upside down or inverting and documents or messages printing on your printer by themselves. For the safety of your computer, Mal/EncPk-AO should immediately be removed.

MalHorst

Fri, 13 Nov 2009 05:25:38 EST

Mal/Horst is a Trojan that enters a computer or network secretly and opens up backdoors to welcome a multitude of malware to the infected system. Mal/Horst then modifies the system settings and creates a false start up registry entry. Mal/Horst's symptoms includes the characteristics of an identified security risk by downloading of other spyware including a spyware keylogger which records keystrokes and captures the user's activity. Mal/Horst should not be given the freedom to do its dirty work and must be removed immediately.

TrojanDownloaderWin32Xandaa

Fri, 13 Nov 2009 05:01:07 EST

Trojan-Downloader.Win32.Xanda.a is a Trojan program that is deceptively installed to download malware and unwanted software onto an unsuspecting victim's computer. Trojan-Downloader.Win32.Xanda.a may download adware, spyware or other malware from multiple servers on the Internet. Trojan-Downloader.Win32.Xanda.a poses a high risk to a PC"s security. Trojan-Downloader.Win32.Delf.tfy's symptoms include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Trojan-Downloader.Win32.Xanda.a may can also transmit personal information without your consent and severely compromise the performance of your computer. Remove this malicious Trojan from the system immediately.

VirToolWin32VBInject

Fri, 13 Nov 2009 04:09:17 EST

VirTool.Win32.VBInject is a Trojan that enters a computer or network in stealth and opens up backdoors to welcome a multitude of malware rogue viruses to the infected system. VirTool.Win32.VBInject then modifies the system settings and creates a false start up registry entry. VirTool.Win32.VBInject's symptoms include the characteristics of an identified security risk by downloading of other spyware including a spyware keylogger which records keystrokes and captures the user's activity. VirTool.Win32.VBInject should not be given the freedom to do its dirty work and must be removed.

SystemVeteran

Thu, 12 Nov 2009 12:44:02 EST

SystemVeteran is a rogue PC security application. SystemVeteran is often downloaded and installed by a Trojan, through browser security holes, or via other unconventional and unethical mechanisms. Once installed, SystemVeteran will display notifications of imaginary security and privacy risks in its attempts to get the user to purchase the full version and may generate system slowdown and instability. This program can be extremely difficult to manually remove.

Antiaidcom

Thu, 12 Nov 2009 05:32:46 EST

Antiaid.com is the homepage of the rogue anti-spyware program AntiAID. Antiaid.com advertises AntiAID, which is completely useless, and tries to convince users to purchase the parasite's "full version". Antiaid.com contains tons of misleading information for the useless software toolkit "Virus Protector", which is actually AntiAID. Do not trust this website. Remove AntiAID immediately to prevent further damages.

Osawarepro2009microsoftcom

Thu, 12 Nov 2009 04:50:08 EST

Osawarepro2009.microsoft.com is a malicious domain that is used to advertise the rogue anti-spyware program Antivirus System PRO. Osawarepro2009.microsoft.com is a fake warning page, which claims that whichever website you"ve been browsing may be malicious. The warning will then try to convince you to purchase and download Antivirus System PRO in order to continue browsing. Do not trust this website, and remove Antivirus System PRO as soon as it appears.

VirToolWin32VbcryptAD

Thu, 12 Nov 2009 04:37:51 EST

VirTool:Win32/Vbcrypt.AD is another viral beast which shows significant characteristics to present a severe security risk. VirTool:Win32/Vbcrypt.AD enters the computer or network without the user knowing and opens a backdoor for other malicious viruses to enter the system. VirTool:Win32/Vbcrypt.AD will steal personal information by monitoring the user's online activities. Poor passwords and login information are quickly acquired. Credit card numbers are also stolen and the information is then sent to a remote server for the hacker"s convenience. VirTool:Win32/Vbcrypt.AD should be stopped in its tracks and given no authority over your personal information.

MalDropperAE

Thu, 12 Nov 2009 04:30:07 EST

Mal/Dropper-AE is another malicious Trojan horse that may represent security risk for a compromised PC system or a network environment. Mal/Dropper-AE, also known as Virus.Win32.Agent, should not be taken lightly as it contains characteristics of a severe security risk. Mal/Dropper-AE penetrates the system without the user"s knowledge or permission and easily contacts a remote server to download other harmful parasites onto the infected computer. Symptoms include your computer screen flipping upside down or inverting and documents or messages printing on your printer by themselves. For the safety of your computer Mal/Dropper-AE should immediately be removed.

BackdoorWinNTFestiA

Thu, 12 Nov 2009 04:13:39 EST

Backdoor:WinNT/Festi.A is also known as Backdoor.WinNT.Festi and is classified as a backdoor Trojan. Backdoor:WinNT/Festi.A provides hackers with remote access to affected computer systems. Backdoor:WinNT/Festi.A can also conduct distributed denial of service (DDoS) attacks, and install additional trojans or other forms of malicious software. Hackers can also use Backdoor:WinNT/Festi.A to install a downloader or dropper trojan, which may in turn install a proxy trojan used to relay spam or a keylogger trojan which monitors and sends keystrokes to remote attackers. Backdoor:WinNT/Festi.A may also open ports on the affected system which potentially leads to further compromise by other hackers. Backdoor:WinNT/Festi.A poses a severe risk to your welfare and should be removed from the compromised system immediately.

W32Daprosy

Thu, 12 Nov 2009 03:42:54 EST

W32.Daprosy is a vicious Worm that steals information such as bank account usernames, passwords and credit card details from your computer and sends it to a hacker. W32.Daprosy contains many malicious components such as an adware component that produces annoying adverts when you connect to the Internet. W32.Daprosy also makes contact with a remote server to log the infection and attempts to install other malware. W32.Daprosy can also easily download malicious trojans that opens network ports and allows hackers to gain unauthorized access to the system. W32.Daprosy should not be given any leeway to take control of your computer, have the threat removed immediately.

BackdoorWin32Popwin

Thu, 12 Nov 2009 03:31:35 EST

Backdoor.Win32.Popwin is also known as Packed/Upack and is a malicious computer Virus that uses a packer to download malware to your computer. Backdoor.Win32.Popwin affects most Windows programs and usually uses a fake pop-up scan and false results to scare computer uses into purchasing redundant anti-spyware toolkits. Backdoor.Win32.Popwin poses a huge security threat to any PC or network and should be removed immediately.

MalEncPkDW

Thu, 12 Nov 2009 03:22:08 EST

Mal/EncPk-DW is a malicious Trojan application that runs in the background and allows remote access to your system giving devious hackers full control of your system. Mal/EncPk-DW may enter the system via browser holes or malicious emails. Mal/EncPk-DW can also gather sensitive personal information from the PC and send it to a remote server where hackers gain access to the information. It is advisable to remove Mal/EncPk-DW before it gains control of the compromised system.

AntiAID

Thu, 12 Nov 2009 03:02:46 EST

AntiAID is a malicious Malware program that pretends to be an anti-spyware tool. AntiAID sneaks into your computer through other downloads and performs a fake system scan that reports rogue viruses like newfeat3.chm, which does not even exist. AntiAID will do this to try and convince you that your computer is in danger. Soon after this AntiAID will start asking you for money to fix the fake problems it created. Do not fall for this trickery and have AntiAid terminated from your computer immediately. Symptoms include your PC taking longer than usual to reboot, or your Internet connection being slow.AntiAID may change your Internet settings to redirect your homepage to another site and even add desktop shortcuts to your PC.

SystemWarrior

Wed, 11 Nov 2009 07:36:31 EST

SystemWarrior is another Rogue Anti-Spyware Program from the WiniGuard family. Trojans and viruses are used to drop SystemWarrior's trialware to the victim computer. SystemWarrior also contains annoying adware that may cause system collapse. Another way in which SystemWarrior is downloaded and installed is through user agreement to download and install SystemWarrior. This agreement is obtained when users are duped with online ads and popups. Do not fall for this trickery and make sure your computer is free from SystemWarrior.

TrojanCrypt

Wed, 11 Nov 2009 06:31:02 EST

Trojan.Crypt, also known as Win32/Xema.worm.22263, is a backdoor Trojan dropper that injects itself into the infected computer via security holes, and drops various malicious programs onto the local or network computers. Trojan.Crypt can steal and forward passwords, usernames, credit card numbers and other information to devious hackers. Trojan.Crypt poses a serious security threat that can harm both the Windows system and PC hardware. Remove Trojan.Crypt from the infected system immediately.

TrojanPSWLemir

Wed, 11 Nov 2009 06:23:46 EST

Trojan-PSW.Lemir is a dangerous Keylogger program that captures all user keystrokes including confidential details such usernames, passwords and credit card numbers. Trojan-PSW.Lemir is a malicious commercial computer surveillance tool that tracks user activity and records all keystrokes. Trojan-PSW.Lemir then sends the captured data to a configurable email address or uploads it to a predefined FTP server for hacker to access. Trojan-PSW.Lemir is able to hide its running processes to avoid detection. Trojan-PSW.Lemir must be manually installed and runs on every Windows startup. Destroy Trojan-PSW.Lemir immediately if detected.

SpywareKeylogger

Wed, 11 Nov 2009 06:13:39 EST

Spyware.Keylogger is a Spyware keylogger application that captures and logs keystrokes on the computer without user's knowledge and consent. Spyware.Keylogger then encrypts and sends the data to devious hackers. Spyware.Keylogger hides from the user by running in stealth mode. Spyware.Keylogger may also use rootkit technology to evade anti-spyware programs. In addition, Spyware.Keylogger may be configured to monitor and record the web pages the PC user visits, as well as any instant messenger and email conversations. Spyware.Keylogger places any personal or financial information stored on your computer in severe jeopardy and represents a serious security risk. Terminate Spyware.Keylogger immediately once detected.

WinTrojanXemavariant

Wed, 11 Nov 2009 06:08:24 EST

Win-Trojan/Xema.variant is a malicious backdoor Trojan that runs in the background and allows hackers remote access to an infected computer or network. Win-Trojan/Xema.variant uses a program that downloads dangerous files from the Internet. Win-Trojan/Xema.variant can also log keystrokes and send this information to remote servers for hackers to gain access. Win-Trojan/Xema.variant contains characteristics of a severe security risk and should be removed from the system immediately.

HeurEngineMalautoit

Wed, 11 Nov 2009 06:01:44 EST

HeurEngine.Malautoit is a malicious Malware infection that is used to port other dangerous files or applications onto an infected system. HeurEngine.Malautoit can infect a computer through a backdoor or browser security hole without the computer user's knowledge. HeurEngine.Malautoit poses a high security risk to any PC and is difficult to remove. Make sure your computer is free of the HeurEngine.Malautoit menace.

EmailWormWin32Iksmasfrg

Wed, 11 Nov 2009 05:56:36 EST

Email-Worm.Win32.Iksmas.frg is a dangerous computer Worm that attempts to replicate across any existing network it gains entry to. Email-Worm.Win32.Iksmas.frg has the capability to send out email messages via a built-in SMTP client engine. Email-Worm.Win32.Iksmas.frg contains characteristics of a Waledac Worm that spreads by sending malicious emails containing links to copies of itself. Email-Worm.Win32.Iksmas.frg also creates a startup registry entry and can produces outbound traffic. Email-Worm.Win32.Iksmas.frg contains all the characteristics of an identified security risk and should be removed from the infected system immediately.

MalBehav116

Wed, 11 Nov 2009 05:40:40 EST

Mal/Behav-116 is a malicious Trojan that enters into a compromised system while the computer user is unaware. Mal/Behav-116 easily opens a backdoor by downloading an executable file and running it on the system illicitly. Mal/Behav-116 often tries try to steal usernames and passwords to send them to hackers. Once infected, the computer may be rendered defenseless as Mal/Behav-116 runs riot and disables anti-spyware programs. Show this vicious virus no mercy by slaying it immediately.

TrojanZbotgen2

Tue, 10 Nov 2009 08:42:33 EST

Trojan.Zbot!gen2 is a nasty Trojan horse that gains access to a computer through vulnerabilities that have been created by other malicious Trojans and backdoor computer viruses. Once inside your system, Trojan.Zbot!gen2 will open up a backdoor through which a hacker can access your PC and perform various malicious tasks. Trojan.Zbot!gen2 includes a keyboard monitor that records all keystrokes into a file, which can later on be taken by a remote attacker. Trojan.Zbot!gen2 poses a serious risk to the security and privacy of your personal and financial data, and it is recommended that Trojan.Zbot!gen2 be eliminated immediately.

ApplicationMaybe_RogueAV

Tue, 10 Nov 2009 05:17:39 EST

Application.Maybe_RogueAV is a rogue security program which acts as a generic detection tool for a malicious application that scans system files for viruses and may give fake AV results causing the user to panic and immediately buy this application. Application.Maybe_RogueAV may also produce annoying pop-ups or cause other applications to malfunction. Do not be fooled by this false pretender's antics and have Application.Maybe_RogueAV promptly removed.

SpywareScreenspy

Tue, 10 Nov 2009 05:12:03 EST

Spyware.Screenspy is a Trojan that downloads other files from Internet and contains all the characteristics of an identified security risk to the infected computer. Spyware.Screenspy can be identified as a devious program that silently captures screenshots of personal information for devious hackers. Systems affected by Spyware.Screenspy include Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003 and Windows XP. Spyware.Screenspy poses a severe threat to PC users and should be extracted from the system once detected.

TrojanWin32Sasfisuak

Tue, 10 Nov 2009 05:03:30 EST

Trojan.Win32.Sasfis.uak is another Trojan that produces outbound traffic and requests other files from Internet once it gains entry to the compromised system. Trojan.Win32.Sasfis.uak will most likely create a startup registry entry and may modify some system executable files with a PE-file infector. Trojan.Win32.Sasfis.uak can also create a toolbar installed on your Internet Explorer that sends information to MSN and Alexa if used. Trojan.Win32.Sasfis.uak will in memory after executed, infecting more files on every drive and network share. Trojan.Win32.Sasfis.uak poses a huge threat to the safety of any computer or network and it is recommended that it be removed once detected.

MalEncPKLL

Tue, 10 Nov 2009 04:59:04 EST

Mal/EncPK-LL is a Windows platform Trojan that may contaminate a PC with various malware. Mal/EncPK-LL may be considered as a rootkit Trojan due to its stealth techniques. Mal/EncPK-LL can steal banking details such as online banking passwords and credit card numbers. The stolen data is sent to a remote attacker via a gateway that is opened by the malicious Trojan. Mal/EncPK-LL may also disable firewalls and download additional parasites onto the compromised PC. Mal/EncPK-LL puts your computer at great risk and should be removed promptly.

TrojanWin32Clickera

Tue, 10 Nov 2009 04:55:36 EST

Trojan.Win32.Clicker.a is another malicious Trojan that may represent security risk for the compromised system or its network environment. Trojan.Win32.Clicker.a should not be taken lightly and contains characteristics of a severe security risk. Like other trojans of the Trojan.Win32 variation, Trojan.Win32.Clicker.a is a perilous trojan with harmful spyware characteristics. Trojan.Win32.Clicker.a penetrates the system without the user's knowledge or permission and easily contacts a remote server to download other harmful parasites onto the infected computer. Symptoms include your computer screen flipping upside down or inverting and documents or messages printing on your printer by themselves. For the safety of your computer, Trojan.Win32.Clicker.a should be removed immediately.

MalRefpronB

Tue, 10 Nov 2009 04:43:35 EST

Mal/Refpron-B is a Trojan horse created to infiltrate a user's computer to allow entry of adware and spyware into the the system. Once installed, Mal/Refpron-B , or Backdoor:Win32/Refpron.P, hijacks the computer and opens security holes, which makes the computer vulnerable and may expose personal and financial data to remote hackers. In addition, Mal/Refpron-B may also allow third parties to execute malicious programs and download additional malware such as rogue anti-spyware programs. Mal/Refpron-B may also generate large numbers of false popup adverts. Mal/Refpron-B is a very dangerous threat to the security of the user"s personal and financial data and should be terminated immediately.

TrojanPSWGeneric

Tue, 10 Nov 2009 04:11:04 EST

Trojan-PSW.Generic is a sneaky computer threat that hides itself in the registry files of a compromised computer. Trojan-PSW.Generic modifies a computer's settings, making it vulnerable to attackers and giving them access to a victim's sensitive information. Trojan-PSW.Generic can also connect to a remote SMTP server and produces outbound traffic by sending out emails via the Internet. To prevent possible identity theft, remove Trojan-PSW.Generic immediately.

TrojanGameThiefWin32Maganiacmak

Tue, 10 Nov 2009 04:04:01 EST

Trojan-GameThief.Win32.Magania.cmak is a harmful Trojan horse that enters users' systems without their knowledge or consent. Trojan-GameThief.Win32.Magania.cmak, also known as Worm.Win32.Taterf, can set the drive to autoplay by creating an autorun.inf file in its root directory. If the PC's drive is shared across a network then other remote computers can be infected everytime they try to access the shared network. Trojan-GameThief.Win32.Magania.cmak can also download a malicious application that attempts to steal passwords, login details, and other confidential information. Trojan-GameThief.Win32.Magania.cmak also shows a tendency of downloading other malicious files from the Internet and automatically execute it into the victim's machine. Trojan-GameThief.Win32.Magania.cmak must be eliminated from the system immediately if detected.

AntiMalware

Mon, 09 Nov 2009 10:51:39 EST

AntiMalware is a rogue anti-spyware application that belongs to a group of other malevolent security tools known as Active Security and Protection System. AntiMalware is usually advertised as a security program that has the capability of detecting and removing spyware parasites. AntiMalware is not able to perform any of those functions. AntiMalware is not a desirable security program. Once detected, AntiMalware should be removed. AntiMalware can lead to slow performance and the display of several annoying popups.

MalwareFishel

Mon, 09 Nov 2009 05:13:55 EST

Malware.Fishel is a trojan program that is deceptively installed to download malware and unwanted software onto an unsuspecting victim's computer. Malware.Fishel may download malware from multiple servers on the Internet. Malware.Fishel's symptoms include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Malware.Fishel may can also transmit personal information without the PC user's consent and severely diminish computer performance. Remove this malicious malware now to prevent further damage.

AdwareAureate

Mon, 09 Nov 2009 05:09:25 EST

Adware.Aureate is a malicious adware program that displays banner adverts and sends personal user information to a central server for hackers to gain access to it. Aureate. Aureate is installed via shareware and freeware programs. Adware.Aureate's will monitor the user's Internet activity and then display advertisement banners and popups in the infected machine based on the websites the user visited. Remove Aureate.Aureate immediatley and do not give the malicious program any time to do its devious dirty work.

SystemFighter

Mon, 09 Nov 2009 05:02:20 EST

SystemFighter is another rogue anti-spyware program in the numerous WiniSoft family of rogues which are designed to attack Windows software. Like it's predecessors, SystemFighter uses trojans to enter the system and relies on misleading advertising to trick users into purchasing it's non-existent "full version". SystemFighter will flood the user with popups and fake system notifications, claiming the system is infected. The information is false, but SystemFighter makes it all seem very real. SystemFighter will perform fake system scans which mark harmless files as threats. After scaring the user, SystemFighter urges the purchase of the full version in order to remove the infections. SystemFighter should not be bought or downloaded and must be removed as soon as it has been detected.

W32AutoRunAUJ

Mon, 09 Nov 2009 04:56:07 EST

W32/AutoRun-AUJ is a network-aware worm that infects a system and then attempts to replicate across the entire existing network. W32/AutoRun-AUJ has been found to produce outbound traffic and also illegally download unknown files from the Internet. W32/AutoRun-AUJ also creates a startup registry entry and contains all the characteristics of a severe security risk. Win32 worms also spread using Windows networking APIs, MAPI functions or email clients such as Microsoft Outlook. W32/AutoRun-AUJ should be removed from the infected system immediately to limit further damage.

MalFakeAvBC

Mon, 09 Nov 2009 04:40:16 EST

Mal/FakeAv-BC is also known as RogueAntiSpyware.AntivirusPlus, which is a rogue anti-spyware application that detects false positives. Mal/FakeAv-BC constantly creates pop-ups informing the user to purchase a rogue antispyware application "because the system is infected". Do not fall for this malicious lie and have Mal/FakeAv-BC removed immediately.

PackedGeneric265

Mon, 09 Nov 2009 04:34:21 EST

Packed.Generic.265 is a malicious computer parasite which shows threat characteristics of a banking trojan. Packed.Generic.265 disables the firewall and steals sensitive financial data like credit card numbers and online banking login details. Packed.Generic.265 can also make screen snapshots and download additional components which provides a hacker with the remote access to the compromised system. Once detected Packed.Generic.265 should be removed from the system immediately.

BackdoorWin32PoisonM

Mon, 09 Nov 2009 04:29:17 EST

Backdoor:Win32/Poison.M is a backdoor software program that gives an attacker unauthorized access to remotely control a machine without the user's knowledge. A Backdoor compromises the system integrity by making changes to the system that allow it to be used by the attacker for malicious purposes. Backdoor:Win32/Poison.M poses a threat to the safety of any system and should be removed immediately.

MalwareHarakit

Mon, 09 Nov 2009 04:14:10 EST

Malware.Harakit is a computer worm that spreads on local and remote drives via an autorun.inf file that it creates to download a malicious file whenever the drive is accessed. Malware.Harakit can also propagate through instant messaging applications using malicious links. If Malware.Harakit is detected, then the worm should be removed without delay.

HeurEngineMaliciousPacker

Mon, 09 Nov 2009 03:59:04 EST

HeurEngine.MaliciousPacker is a malware infection that is used to port other malicious files or application onto an infected system. HeurEngine.MaliciousPacker can infect a computer through a backdoor or browser security hole usually without notification to the computer user. HeurEngine.MaliciousPacker should be removed immediatley and not have the freedom to infect other systems.

W32Koobfacegen

Mon, 09 Nov 2009 03:47:49 EST

W32.Koobface!gen is a variant of the dangerous computer worm Koobface. W32.Koobface!gen propagates through social networking websites such as Facebook, Twitter, MySpace, Bebo, Netlog and others. W32.Koobface!gen uses stolen accounts in order to send spam messages with links that may lead users to malicious websites, while gathering information found in these accounts and sending the data to a remote computer.

AdwareWin32Nieguide

Fri, 06 Nov 2009 10:16:11 EST

Adware.Win32/Nieguide is a dangerous adware infection that is able to display fake advertisements that lead to the installation of other malware. Adware.Win32/Nieguide can load at startup from malicious registry entries that it has flooded the windows registry with. Adware.Win32/Nieguide is generally installed through a security hole or browser exploit and should be removed from the compromised system immediately.

W32KoobfaceQ

Fri, 06 Nov 2009 06:26:45 EST

W32/Koobface-Q is a malicious worm from the notorious Win32 stable that affects computers connected to a network running Windows 95/98/Me and Windows NT/2000 operating systems. W32/Koobface-Q spreads by using Windows networking APIs, MAPI functions or email clients such as Microsoft Outlook. W32/Koobface-Q can also create email messages with a dangerous worm program attached to it. A message created by a worm often suggests that the recipient should launch the attachment to see something interesting or important. W32/Koobface-Q contains all the characteristics of an identified security risk and should be removed if detected.

EmailWormWin32Joleeeefc

Fri, 06 Nov 2009 06:07:24 EST

Email-Worm.Win32.Joleee.efc is a network aware worm that attempts to replicate across the existing network. Email-Worm.Win32.Joleee.efc then requests other malicious files from the Internet. Email-Worm.Win32.Joleee.efc also has the ability to send out email messages with a built-in SMTP client engine which can send private emails directly to a recipient mail server for malicious purposes. Email-Worm.Win32.Joleee.efc contains definite characteristics of an identified security risk and should be removed immediatley.

DownloaderMisleadApp

Fri, 06 Nov 2009 05:43:01 EST

Downloader.MisleadApp is a trojan horse that hides in a local computer or network and downloads malicious files that may represent a high security risk. Downloader.MisleadApp will program the computer to display fake alerts in order to persuade users to purchase rogue anti-spyware programs. Downloader.MisleadApp contains all the characteristics of an identified security risk and should be removed from the system immediately.

BackdoorWin32Bredolabamm

Fri, 06 Nov 2009 05:34:06 EST

Backdoor.Win32.Bredolab.amm is a trojan horse that can secretly execute malicious files while going undetected from the computer user. Backdoor.Win32.Bredolab.amm can allow an outside attacker access to the infected system where it can be controlled and instructed to perform malicious actions over the internet. Backdoor.Win32.Bredolab.amm should be detected and safely removed with a spyware detection tool.

TrojanPSWBanker

Fri, 06 Nov 2009 04:59:21 EST

Trojan-PSW.Banker is a banking trojan that uses malicious stealth-mode tactics to download other harmful files from the Internet. Trojan-PSW.Banker can disable firewalls and steal sensitive financial data like credit card numbers and online banking login details. Trojan-PSW.Banker also takes screen snapshots and download additional components before providing a hacker with the remote access to the compromised system. Trojan-PSW.Banker contains all the characteristics of an identified security risk and should be exterminated immediately.

TrojanFakeAV

Fri, 06 Nov 2009 04:49:09 EST

Trojan.FakeAV is a malicious trojan horse that may represent a high security risk for the compromised system or its network environment. Trojan.FakeAV, also known as Trojan.Win32.Small.ccz, creates a startup registry entry and may display annoying fake alerts of malware payloads in order to persuade users to buy rogue antispyware products. Trojan.FakeAV contains characteristics of an identified security risk and should be removed once detected.

Srgoexe

Fri, 06 Nov 2009 04:41:08 EST

Srgo.exe is a malicious file which is downloaded to a computer by a trojan horse. Srgo.exe is generally bundled with other trojan viruses that may attempt to download fake advertisements onto the computer. These pop-up ads will persuade the PC users to purchase useless anti-virus programs. Do not fall for these fake warnings and have the Srgo.exe removed immediately.

MaCatteAntivirus2009

Thu, 05 Nov 2009 13:27:21 EST

MaCatte Antivirus 2009 is a rogue anti-spyware program that attempts to impersonate the McAfee security application. MaCatte Antivirus 2009 once installed, MaCatte Antivirus 2009 is able to display fake parasite results in system scans that it supposedly conducts. The threats detected by MaCatte Antivirus 2009 do not actually exist. MaCatte Antivirus 2009 is not a trusted application and should be detected and removed immediately with a reputable spyware removal tool. MaCatte Antivirus 2009 does not have the ability to detect or remove legitimate computer parasites.

TrojanWin32Cosmuxz

Thu, 05 Nov 2009 07:54:25 EST

Trojan.Win32.Cosmu.xz is a malicious trojan horse presents a high security risk for an infected computer or its network. Trojan.Win32.Cosmu.xz creates a startup registry entry and may display annoying alerts of fake malware to persuade users into buying rogue anti-spyware products. Trojan.Win32.Cosmu.xz should be eliminated once detected.

TrojanClickerWin32YabectorA

Thu, 05 Nov 2009 07:43:31 EST

TrojanClicker:Win32/Yabector.A is a malicious trojan horse that deviously enters a PC or network and downloads other dangerous files from the Internet. TrojanClicker:Win32/Yabector.A makes an outbound connection and starts producing outbound traffic. TrojanClicker:Win32/Yabector.A can also create a fake startup registry entry which allows other backdoor trojans to gain illegal access to the infected computer. TrojanClicker:Win32/Yabector.A will attempt to self-propagate by exploiting local networks and connecting to a predefined IRC server in order to participate in DDoS attacks. TrojanClicker:Win32/Yabector.A shows characteristics of a an highly severe security risk and should be removed without hesitation.

BackdoorWin32Smallvy

Thu, 05 Nov 2009 07:27:08 EST

Backdoor.Win32.Small.vy is a malicious backdoor trojan that runs in the background and allows remote access to the compromised system. Backdoor.Win32.Small.vy can download a keylogger program that captures all user keystrokes including confidential details such as usernames, passwords and credit card numbers. Backdoor.Win32.Small.vy can also install an email password recovery application that enables the user to view all email accounts passwords stored in email applications. Backdoor.Win32.Small.vy may use other similar applications for malicious intent and should not be given the leeway to download these parasites onto the system. Removal of Backdoor.Win32.Small.vy is recommended to be performed with a reputable spyware removal tool.

VirToolWin32InjectorgenAG

Thu, 05 Nov 2009 06:50:20 EST

VirTool:Win32/Injector.gen!AG is a malicious backdoor trojan horse that runs in the background and allows remote access to the compromised system. VirTool:Win32/Injector.gen!AG, which is also known as Win-Trojan/Agent.147456.AK, attempts to propagate by exploiting local network shares. VirTool:Win32/Injector.gen!AG will also attempt to join a predefined IRC server and channel stolen data in order to participate in distributed denial-of-service (DDoS) attack. The DDoS attacks will attempt to make the computer unavailable to its intended users. It is recommended that VirTool:Win32/Injector.gen!AG be removed immediately with a good anti-spyware application.

W32LookedP

Thu, 05 Nov 2009 06:41:31 EST

W32.Looked.P is a network worm that can download and execute a Downloader DLL file. It is capable of infecting executable files and propagates through shared networks. W32.Looked.P has been found to produce outbound traffic and also illegally download unknown files from the Internet. W32.Looked.P also creates a startup registry entry and possesses all the characteristics of a severe security risk. W32.Looked.P should be removed from the infected system immediately to prevent damages.

TrojanWin32Larchikv

Thu, 05 Nov 2009 06:32:39 EST

Trojan.Win32.Larchik.v is a malicious trojan horse that may represent a serious security risk for an infected computer or network environment. Trojan.Win32.Larchik.v, also known as Trojan.Win32.VB, uses a program that automatically downloads files to the local computer. These files are identified as threats on PC scans and the user is urged to have them removed by purchasing useless anti-spyware programs. Do not be fooled by these fake warnings. Have Trojan.Win32.Larchik.v removed immediately.

BlockProtector

Thu, 05 Nov 2009 06:23:19 EST

BlockProtector is a fake anti-spyware application from the WiniGuard family of rogues that use devious trojans to do their dirty work on an infected system. The malicious parasite creates additional files on the registry that are detected as threats on PC scans. BlockProtector is configured to start as the infected computer is turned on and will run a scan on the machine to find a list of viruses. BlockProtector will attempt to scare the user by displaying warnings and alerts on the screen. If detected, it is recommended that you take extreme caution and remove BlockProtector immediately.

Besecured2com

Wed, 04 Nov 2009 08:04:19 EST

Be-secured2.com is a malicious website that advertises the rogue anti-spyware program Alpha Antivirus. This website will most likely appear if a PC has been infected with trojans which alter the browser settings. The website appears like a Windows Explorer window with a system scan. The scan will pretend to run and then falsely detect tons of spyware on the system. The user will be coaxed to download the Alpha Antivirus program in order to dispose of these fake threats. Do not trust this website, and remove Alpha Antivirus immediately upon detection.

Malwareurlcom

Wed, 04 Nov 2009 07:12:08 EST

Malware-url.com is a malicious website created for the rogue anti-spyware program Alpha Antivirus. Most Internet users are redirected to Malware-url.com after being infected by trojans connected to the Alpha AV scam. The website acts as a warning, stating that the website is malicious and that security software must be purchased. Do not fall for this trap and remove this rogue website immediatley.

TrojBancosBGK

Wed, 04 Nov 2009 07:06:21 EST

Troj/Bancos-BGK is a dangerous banking trojan horse that can be installed onto a users computer without permission. Once installed, Troj/Bancos-BGK can download and install other malicious files and programs without any interaction from the user or administrator. Troj/Bancos-BGK is a serious threat to the security of personal information due to its ability to allow a remote attacker access to the infected computer. Troj/Bancos-BGK will often focus on obtaining personal information like bank account and credit card details before relaying this data to malicious hackers. Once Troj/Bancos-BGK is detected on a compromised system it should immediately be removed.

TrojBifroseZD

Wed, 04 Nov 2009 06:48:50 EST

Troj/Bifrose-ZD is a malicious trojan horse or bot that deviously enters a PC or network and makes an outbound connection. Troj/Bifrose-ZD can attack the internet connection by producing outbound traffic. Troj/Bifrose-ZD can also create a fake startup registry entry in Windows, which allows other backdoor trojans to gain illegal access to the infected computer. Troj/Bifrose-ZD will attempt to self-propagate by exploiting local network shares and connecting to a predefined IRC server in order to participate in DDoS attacks. Troj/Bifrose-ZD shows characteristics of a an highly severe security risk and should be removed.

W32AutorunAUE

Wed, 04 Nov 2009 06:38:57 EST

W32/Autorun-AUE is a worm designed to attack the Windows platform. W32/Autorun-AUE deviously copies itself to removable drives, creating an autorun.inf file to execute itself when a removable drive is inserted or attached to the infected computer. If W32/Autorun-AUE is detected, then it should be removed before it tries to convince PC users to purchase redundant anti-spyware.

TrojanDownloaderWin32Genomeuiq

Wed, 04 Nov 2009 06:27:18 EST

Trojan-Downloader.Win32.Genome.uiq is a dangerous trojan horse or bot which uses a keylogger program to capture confidential details such as username, password and credit card numbers. Trojan-Downloader.Win32.Genome.uiq also utilizes a program that downloads files to the local computer which monitors users' online activities. Trojan-Downloader.Win32.Genome.uiq invades PC users' privacy and must be removed from the compromised system.

TrojanWin32FraudPackzcs

Wed, 04 Nov 2009 06:18:18 EST

Trojan.Win32.FraudPack.zcs is a malicious trojan horse or bot that may represent a high security risk for the compromised system or its network environment. Trojan.Win32.FraudPack.zcs, which is also known as Mal/FakeAV-AD, creates a startup registry entry and may display annoying fake alerts of malware payloads in order to persuade users into buying rogue antispyware products. Trojan.Win32.FraudPack.zcs contains characteristics of an identified security risk and should be executed once detected.

TrojanSpyWin32VB

Wed, 04 Nov 2009 06:06:56 EST

Trojan-Spy.Win32.VB is a destructive trojan designed to steal information from an infected system and send the data to a remote server for hackers to gain access. Trojan-Spy.Win32.VB can open a security hole that allows additional malware programs to be downloaded onto an infected system. Aside from gathering system information, Trojan-Spy.Win32.VB may hinder computer performance. Trojan-Spy.Win32.VB is a security risk and should be removed without delay.

PackedWin32Krapag

Wed, 04 Nov 2009 05:47:39 EST

Packed.Win32.Krap.ag is a harmful backdoor trojan that uses stealth techniques to remain undetected on an infected computer or network. Packed.Win32.Krap.ag spreads via computer vulnerabilities or contaminated email attachments. Packed.Win32.Krap.ag is often packed with a dangerous rogue anti-spyware application that produces excessive pop-ups and false virus alert messages. Packed.Win32.Krap.ag also changes the settings of windows for the active desktop to show malicious web content. Packed.Win32.Krap.ag is usually installed in conjunction with a rogue anti-spyware application and should be removed.

Downloader

Wed, 04 Nov 2009 05:33:40 EST

Downloader is a malicious backdoor trojan that runs in the background and allows hackers remote access to an infected computer or network. Downloader uses a program that downloads files from the Internet to a local computer. Downloader can also log keystrokes and send this information to remote servers for hackers to gain access. Downloader contains characteristics of a severe security risk and should be removed from the system immediately.

TrojanDropperWin32Flystudlc

Tue, 03 Nov 2009 09:11:07 EST

Trojan-Dropper.Win32.Flystud.lc enters a computer or network undetected and opens up a backdoor to welcome a multitude of malware or rogue applications into the infected system. Trojan-Dropper.Win32.Flystud.lc then modifies the system settings and creates a false start up registry entry. Symptoms include the characteristics of an identified security risk by downloading of other spyware including a spyware keylogger which records keystrokes and captures the user's activity. Trojan-Dropper.Win32.Flystud.lc should not be given the freedom to do its dirty work and must be removed from the compromised system immediately.

Hacktool

Tue, 03 Nov 2009 08:14:14 EST

Hacktool is a dangerous Trojan horse that is able to infiltrate a Windows system and compromise a set of programs and scripts. Once installed, Hacktool allows a hacker to gain remote access to the infected PC. Once Hacktool is able to allow outsiders access, then personal files and data can be stolen. Hacktool may also allow a remote attacker to take control of the system's functions and use it to potentially carry out malicious activities.

InfostealerBankerC

Tue, 03 Nov 2009 07:54:38 EST

Infostealer.Banker.C has the capability to steal confidential information stored on an infected computer and sends the gathered data onto a remote source. Infostealer.Banker.C is another malicious trojan horse that may represent security risk for a compromised PC system or a network environment. Infostealer.Banker.C penetrates the system without the user's knowledge or permission. Infostealer.Banker.C can easily contact a remote server to download other harmful parasites onto the infected computer that can later cause damage. Symptoms for Infostealer.Banker.C include the computer screen flipping upside down or inverting and documents or messages printing by themselves. For the safety of your computer, Infostealer.Banker.C should be immediately removed.

TrojanGameThiefWin32OnLineGamesvjpn

Tue, 03 Nov 2009 07:37:42 EST

Trojan-GameThief.Win32.OnLineGames.vjpn is a malicious backdoor trojan that runs in the background. Trojan-GameThief.Win32.OnLineGames.vjpn can steal personal information from an infected PC by monitoring users online activities including but not limited to login information and creditcard numbers which are subsequently sent to a remote server. Trojan-GameThief.Win32.OnLineGames.vjpn can download potentially unwanted adware programs designed to deliver various advertisements to the users' systems and coax them into purchasing a malicious product.

TrojVBEJW

Tue, 03 Nov 2009 07:17:10 EST

Troj/VB-EJW is a backdoor Trojan that gives attackers access to an infected computer or network. Troj/VB-EJW may enter a user's system via browser holes or malicious emails. Troj/VB-EJW can also gather sensitive personal information from the PC and send it to a remote server where hackers gain access to the compromised data. It is advisable to remove Troj/VB-EJW before it takes control of the infected system.

BackdoorWin32VBgpx

Tue, 03 Nov 2009 07:04:31 EST

Backdoor.Win32.VB.gpx is a backdoor Trojan which provides the hacker with remote-administration of compromised machines. Backdoor.Win32.VB.gpx can be instructed to send, receive, execute and delete files while extracting confidential data from the computer. Backdoor.Win32.VB.gpx may log activity on the computer and perform many more malicious operations without knowledge to the computer user. Backdoor.Win32.VB.gpx is regarded as a definite threat to the security of any PC and if detected should be immediately removed.

W32SalityAM

Tue, 03 Nov 2009 06:49:58 EST

W32.Sality.AM is a new mischievous malware program from the notorious Sality parasite family. Win32.Sality.AM spreads via annoying emails, chatrooms, news groups and corrupt freeware downloads. Once Win32.Sality.AM is inside the system, it will run in stealth mode and launch malicious files together with annoying popups. Win32.Sality.AM is an aggressive malware program that may download viruses, trojans, worms and steal personal data. Once detected it should be removed immediately.

PackedGeneric232

Tue, 03 Nov 2009 06:38:59 EST

Packed.Generic.232 is a malicious backdoor trojan that runs in the background and shows the the same threat characteristics of a ZBot banking trojan which disables the firewall and attempts to steal sensitive financial data (credit card numbers, online banking login details). Packed.Generic.232 creates a startup registry entries that load at boot of Windows. Packed.Generic.232 is a malicious trojan horse that may represent a severe security risk for the compromised system and/or its network environment and should be removed immediately.

SuspiciousMH690

Tue, 03 Nov 2009 06:29:38 EST

Suspicious.MH690 is detection technology that is designed to locate new malware threats without traditional signatures. This technology is aimed at detecting malicious software for hackers to intentionally mutate or morph them for their own devious intent. The systems affected by Suspicious.MH690 include Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003 and Windows 2000. If Suspicious.MH690 makes an appearance on your computer do not waste time, remove it immediately to prevent further damage.

WormWin32AutoRungsf

Tue, 03 Nov 2009 06:23:16 EST

Worm.Win32.AutoRun.gsf is a network-aware worm that attempts to replicate across an existing network. Worm.Win32.AutoRun.gsf has been found to produce outbound traffic and can also download unknown files from the Internet. Worm.Win32.AutoRun.gsf may create a startup registry entry that contains the characteristics of a severe security risk and should be removed from the infected system promptly.

BlockKeeper

Tue, 03 Nov 2009 06:00:10 EST

BlockKeeper is a new rogue anti-spyware from the WiniGuard group of malicious rogues. This parasite is another clone of the BlockScanner and BlockWatcher family of rogue anti-spyware programs. BlockKeeper is no different than any of it's predecessors as it uses downloader trojans and drive-by downloads to infiltrate the system and flood the user with popups and false system notifications. These pop-ups falsely inform the user of an infection or multiple infections present on the system. Like other rogues, BlockKeeper backs up these fake claims with system scans which mark harmless files as threats and urges the user to download their licensed version. BlockKeeper is a serous security threat and should be removed immediately when detected.

TrojanWin32Buzusbumi

Mon, 02 Nov 2009 07:58:22 EST

Trojan.Win32.Buzus.bumi is a malicious trojan horse that has been found to present a major security risk for the infected system and/or its network environment. Trojan.Win32.Buzus.bumi may be disguised legitimate software in some cases. Trojan.Win32.Buzus.bumi may look useful, interesting or harmless to an unsuspecting user. However, Trojan.Win32.Buzus.bumi is harmful when executed as it presents a serious security threat to personal information stored on the infected computer.

TrojanWin32Iyeclore

Mon, 02 Nov 2009 07:40:31 EST

Trojan.Win32.Iyeclore is a malicious backdoor trojan that runs in the background and enables remote access to the corrupted computer system. Trojan.Win32.Iyeclore may be capable of sending out email messages with the built-in SMTP client engine. Trojan.Win32.Iyeclore provides the creator or attacker with remote-administration of the victim's computer. Trojan.Win32.Iyeclore can be instructed to send, receive, execute and delete files. Trojan.Win32.Iyeclore should be removed immediately after detection with a spyware removal tool.

VirusWin32CeeInject

Mon, 02 Nov 2009 07:27:22 EST

Win32.CeeInject Trojan is a computer trojan. Virus.Win32.CeeInject infects Windows systems and can be installed under fake or misleading pretenses. Virus.Win32.CeeInject can be installed without a user's knowledge and agreement. Virus.Win32.CeeInject has harmful functionality and malicious behavior to a computer system and should be removed immediately to prevent damage to the infected computer.

TrojanWin32Inhoo

Mon, 02 Nov 2009 07:20:23 EST

Trojan.Win32.Inhoo is a Trojan that enables attackers to access a computer system remotely. Trojan.Win32.Inhoo has been found to set the drive to autoplay by creating an 'autorun.inf' file in its root directory. If the drive is shared across the network, then other distinct computers can be affected any time they attempt access. Trojan.Win32.Inhoo is also able to downloads other malicious files from the Internet. Trojan.Win32.Inhoo was found to create a startup registry entry that loads into memory at boot of Windows. Trojan.Win32.Inhoo registers a 32-bit in-process server DLL. Trojan.Win32.Inhoo registers a Browser Helper Object (Microsoft's Internet Explorer plugin module) as well. Trojan.Win32.Inhoo can change system settings without the users permission which could further compromise the infected system.

BlockScanner

Mon, 02 Nov 2009 07:10:54 EST

BlockScanner is a rogue antispyware software program. BlockScanner is usually installed through the use of trojans. BlockScanner uses fake scan results and mistaken security warnings with an aim to frighten a user to think that his computer is infected. A user is persuaded to buy a full version of the software. The particular trojan that installs BlockScanner will also show false Windows Security Center popup windows. After installation, BlockScanner will register itself in the Windows registry to run automatically when Windows starts. After launch, BlockScanner will start to scan a user's computer only to return falsified results.

BackdoorWin32SubSeven19

Mon, 02 Nov 2009 05:04:18 EST

Backdoor.Win32.SubSeven.19 is a malicious backdoor trojan that runs in the background and enables distant access to the infected computer system. Backdoor.Win32.SubSeven.19 is capable of sending out email message(s) with the built-in SMTP client engine. Backdoor.Win32.SubSeven.19 provides the creator or hacker with remote-administration of an infected computer. Backdoor.Win32.SubSeven.19 can be instructed to send, receive, execute and delete files, access confidential data from the computer, log activity on the computer and more.

BackdoorWin32Agentagbb

Mon, 02 Nov 2009 05:01:51 EST

Backdoor.Win32.Agent.agbb is a malicious backdoor trojan that runs in the background and enables remote access to the corrupted computer system. Backdoor.Win32.Agent.agbb has been found to produce outbound traffic and create a startup registry entry that loads at boot of Windows. Backdoor.Win32.Agent.agbb gives an attacker unauthorized access to a vulnerable computer system. By using Backdoor.Win32.Agent.agbb, attackers can remotely control the machine without a user's knowledge.

WormWin32AutoRunarcx

Mon, 02 Nov 2009 04:57:37 EST

Worm.Win32.AutoRun.arcx is a network worm that copies itself across the network. Worm.Win32.AutoRun.arcx is a security risk to a computer system and users should remove this threat at right away after detection. Worm.Win32.AutoRun.arcx may lead to data loss or other faults including reduced system performance.

MalKeyGenA

Mon, 02 Nov 2009 04:51:54 EST

Mal/KeyGen-A is a key generator. Mal/KeyGen-A's malicious behavior includes a description of an executable files. These malicious files demonstrate characteristics or actions that are found exclusively within malware parasites. To limit damages to the infected system, Mal/KeyGen-A should be removed immediately.

TrojanSpyWin32Agentbawr

Mon, 02 Nov 2009 04:41:35 EST

Trojan-Spy.Win32.Agent.bawr is a keylogger program that is able to capture user keystrokes. Trojan-Spy.Win32.Agent.bawe can log information such as usernames, passwords, credit card numbers and other identifying credentials. After stealing confidential data, Trojan-Spy.Win32.Agent.bawr tries to send the information to a remote attacker. Trojan-Spy.Win32.Agent.bawr is a security risk to your computer. Trojan-Spy.Win32.Agent.bawr should be removed immediately after detection.

TrojanWin32Dialerext

Fri, 30 Oct 2009 12:33:49 EST

Trojan.Win32.Dialer.ext is another evil product from the notorious Trojan horse stable which churns out parasitic malware spyware whose primary purpose is to remain hidden in the system in order to download and install a stronger threat such as a bot. Trojan.Win32.Dialer.ext is delivered to a victim through a misleading email message, or via a malicious website, which installs the vicious Trojan horse on a computer through vulnerabilities in web browser software such as Microsoft Internet Explorer. Trojan.Win32.Dialer.ext The Trojan horse lurks silently on the infected machine, silently carrying out a multitude of misdeeds, such as downloading malware spyware, while the victim continues on with normal activities totally unaware. For your computer's safety Trojan.Win32.Dialer.ext this parasite should be removed immediately.

TrojanWin32Refrosoejh

Fri, 30 Oct 2009 12:24:36 EST

Trojan.Win32.Refroso.ejh is a Trojan horse that presents a high security risk for the compromised system and/or its network environment. Trojan.Win32.Refroso.ejh can disguise itself as a Yahoo Emoticons generator to monitor running applications on infected computers. Trojan.Win32.Refroso.ejh attempts to steal personal information and sends them to the hacker. Trojan.Win32.Refroso.ejh also serves as a backdoor Trojan so that the hacker can obtain illegal access to the affected computer. Trojan.Win32.Refroso.ejh should be dealt with ruthlessly by removal without delay.

TrojanDropperWin32VBaevb

Fri, 30 Oct 2009 12:21:10 EST

Trojan-Dropper.Win32.VB.aevb is a Trojan that enters a computer or network in stealth and opens up backdoors to welcome a multitude of malware to the infected system. Trojan-Dropper.Win32.VB.aevb modifies the system settings and creates a start up registry entry. Trojan-Dropper.Win32.VB.aevb's malicious symptoms include the downloading of a spyware keylogger which records keystrokes and captures the user's activity. Trojan-Dropper.Win32.VB.aevb should not be given the freedom to do its dirty work and must be eradicated without fail.

Win32Bifrosefqs

Fri, 30 Oct 2009 10:50:03 EST

Win32.Bifrose.fqs is a backdoor Trojan that gives attackers access to an infected computer or network. Win32.Bifrose.fqs may enter a user's system via browser holes or malicious e-mails. Win32.Bifrose.fqs can also gather sensitive personal information from the PC and send it to a remote server where hackers gain access to the information. It is advisable to remove Win32.Bifrose.fqs before it takes control of the compromised system.

BlockWatcher

Fri, 30 Oct 2009 10:36:11 EST

BlockWatcher is the latest rogue anti-spyware program spyware which poses as a program or a malicious website. BlockWatcher It generally acts as spyware removal software or a registry repair utility but in fact uses its own dangerous programs to hijack itself into the computer and frighten the user by flooding the desktop with false system errors and critical spyware infections warnings. Most of BlockWatcher's spyware tools uses Trojan Zlob or Vundo Trojan horses to persuade computer users to download a free trial program. BlockWatcher uses a fake scanner to generate exaggerated spyware results which are false positives. The free scanner tool is usually flooded with additional Trojans that uses loopholes to infect the system with further viruses and spyware parasites. BlockWatcher This rogue should not be given the leeway to mislead the computer user and must be exterminated immediately.

W32IRCBotAFU

Fri, 30 Oct 2009 10:21:00 EST

W32/IRCBot-AFU is a worm from the notorious Win32.Worm worm stable. W32/IRCBot-AFU spreads using Windows networking APIs, MAPI functions or email clients such as Microsoft Outlook. W32/IRCBot-AFU often creates unknown email messages with a harmful program attached and, in some cases, attaches itself to outgoing email messages. W32/IRCBot-AFU spreads via a misleading message which suggests that the recipient should open the attachment to see something interesting or important. W32/IRCBot-AFU should not be allowed to spread and must be removed from the infected system immediately.

NewMalwareh

Fri, 30 Oct 2009 10:18:29 EST

New Malware.h is a dangerous computer malware infection that is known to deviously attach itself to the root of any accessible drive on a vulnerable computer. New Malware.h operates in the background within Windows, making it difficult to almost impossible to manually detect and remove. New Malware.h poses a severe threat to the infected computer and should be removed immediately.

TrojanDownloaderWin32Pherdh

Fri, 30 Oct 2009 10:16:00 EST

Trojan-Downloader.Win32.Pher.dh is installed through a devious exploit and deceives the user by downloading other harmful malware and unwanted software onto the infected computer. These pests can download adware, spyware and other malware from various servers and sources on the Internet. Other symptoms include opening illicit network connections, self-mutation and the ability to disable weak software security. Other risks which may prove detrimental to the computer user include the transmission of personal information without the user's consent. Trojan-Downloader.Win32.Pher.dh can severely degrade the performance of your computer and should be executed immediately.

TrojanGameThiefWin32OnLineGamesvrky

Fri, 30 Oct 2009 10:09:24 EST

Trojan-GameThief.Win32.OnLineGames.vrky is another viral beast which shows significant characteristics to present a severe security risk. Trojan-GameThief.Win32.OnLineGames.vrky It enters the computer or network without the user knowing and opens a backdoor for other malicious viruses to enter the already vulnerable system. Trojan-GameThief.Win32.OnLineGames.vrky will steal personal information from an infected PC by monitoring the user's online activities. Poor passwords and login information are quickly acquired. Credit card numbers are also stolen and the information is then sent to a remote server for the hacker's convenience. Trojan-GameThief.Win32.OnLineGames.vrky should be stopped in its tracks and given no more authority over your personal information.

BackdoorWin32Bifroseaxnl

Fri, 30 Oct 2009 10:07:00 EST

Backdoor.Win32.Bifrose.axnl is a malicious backdoor Trojan that enters unannounced initially and covertly runs in the background to allow hackers access to the compromised PC or network. Once it has gained entry, Backdoor.Win32.Bifrose.axnl will start it"s mischief by creating a start-up registry entry. Hereafter, the symptoms include the infected system producing unusual amounts of outbound traffic. Backdoor.Win32.Bifrose.axnl should not be given a chance to give other viruses entry to your computer. Do away with it immediately.

TrojanWin32Agentcick

Fri, 30 Oct 2009 10:05:24 EST

Trojan.Win32.Agent.cick is another clone from the malicious Trojan horse stable. The virus easily puts a PC system or a network environment highly at risk. Trojan.Win32.Agent.cick contains characteristics of a severe security risk and should not be taken lightly. Like other Trojans of the Trojan.Win32 variation, Trojan.Win32.Agent.cick is a vicious malware with extremely harmful characteristics. Trojan.Win32.Agent.cick secretly penetrates the system and easily contacts a remote server to download other harmful parasites onto the infected computer. Symptoms include a flashing computer screen and confusing messages and update requests. For the safety of your computer, Trojan.Win32.Agent.cick should be removed immediately.

MalBehav242

Fri, 30 Oct 2009 10:02:49 EST

Mal/Behav-242 makes its way into your system and catches the user unaware of its existence. Once installed inside, Mal/Behav-242 it opens a backdoor by opening a malicious executable file and running it on your computer without your permission. Mal/Behav-242 The Trojans make an ominous entry and often tries try to steal your usernames and passwords to send them to an attacker. Once infected, your computer may be rendered defenseless as Mal/Behav-242 may disable your anti-spyware program. Show this vicious virus no mercy by slaying it immediately.

MalBredoA

Fri, 30 Oct 2009 10:00:26 EST

Mal/Bredo-A is a trojan horse that makes a stealth entry into a PC or network and shows threat characteristics of another trojan called Zbot, which is a banking trojan that disables the firewall and steals sensitive financial data like credit card numbers and online banking login details. Mal/Bredo-A The malicious parasite may take screen snapshots, download additional components, and provide the hacker with the remote access to your PC or system. Other symptoms common to Mal/Bredo-A include downloads or requests for other files from the Internet. Mal/Bredo-A can also contact remote servers to download additional malware onto your computer without your knowledge. This infection should be uprooted without hesitation as it poses a high risk to your computer.

WinTrojanBuzus98304X

Fri, 30 Oct 2009 09:57:40 EST

Win-Trojan/Buzus.98304.X is a malicious Trojan horse or bot that deviously enters a PC or network and makes an outbound connection, so it will be able to do its damage without the user"s knowledge attacks the Internet by producing outbound traffic. Win-Trojan/Buzus.98304.X then creates backdoors to gain illegal access to the infected computer. Win-Trojan/Buzus.98304.X will attempt to self-propagate by exploiting local network shares. Win-Trojan/Buzus.98304.X will also attempt to join a predefined IRC server and channel in order to participate in DDoS attacks. Win-Trojan/Buzus.98304.X shows characteristics of a highly severe security risk and should be ruthlessly executed.

TrojanDownloaderBredolabAZ

Thu, 29 Oct 2009 10:42:32 EST

Trojan.Downloader.Bredolab.AZ is a trojan which downloads and executes malicious files on a vulnerable computer system. Bredolab.gen.a embraces the code that after it finishes encrypting user data files, it can quit the botnet after reboot or if an external software program tries to analyze its activities. With the Trojan.Downloader.Bredolab.AZ botnet, hackers can get full control of the PC and collect data; for instance, steal personal information and send spam emails to the user's list of email addresses.

BackdoorWin32Clampia

Thu, 29 Oct 2009 10:33:53 EST

Backdoor.Win32.Clampi.a is a Trojan program created to steal confidential user data and distantly manage the victim's computer. Backdoor.Win32.Clampi.a is a Windows PE EXE file. The size of Backdoor.Win32.Clampi.a is 470 bytes. Backdoor.Win32.Clampi.a downloads various codes from servers. These codes can be changed or replaced with other malicious codes.

WindowsEnterpriseSuite

Thu, 29 Oct 2009 09:56:07 EST

Windows Enterprise Suite is a rogue anti-spyware program. WindowsEnterpriseSuite is considered to be part of the family of rogues which goes together with Volcano Security Suite. Research has proven how each of the above mentioned rogue program tends to make use of similar confusing ways so as to entice trustful computer users to purchase the full version of this deceitful security program.

Bredolab

Thu, 29 Oct 2009 09:43:30 EST

Bredolab is a trojan downloader that is capable of going undetected while running in the background when it performs downloads of malicious files or applications. Bredolab can be installed onto a computer without notification to the computer user. After installed, Bredolab can install malware and lead to damage caused by unknown applications being executed. Bredolab must be detected and removed with a spyware detection tool to prevent potential damage to essential system files.

TrojanDownloaderWin32Delftfy

Thu, 29 Oct 2009 09:27:14 EST

Trojan-Downloader.Win32.Delf.tfy is a trojan program that is deceptively installed to download malware and unwanted software onto an unsuspecting victim's computer. Trojan-Downloader.Win32.Delf.tfy may download adware, spyware or other malware from multiple servers on the Internet. Trojan-Downloader.Win32.Delf.tfy poses a high risk to a PC's security. Trojan-Downloader.Win32.Delf.tfy's symptoms include illicit network connections, self-mutation, disabling of security software and the installation of harmful malware. Trojan-Downloader.Win32.Delf.tfy may also transmit personal information without your consent and severely compromise the performance of your computer. Remove this malicious malware now.

PackedWin32TDSSaa

Thu, 29 Oct 2009 09:18:21 EST

Packed.Win32.TDSS.aa is a malicious trojan horse that may be security risk for the corrupted system and/or its network environment. Malicious files and registry entries are usually associated with the Packed.Win32.TDSS.aa Trojan.

TrojanWin32Agentcccr

Thu, 29 Oct 2009 09:14:57 EST

Trojan.Win32.Agent.cccr is a malicious trojan horse that may produce security risk for the corrupted system and its network environment. Trojan-PWS.Win32.Agent may be installed onto your computer through system security exploits. Trojan.Win32.Agent.cccr may be any software program that goes undetected. Trojan-PWS.Win32.Agent may download other dangerous malware and enable remote attacker to obtain access to the private information. The Trojan.Win32.Agent.cccr may spread through free music and movie downloads or through dubious porn related web site links. Trojan.Win32.Agent.cccr may lead to identity theft and critical computer system issues.

BackdoorWin32mIRCbasedk

Thu, 29 Oct 2009 09:08:34 EST

Backdoor.Win32.mIRC-based.k is a backdoor. By using hidden or undocumented means, BackDoor-DKH gets into a computer system, or software program using such ways to access a computer system. Some software programs have a backdoor set by the evil programmers to enable them to obtain access to troubleshoot or modify the application. Software that is classified as a 'backdoor' is created to exploit a vulnerability in a computer system and open it up to further allow access to a hacker.

GenericBackDoor

Thu, 29 Oct 2009 09:04:10 EST

Generic BackDoor is a trojan. Mal/Generic-A does not self-replicate but spread manually. Mal/Generic-A is able to spread frequently under the basis that it is profitable or needed. The most usual installation methods of Generic BackDoor include system or security exploitation, and unsuspecting users, who manually execute unidentified software programs. Distribution channels encompass email, malicious or attacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

WormWin32Agentvk

Thu, 29 Oct 2009 08:59:00 EST

Worm.Win32.Agent.vk is a network worm that copies itself across computer networks through security holes on vulnerable computers connected to one another. Generic.dx!bc belongs to a category of Worm.Generic. Generic.dx!bc is capable to download other files from the Internet. Worm.Win32.Agent.vk creates a startup registry entry that loads into memory at startup of Windows.

BehavesLikeWin32VBMalware

Thu, 29 Oct 2009 08:55:52 EST

BehavesLike.Win32.Malware VB is a heuristic detection for software programs that presents behaviors that are typically related to malicious threats. BehavesLike.Win32.Malware VB is usually detected on malware software programs that try to cover as legitimate applications. BehavesLike.Win32.Malware VB is capable of downloading other malicious files from the Internet. BehavesLike.Win32.Malware VB creates a startup registry entry that loads at boot of Windows. BehavesLike.Win32.Malware VB registers a 32-bit in-process server DLL.

W32RabbitFR

Wed, 28 Oct 2009 12:46:54 EST

W32/Rabbit.FR is a computer Trojan horse that is known to copy associated files to other areas of the hard drive. Usually W32/Rabbit.FR will relocate its files to the Documents and Settings user fielder as hidden files. These actions allow W32/Rabbit.FR to go undetected. W32/Rabbit.FR is a serious threat to the security of personal information as it could allow a remote attacker access to certain files or data stored on the hard drive of an infected computer.

SoftBarrier

Wed, 28 Oct 2009 12:33:02 EST

SoftBarrier is a fake security application that comes from the family of rogue anti-spyware programs known as WiniGuard, Soft Cop, Save Defense and others. Trojan horse infections are known to automatically install the SoftBarrier program onto computers over the internet. Once this process has taken place, computer users are usually prompted by fake parasite notifications. In addition, system scans are initiated by SoftBarrier that return bogus parasite results. These efforts are performed only to persuade computer users to purchase a full version of SoftBarrier. SoftBarrier is not a security program that is capable of detecting or removing legitimate computer parasites. Removal of SoftBarrier is recommended to be performed with a spyware scan tool to limit damage caused by manual removal processes.

DesktopDefender2010

Wed, 28 Oct 2009 10:32:33 EST

Desktop Defender 2010 is a rogue security application affiliated with the Contraviro and UnVirex rogueware family. Desktop Defender 2010 (DesktopDefender2010, DesktopDefender 2010, Desktop Defender2010) is likely to introduce itself as a legitimate security tool, which declares to detect and remove suspicious software programs. This is nothing more than a tactic used by this software program in order to force users to install and later purchase the full Desktop Defender 2010 application. DesktopDefender2010 may manipulate system files and registry entries to assure that it runs with every Windows start up. DesktopDefender 2010 can also alter web browser settings so it is able to redirect the user to its malicious third-party website. False system scans, constant malware warnings and annoying pop-up messages are all part of Desktop Defender 2010's method to convince naive PC users to buy it. Users are highly advised to install a legitimate anti-spyware program to remove Desktop Defender 2010 from the computer as soon as possible.

VirusWin32Cheburgena

Wed, 28 Oct 2009 09:42:30 EST

Virus.Win32.Cheburgen.a is a dangerous computer virus that has the ability to steal passwords from multiple online games. PWS-LegMir.gen, an alias of Virus.Win32.Cheburgen.a, spreads by using 'autorun.inf' in the root folder of available drives in the system and downloads updates of itself. It is recommended that Virus.Win32.Cheburgen.a be detected and safely removed with a spyware removal utility.

MalPacker

Wed, 28 Oct 2009 09:11:26 EST

Mal/Packer is a disturbing malware infection attacking Windows XP and Vista operating systems. After infecting, Mal/Packer will inject malicious .exe and .dll files and hinder users from accessing the registry. Mal/Packer affects computer systems through pornographic related adult web sites, corrupt multimedia codecs, SPAM e-mail or through suspicious file sharing downloads. Mal/Packer is a destructive malware that can seriously destroy Windows system.

TrojanGameThiefWin32OnLineGamessqll

Wed, 28 Oct 2009 09:05:32 EST

Trojan-GameThief.Win32.OnLineGames.sqll is a malicious backdoor trojan that runs in the background. In addition, Packed.Win32.Black.a enables remote access to the corrupted system. Trojan-GameThief.Win32.OnLineGames.sqll is secured with Themida in order to prevent the sample from being reverse-engineered. Themida protection can in some way be used by a threat to complicate the manual threat analysis (for instance, the sample would not run under the Virtual Machine). Packed.Win32.Black.a may download other malicious files from the Internet.

TrojanDownloaderWin32Zlobacqx

Wed, 28 Oct 2009 08:59:12 EST

Trojan-Downloader.Win32.Zlob.acqx is a Trojan downloader. Trojan-Downloader.Win32.Zlob.acqx is a standalone program that may secretly download and run other files from remote web and ftp sites. Trojan-Downloader.Win32.Zlob.acqx may download distinct trojans and backdoors and activate them on a vulnerable system without user's permission. While running, Trojan-Downloader.Win32.Zlob.acqx installs itself to system and waits until Internet connection becomes available. It can also connect to a web or ftp site to download specific files and executes them.

W32Autorunwormh

Wed, 28 Oct 2009 08:51:50 EST

W32/Autorun.worm.h is a worm that copies itself to the root of any accessible disk drives on the corrupted computer. W32/Autorun.worm.h will also create an 'autorun.inf' file on the root directory of the volume in order that it is accomplished the next time the volume is mounted. W32/Autorun.worm.h spreads to removable drives by creating an 'autorun.inf' file, which will run the worm automatically, if the systems which use the removable drive are set to Autorun.

TrojanWin32FraudPacksrv

Wed, 28 Oct 2009 08:48:22 EST

Trojan.Win32.FraudPack.srv is a malicious trojan horse that may serve security risk for the corrupted computer system and/or its network environment. Trojan.Win32.FraudPack.srv can go undetected on an infected system once it is initiated. It is recommended that Trojan.Win32.FraudPack.srv be removed with a spyware removal tool that is designed to detect Trojan parasites.

FakeAlertDZ

Wed, 28 Oct 2009 08:41:37 EST

FakeAlert-DZ is a Trojan that will redirect Internet browser to an unidentified website. Usually a copy of deceitful security program is hosted on the website and tries to drop other malware onto the infected system. FakeAlert-DZ will show a variety of fake alerts about computer security state on a compromised computer. These false warnings will attempt to persuade users to download a rogue security software program.

VolcanoSecuritySuite

Tue, 27 Oct 2009 10:24:57 EST

Volcano Security Suite is a rogue antispyware program that uses a fake scanner to lure its victims into taking part in fraudulent transactions. When executed, Volcano Security Suite pretends to scan the computer and delivers a predefined list of infections that aren't there. Volcano Security Suite program is not going to get rid of the spyware on your computer but might expose you to more security threats. When VolcanoSecuritySuite is installed, it configures itself to run automatically each time a user turns on the computer. Volcano Security Suite is a variant from other well known rogue software products such as Cyber Security, Soft Cop, and Personal Guard 2009. Volcano Security Suite is a counterfeit, unwanted program and is recommended to be removed immediately.

Bredolabgena

Tue, 27 Oct 2009 07:58:15 EST

Bredolab.gen.a is a trojan that spreads manually, often under the premise that it is beneficial or is needed in the computer system. Bredolab.gen.a installation method involves having an unsuspecting user, who clicks a suspicious link or downloads an unidentified program, manually executing the trojan in the computer. Distribution channels for Bredolab.gen.a cover spam email, malicious or attacked web pages, Internet Relay Chat (IRC), and peer-to-peer networks.

RootkitWin32Agentuok

Tue, 27 Oct 2009 07:55:16 EST

Rootkit.Win32.Agent.uok is a rootkit infection created to hide files in the computer system to avoid detection from security software. Rootkit.Win32.Agent.uok can take control of vulnerable system functions and use them for mischievous or even illegal actions without the user's knowledge or permission. Rootkit.Win32.Agent.uok is a serious threat to computer system security and personal data. Users are strongly recommended to remove it immediately after detection.

BackdoorWin32Agentalnk

Tue, 27 Oct 2009 07:52:16 EST

Backdoor.Win32.Agent.alnk is a malicious backdoor trojan that runs in the background and enables remote access to the corrupted system. Backdoor.Win32.Agent.alnk provides the author or 'master' of the Trojan with remote 'administration' of a victim's machine. Backdoor.Win32.Agent.alnk may install, launch and run invisibly, without the agreement or knowledge of the user. When installed, Backdoor.Win32.Agent.alnk may be instructed to send, receive, execute and delete files, access confidential data from the computer, log activity on the computer and other fraudulent functions.

TrojanBankerWin32Bankeraohf

Tue, 27 Oct 2009 07:50:00 EST

Trojan-Banker.Win32.Banker.aohf is a trojan that steals private information such as account numbers, passwords and banking credentials. Once installed, Trojan-Banker.Win32.Banker.aohf uses the built-in SMTP client engine or communicates with a remote SMTP server to send emails of the collected information to the trojan author. Trojan-Banker.Win32.Banker.aohf may also wait in the background and control user's Internet activity. A logging procedure begins when a certain website is reached, or if the address of a reached website includes certain words. Trojan-Banker.Win32.Banker.aohf may supplement legitimate banking or payment system websites to access user details.

TrojanWin32Refrosocxc

Tue, 27 Oct 2009 07:47:47 EST

Trojan.Win32.Refroso.cxc is a destructive and malicious trojan designed to steal information from an infected system and send the compromised data to a remote server. Trojan.Win32.Refroso.cxc, or Trojan-Spy.Win32.VB, may open a security hole that allows the download and installation of malware programs onto an infected system. Aside from gathering system information, Trojan-Trojan.Win32.Refroso.cxc may initiate computer performance problems. Trojan.Win32.Refroso.cxc is a security risk and should be removed.

WormWin32AutoItbg

Tue, 27 Oct 2009 07:42:11 EST

Worm.Win32.AutoIt.bg, also known as W32/AutoIt-AO, is a network worm that copies itself across the network. Worm.Win32.AutoIt.bg alters system settings, resulting in a negative effect on the overall computer system security. Worm.Win32.AutoIt.bg creates a startup registry entry. Worm.Win32.AutoIt.bg copies itself on local disks and write-accessible removable disks. When launching, Worm.Win32.AutoIt.bg copies its executable file to the Windows system and root directories. In order to ensure that Worm.Win32.AutoIt.bg is launched automatically upon reboot, the worm adds a link to its executable file to the system registry.

ConstructorWin32Bifrosej

Tue, 27 Oct 2009 07:36:52 EST

Constructor.Win32.Bifrose.j is a destructive and malicious trojan that poses a security and privacy risk to a corrupted computer's system and/or its network environment. Constructor.Win32.Bifrose.j can attach itself to running processes on a computer, install other malware and destroy or change important registry files. When installed, Constructor.Win32.Bifrose.j may activate corrupt system processes and hide itself from firewalls and anti-virus software programs. Constructor.Win32.Bifrose.j can change or damage files and collect stored data from user's computer hard disk.

WormWin32AutoRunauqd

Tue, 27 Oct 2009 07:31:24 EST

Worm.Win32.AutoRun.auqd is a network worm that copies itself across the network. Worm.Win32.AutoRun.auqd may exploit a vulnerability in the Windows to download its malicious files into a system. Worm.Win32.AutoRun.auqd, or BackDoor-EDF, infects the system when users download an executable file usually found in spam e-mail attachments, corrupt video media codecs, pornographic related images and movie downloads. Computers users are advised to have an up-to-date antivirus software which will detect the worm executable upon download and prevent the computer from becoming a host for Worm.Win32.AutoRun.auqd.

TrojanPSWWin32QQPassaom

Mon, 26 Oct 2009 11:56:05 EST

Trojan.PSW.Win32.QQPass.Aom is a dangerous computer Trojan horse. Once a system is infected with Trojan.PSW.Win32.QQPass.Aom, it tries to steal passwords, login details, and other confidential information. Trojan.PSW.Win32.QQPass.Aom is a serious security risk to a computer system and personal information stored on the hard drive. Trojan-PSW.Win32.QQPass.aom may lead to data loss or other faults such as performance reduction.

TrojanWin32Regrun

Mon, 26 Oct 2009 11:54:11 EST

Trojan.Win32.Regrun is a banking trojan that disables firewalls, steals sensitive financial data such as credit card numbers and online banking login details. Trojan.Win32.Regrun records screen snapshots, downloads additional components, and gives an attacker the remote access to the corrupted computer system. Trojan.Win32.Regrun has stealth-mode features common to Rootkits that allow it to go undetected.

Spywareurlcom

Mon, 26 Oct 2009 11:50:37 EST

Spyware-url.com is a malicious website, which is used to promote the rogue anti-spyware program Alpha Antivirus. Users may be redirected to Spyware-url.com which is a result of browser hijacking, accomplished by trojans which change the browser settings on the affected user's computer. The user is redirected to the URL named Spyware-url.com/block.php. The page is a popup, which announces the user that the website being browsed at the particular point in time is not secure, and encourages the user to buy Alpha Antivirus in order to fix flaws. Users are strongly advised not to rely on this website and remove Alpha Antivirus immediately.

Malwaredomaincom

Mon, 26 Oct 2009 11:47:22 EST

Malware-domain.com is a malicious domain, used to advertise the bogus anti-spyware program Alpha Antivirus. Users may be redirected to this website after the system has been affected by a Trojan horse. Malware-domain.com is, in fact, no more than a popup, which declares that the website that's presently being used is not secure and that security software is needed. The popup encourages the user to download Alpha Antivirus. Users are strongly recommended to not trust this website and remove Alpha Antivirus immediately.

Windefendersiteblockcom

Mon, 26 Oct 2009 11:43:36 EST

The website Windefendersiteblock.com is associated with Cyber Security, a rogue anti-spyware program. Windefendersiteblock.com is a browser hijacker because it secretly attacks a user's computer system and changes parameters with permission. The user will keep getting fake and excessive alerts from Windefendersiteblock.com, which state that the PC is suffering from security issues and needs to be fixed. The screenshot of Windefendersiteblock.com/info warning states a user needs to install some web defense software to get rid of getting a PC and privacy endangered. If a user clicks on the provided button, he is going to be diverted to a yet more confusing page that offers the option to purchase the Cyber Security applicaiton. Cyber Security is not a safe program to install, nor is it able to locate and detect any PC infections.

ShieldSafeness

Mon, 26 Oct 2009 11:39:49 EST

ShieldSafeness is a deceptive software program that gives fake notifications of security threats. In addition, it shows false alerts on a user's computer to make the person think their PC is seriously affected by spyware, adware, Trojans and other types of malware. While running, ShieldSafeness will encourage a user to purchase for a full version of the application to remove threats. Reported infections do not really exist. Commonly, Shield Safeness does not discover legitimate parasites or security threats. ShieldSafeness is a scam. Users are highly encouraged do not buy this confusing program. In order to make things look even worse, ShieldSafeness will constantly show false security warnings and reports from Windows Task Bar.

SoftStronghold

Mon, 26 Oct 2009 09:52:24 EST

SoftStronghold is a rogue antispyware program that was created by the same group of hackers that made the fake security programs Soft Cop, WiniGuard and SoftSoldier. SoftStronghold is installed from false online spyware scanners. They display that a user's computer is affected and he must install software to remove all threats. SoftStronghold is a Trojan. When downloaded and run, a Trojan will install SoftStronghold, create many malicious files with random names and set SoftStronghold to run automatically each time, when a user turns on a computer. This particular Trojan that installs SoftStronghold will show annoying screens, false security warnings and reports from Windows task bar, that a user's PC is infected or being attacked by an Internet Virus.

TrojanWin32Larchikgy

Fri, 23 Oct 2009 08:06:17 EST

Trojan.Win32.Larchik.gy is a malicious trojan horse that is a serious security risk for the affected computer system and/or its network environment. Trojan.Win32.Larchik.gy is a serous risk to the security stability of an infected computer. Trojan.Win32.Larchik.gy may propagate through contaminated e-mails or malicious websites. Attackers might use Trojan.Win32.Larchik.gy to make bots out of corrupted computers. Trojan.Win32.Larchik.gy should be removed immediately after it is detected.

TrojanDownloaderWin32Delfueh

Fri, 23 Oct 2009 08:05:23 EST

Trojan-Downloader.Win32.Delf.ueh is a Trojan downloader which purpose is to install malicious code on a user's computer system. Still, Trojan-Downloader.Win32.Delf.ueh could allow other malicious uses. Trojan-Downloader.Win32.Delf.ueh could be used to continually download new versions of malicious code, adware, or 'pornware'. Trojan-Downloader.Win32.Delf.ueh is also frequently used to exploit the vulnerabilities of Internet Explorer.

BackdoorWin32Bifrosebubl

Fri, 23 Oct 2009 08:04:08 EST

Backdoor.Win32.Bifrose.bubl is a malicious backdoor trojan that runs in the background and enables to access the affected system remotely. Win32.Backdoor.Bifrose.bubl copies its file(s) to computer's hard disk. The typical file name of Backdoor.Win32.Bifrose.bubl is (*.*). After this, it creates new startup key with name Win32.Backdoor.Bifrose.bulb and value (*.*).Backdoor.Win32.Bifrose.bubl could also be found in a processes list with the name (*.*) or Win32.Backdoor.Bifrose.bulb.

Win32Autorunworm670720

Fri, 23 Oct 2009 08:02:15 EST

Win32/Autorun.worm.670720 or Win32.Autorun is a worm that is able to disguise as a legitimate file and use Windows exploits for downloading malicious files from outside websites. Win32/Autorun.worm.670720 affects the system through unwanted SPAM e-mail attachments, vicious video media codecs, pornographic related images and movie downloads. Once Worm.Win32.Autorun enters computer system it will activate malicious exe.dll files and download further viruses. Win32/Autorun.worm.670720 is a high security issue that could steal secret data and damage local and network computers.

TrojanWin32VBoyl

Fri, 23 Oct 2009 07:54:28 EST

Trojan.Win32.VB.oyl is a malicious trojan horse that is security risk to the corrupted computer system and/or its network environment. Trojan.Win32.VB.oyl creates outbound traffic and downloads malicious files from the Internet.

TrojanPWSWin32VB

Fri, 23 Oct 2009 07:52:55 EST

Trojan-PWS.Win32.VB is a malicious trojan horse that is a security risk for the corrupted computer system and/or its network environment. Trojan-PWS.Win32.VB could be able to capture all user keystrokes such as confidential details: username, password, credit card number, etc.

WinAntivirus

Fri, 23 Oct 2009 07:48:36 EST

WinAntivirus a rogue anti-spyware program or security software application that use a variety of forms of deception and/or unethical means or exhibit a history of negligent fake positives to goad the end user to buy the full version. Sometimes WinAntivirus application might be downloaded with some form of undesirable software where rogue application is provided to the customer as a mean to remove the undesirable software. WinAntivirus might enter user's privacy, collect and steal user's information, steal user's money as well as present a user with a lot of terrible computer security issues that would be better for a user not to have them. Users are highly urged to never download, install or buy anything even remotely related to WinAntiVirus.

TrojanLop_com

Thu, 22 Oct 2009 08:54:01 EST

Trojan.Lop_com is an adware and Trojan. Lop.com bundled with other software programs such as Patcho's Messenger Plus, WarezP2P, etc., adds a toolbar and favorites to the Internet Explorer, shortcuts icons to a desktop, and displays occasional popup ads. Trojan.Lop_com is a difficult parasite to manually remove from your system.

WormWin32AutoRunuvu

Thu, 22 Oct 2009 08:49:42 EST

Worm.Win32.AutoRun.uvu is a network worm that copies itself across the network shares that use weak passwords. Worm.Win32.AutoRun.uvu sets the computer's drive to autoplay by creating the file autorun.inf in its root directory. If the drive is shared across a network, other remote computers could be compromised.

TrojanWin32Qhostmbi

Thu, 22 Oct 2009 08:38:58 EST

Trojan.Win32.Qhost.mbi is a malicious trojan horse that has the ability to compromise a vulnerable computer system or its network environment. Trojan.Win32.Qhost.mbi downloads malicious files from the Internet and executes them on the infected computer. Trojan.Win32.Qhost.mbi modifies registry settings and creates a new registry startup keys. Trojan.Win32.Qhost.mbi is a threat to the security and privacy to your computer and is advised to remove Trojan.Win32.Qhost.mbi immediately.

AdwareLoadscc

Thu, 22 Oct 2009 08:27:41 EST

Adware.Loadscc is an alarming adware application that infiltrates a computer system through trojans and other parasites. Adware.Loadscc is a means for monetary gain for its authors by contacting the service provider to confirm the success of other malware installations. Adware.Loadscc displays commercial adverts, connects itself to the internet and remains resident in background. No manual removal instructions are presently available for Adware.Loadscc. Users should utilize an automatic removal process to safely remove Adware.Loadscc.

PackedWin32Zacka

Thu, 22 Oct 2009 08:19:20 EST

Packed.Win32.Zack.a is a Trojan. Packed.Win32.Zack.a can steal information, for example, personal financial data (credit card numbers, online banking login details), user profiles, software registration keys, passwords without notification to the computer user. Packed.Win32.Zack.a could try to compromise security settings or rules of security products by emulating mouse clicks on the dialog windows. Furthermore, Packed.Win32.Zack.a could steal passwords from multiple popular email, various ICQ and FTP client applications.

SoftVeteran

Thu, 22 Oct 2009 08:12:04 EST

SoftVeteran is a rogue security program. SoftVeteran is installed through Trojans that are disguise as Flash updates or video codecs. Legitimate video codecs are necessary for watching an online video. Once this particular Trojan is installed, it will load SoftVeteran onto a computer as well as create a large number of malicious files throughout the C:\Windows and C:\Windows\System32 directories. SoftVeteran comes from the group of hackers that created other rogues such as WiniGuard, Soft Fighter and others. SoftVeteran is not a trusted program for detection and removal of parasites. The bogus infections that SoftVeteran supposedly detects are fabricated for the purpose of scaring you into purchasing a full version of SoftVeteran. Undoubtedly, users shouldn't do so.

Browsersafeoncom

Wed, 21 Oct 2009 15:41:26 EST

Browsersafeon.com is a venomous Trojan that assists in the distribution of the rogue security application Alpha Antivirus. Browsersafeon.com spreads with the help of Trojans that specialize in the surreptitious infiltration of computer systems. Once inside the system, the Trojan will adjust the browser settings causing search results to be redirected to Browsersafeon[dot]com/block.php URL and will display a warning page that reads "Warning! Visiting this site may harm your computer!". Along with the security warning comes the option to "Continue Unprotected" or "Get security software". Should you decide to get the security software, you will be directed to a page that advises you to purchase the rogueware Alpha Antivirus. Browsersafeon.com is a deceptive webpage that promotes dangerous programs.

Regfixguidecom

Wed, 21 Oct 2009 15:38:06 EST

Regfixguide.com is a malicious website with the goal to promote the rogue anti-spyware program Soft Cop. Regfixguide.com displays an online system scan that resembles a blue MS-DOS screen. The scan is absolutely false and it's meant to encourage users to download Soft Cop, which is a fake software. Computer users should not download any programs, including Soft Cop, or provide credit card information to Regfixguide.com.

TrojanGameThiefWin32Maganiaavxg

Wed, 21 Oct 2009 12:42:08 EST

Trojan-GameThief.Win32.Magania, also referred to as GameThief.Win32.Magania, is a dangerous trojan horse infection that invades Windows system processes and restrict access to msconfig and regedit. Once installed, Trojan-GameThief.Win32.Magania will automatically download and inject infected files: 601.exe, f3c74e3fa248.exe, and 6f2.exe. Trojan-GameThief.Win32.Magania.avxg creeps inside the system through corrupt ActiveX updates, downloading dubious software, or when visiting porn related websites.

TrojanWin32Injectakjn

Wed, 21 Oct 2009 12:28:30 EST

Trojan.Win32.Inject.akjn is a computer Trojan horse that has the ability to modify Internet Explorer settings. Once Trojan.Win32.Inject.akjn is installed onto a computer, it can then download malicious applications or files without the permission from the computer user. The manual removal process for Trojan.Win32.Inject.akjn is difficult to complete and risky due to the task of editing the system registry to remove malicious entries.

TrojanDownloaderWin32Mutantfoa

Wed, 21 Oct 2009 12:09:47 EST

Trojan-Downloader.Win32.Mutant.foa is a computer Trojan downloader. Trojan-Downloader.Win32.Mutant.foa can infiltrate a computer through various security holes or web browser exploits usually without notification to the computer user. After installed, Trojan-Downloader.Win32.Mutant.foa can download and install unknown malware to the infected system. Trojan-Downloader.Win32.Mutant.foa could open up a system to a remote attacker and compromise personal information stored on the hard drive.

BackdoorWin32Smallzf

Wed, 21 Oct 2009 12:12:09 EST

Backdoor.Win32.Small.zf is a malicious backdoor trojan running in the background. Backdoor.Win32.Small.zf enables remote access to the corrupted system. Backdoor.Win32.Small.zf may obtain control of the computer and do its chosen form of harm, such as ruining the file allocation table on computer's hard disk. Backdoor.Win32.Small.zf is able to open up a computer to outside attackers.

BackdoorRbotGEN

Wed, 21 Oct 2009 12:09:32 EST

Backdoor.Rbot.GEN is an IRC controlled backdoor (or "bot"). Backdoor.Rbot.GEN could be used to obtain access to an affected user's PC without authorization. Backdoor.Rbot.GEN could also display worm-like functionality by exploiting weak passwords on network shares. Backdoor.Rbot.GEN belongs to the types of TT_Backdoor and TT_Trojan.h of computer Trojans.

EmailWormWin32Gibonas

Wed, 21 Oct 2009 11:56:06 EST

Email-Worm.Win32.Gibon.as is a dangerous computer worm parasite. Email-Worm.Win32.Gibon.as can secretly download and install malware into the system directory. Once installed, Email-Worm.Win32.Gibon.as can open up the infected system to remote attackers. Email-Worm.Win32.Gibon.as could compromise personal data on the infected computer without knowledge to the computer user. Email-Worm.Win32.Gibon.as is difficult to manually detect and remove in many cases.

NetWormWin32Kolabdog

Wed, 21 Oct 2009 11:57:50 EST

Net-Worm.Win32.Kolab.dog is a network worm that copies itself across network shares that use weak passwords. Net-Worm.Win32.Kolab.dog copies itself to the Windows system folder and stays in the system's memory. Net-Worm.Win32.Kolab.dog disrupts your computer systems by taking up available memory or hard disk space and corrupts stored data.

TrojanGameThiefWin32Maganiabjry

Wed, 21 Oct 2009 11:11:26 EST

Trojan-GameThief.Win32.Magania.bjry is a Trojan horse that sets the computer's drive to autoplay by creating the file autorun.inf in its root directory. If the drive is shared across a network, other remote computers could be compromised. Trojan-GameThief.Win32.Magania.bjry downloads malicious files from the Internet and executes them on the infected computer. Trojan-GameThief.Win32.Magania.bjry modifies registry settings and generates new registry startup keys. Trojan- GameThief.Win32.Magania.bjry is a threat to the security and privacy to your computer and is advised to remove GameThief.Win32.Magania.bjry immediately.

TrojanDownloaderWin32Agentcphh

Wed, 21 Oct 2009 11:05:26 EST

Trojan-Downloader.Win32.Agent.cphh is a malicious Trojan infection that secretly installs onto a computer and opens a conduit for infecting a machine with malware. Trojan-Downloader.Win32.Agent.cphh installs on a computer through security holes in the web browser. Once installed, Trojan-Downloader.Win32.Agent.cphh will attempt to spread itself by changing your system registry and adding new files in key system directories. Trojan-Downloader.Win32.Agent.cphh poses a significant threat to the security of your computer and it's advised to remove Trojan-Downloader.Win32.Agent.cphh as soon as you experience trojan-like symptoms.

TrojanDropperWin32Parsiz

Wed, 21 Oct 2009 10:58:22 EST

Trojan-Dropper.Win32.Parsi.z is a trojan dropper that uses stealth tactics by dropping malicious files to a computer without the user's knowledge. Trojan-Dropper.Win32.Parsi.z attaches itself to legitimate files, installs malicious code and prevents affected users from accessing the Windows registry. Trojan-Dropper.Win32.Parsi.z might gather user's system information and initiate computer performance problems. Trojan-Dropper.Win32.Parsi.z is a security risk and users should remove this threat immediately after detection.

BackdoorWin32NewRestbc

Tue, 20 Oct 2009 10:34:08 EST

Backdoor.Win32.NewRest.bc is a malicious backdoor Trojan. Backdoor.Win32.NewRest.bc is designed to exploit a vulnerability in a system, and open it to future access by a cyber criminal without a user's knowledge. Backdoor.Win32.NewRest.bc includes stealth-mode features common to rootkits. Backdoor.Win32.NewRest.bc runs in the background and enables remote access to the corrupted system.

TrojanDownloaderWin32Murlochz

Tue, 20 Oct 2009 10:24:05 EST

Trojan-Downloader.Win32.Murlo.chz is a trojan designed to secretly infiltrate a user's computer. Trojan-Downloader.Win32.Murlo.chz opens a conduit for the download and the installation of malware. Trojan-Downloader.Win32.Murlo.chz uses the AppInit_DLLs value in order to install a module that would be loaded into the address space of each running software program. Trojan-Downloader.Win32.Murlo.chz is a serious security risk and should be removed.

TrojanSpyWin32Zbotgen

Tue, 20 Oct 2009 10:13:37 EST

Trojan-Spy.Win32.Zbot.gen is a privacy-stealing nasty trojan users might grab when surfing the Web. Trojan-Spy.Win32.Zbot.gen exploits system vulnerabilities to enter users' computer systems to compromise their privacy. Trojan-Spy.Win32.Zbot.gen is able to get on board absolutely unidentified. After entering a user's computer system, this hazardous Trojan would collect user's confidential data which includes user's passwords and banking information and sends it to remote attackers. Trojan-Spy.Win32.Zbot.gen could also identify backdoors in the system's authentication tools to promote more malware inside a user's PC. While remaining resident in user's cyber environment, Trojan-Spy.Win32.Zbot.gen would track user's keystrokes which results in the tracking of a user's logins, passwords, credit card details, and other personal information. In spite of its primary structure, Trojan-Spy.Win32.Zbot.gen is a critical trojan that could indirectly result in theft of user's money and identity.

TrojanPSWWin32QQPassakt

Tue, 20 Oct 2009 09:55:38 EST

Trojan-PSW.Win32.QQPass.akt is a trojan that has the ability to steal confidential details like usernames, passwords, and credit card numbers. Trojan-PSW.Win32.QQPass.akt can send out email message(s) with the built-in SMTP client engine. Also, Trojan-PSW.Win32.QQPass.akt registers a 32-bit in-process server DLL. Trojan-PSW.Win32.QQPass.akt is a security risk; therefore, users should eliminate this threat at once. The presence of Trojan-PSW.Win32.QQPass.akt may lead to data loss or other fault which includes performance degradation.

WormWin32AutoRunrkz

Tue, 20 Oct 2009 09:32:05 EST

Worm.Win32.AutoRun.rkz is a network-aware worm that is able to spread itself automatically from one computer to another by network connection. Worm.Win32.AutoRun.rkz can install itself on the system without the user's knowledge and begin to propagate. Worm.Win32.AutoRun.rkz may be difficult to manually detect and remove due to its ability to spread onto other files throughout an infected computer.

BackdoorWin32Hupigondqmb

Tue, 20 Oct 2009 09:25:51 EST

Backdoor.Win32.Hupigon.dqmb is a malicious backdoor Trojan. It runs in the background and enables remote access to the corrupted system. Backdoor.Win32.Hupigon.dqmb is a software program commonly bundled in freeware or shareware. In addition, Backdoor.Win32.Hupigon.dqmb leads to the further download of malware, slow operation of the computer, and system crashes. Backdoor.Win32.Hupigon.dqmb may be difficult to manually remove due to its ability to load at startup Windows.

EmailWormWin32Mydoomm

Tue, 20 Oct 2009 09:21:20 EST

Email-Worm.Win32.Mydoom.m, also known as I-Worm.Mydoom.m, is a worm that spreads through the Internet as an attachment found in corrupted messages. Email-Worm.Win32.Mydoom.m is a Windows PE EXE file approximately 27KB in size. The unpacked file is approximately 50KB in size. Email-Worm.Win32.Mydoom.m is only activated when a user opens the archive and launches the malicious file by double-clicking on it. Email-Worm.Win32.Mydoom.m then installs itself on the system and begins to propagate throughout the user's computer. Email Worm.Win32.Mydoom.m includes a backdoor function. Part of the form of the Email-Worm.Win32.Mydoom.m is encrypted.

P2PWormWin32Palevojsf

Tue, 20 Oct 2009 08:35:54 EST

P2P-Worm.Win32.Palevo.jsf is a network-aware worm that tries to replicate across the current network(s). P2P-Worm.Win32.Palevo.jsf, with its self-spreading malicious codes, is able to spread itself automatically from one computer to another by network connection. P2P-Worm.Win32.Palevo.jsf is capable of causing damaging actions such as consuming the network or local system resources.

TrojanDropperWin32Agentahju

Mon, 19 Oct 2009 10:57:28 EST

Trojan-Dropper.Agent.ahju is a malicious trojan dropping malicious components on the corrupted computer. Trojan-Dropper.Agent.ahju also attempts to contact remote websites for downloading and accomplishing more malicious software programs. Trojan-Dropper.Agent.ahju is capable to steal information, for instance, personal financial data (credit card numbers, online banking login details), user profiles, software registration keys, passwords. This particular Trojan tries to compromise security settings/rules of security products by emulating mouse clicks on the dialog windows. For instance, when a security product pops up a dialog box asking for user permission to restrict suspicious activity, a threat might click 'Allow' button to allow its malicious payload. Trojan-Dropper.Agent.ahju could steal passwords from multiple popular email, ICQ and FTP client applications, like Mirabilis ICQ, Miranda, Trillian, Microsoft Outlook, CuteFTP, Thunderbird, FileZilla, FlashFXP, The Bat!, etc. Also, Trojan-Dropper.Agent.ahju downloads or requests other files from Internet.

DownloaderDelphi

Mon, 19 Oct 2009 11:07:23 EST

Downloader.Delphi is a spyware/ Trojan. Downloader.Delphi copies its file(s) to your hard disk. Its typical file name is dnlsvc.exe. Then it creates new startup key with name Delphi downloader and value dnlsvc.exe. You can also find it in your processes list with name dnlsvc.exe or Delphi downloader.

PackedWin32Krapah

Mon, 19 Oct 2009 11:04:27 EST

Packed.Win32.Krap.ah is a computer Trojan that can be installed and executed without knowledge to the computer user. Packed.Win32.Krap.ah usually spread though unsolicited email messages included in an attachment. Packed.Win32.Krap.ah can be difficult to manually detect and remove in many cases.

MalHckPkA

Mon, 19 Oct 2009 11:02:43 EST

Mal/HckPk-A also detected as HckPk-A is a malware infecting registry files and dropping additional infections onto the corrupted system. After Mal/HckPk-A has entered the system, it activates corrupt dbgrid32.exe, fwbmz.dll, bluetoothauthorizationagent.exe, blphc35dj0erc1.scr files and download additional malware threats onto the system. Mal/HckPk-A is exploited through irritating SPAM email, freeware and file sharing files or through porn related websites. Mal/HckPk-A is a crucial threat that could steal victim's banking info, damage system files and completely set back computer speed.

TROJ_MALLU9A

Mon, 19 Oct 2009 11:01:22 EST

TROJ_MALLU9.A is a Trojan. It is a malware that is not able to spread to other computer systems automatically. As another Trojans, TROJ_MALLU9.A could commonly be downloaded from the Internet and installed by malicious people. TROJ_MALLU9.A might carry payloads or other malicious actions that could range from the mildly irritating to the irreparably devastating. TROJ_MALLU9.A might also change system settings to automatically start. In order to restore vulnerable systems, procedures other than scanning with an antivirus software program might be required.

EmailWormWin32Baglefk

Mon, 19 Oct 2009 10:59:35 EST

Email-Worm.Win32.Bagle.fk is an email and Internet Worm. It belongs to a category of Worm.Generic. Email-Worm.Win32.Bagle.fk is a security risk and users should remove this threat at once after its detection. Differently it might result in data loss or other fault which include performance decline. Users, who have faced this specific type of worm, are strongly advised to run a reliable and effective antivirus program to remove Win32.Bagle.Fk together with any other viruses, trojans, worms, adware, spyware, rootkits, and other malware.

TrojMdropCCL

Mon, 19 Oct 2009 10:57:54 EST

Troj/Mdrop-CCL is a Trojan. It belongs to a category of viruses and spyware. Troj/Mdrop-CCL might seemingly looks as legitimate computer software program that has been puprosedly created to disrupt and harm computer activity. On some occasions Troj/Mdrop-CCL could be used together with viruses.

SoftCop

Mon, 19 Oct 2009 10:48:00 EST

SoftCop is a fake anti-spyware program with tricky nature. It provides fake reports of threats on a user's computer. SoftCop does not warn a user of its aims to install on user's PC; it only installs all by itself ignoring and in spite of the authorization needs. That's because SoftCop is aided by infections such as a backdoor trojan which stays unidentified even after an executed attack. Those trojans gives the pathway for SoftCop unregistered copy that is trialware to enter inside and alter system parameters to make the computer hijacked and unable to accomplish some user's commands. After invasion, SoftCop does not remain latent and begins to trigger its intricate adware at once that says a user about a big number of infections he allegedly got on the machine and need to eliminate. Soft Cop uses its false alerts and fabricated system scanners to persuade a user to think his computer needs SoftCop licensed software to cope with the 'displayed' parasites. It's not rational at all to trust SoftCop ads and follow its suggestions. What SoftCop needs from a user, is to get a payment. Thus, users are strongly recommended to remove this particular fake anti-spyware program immediately if they notice its activity on their machine. While running, Soft Cop would also show a big number of bogus security warnings and reports about serious security and privacy issues. The particular bogus security announcement reads: "Spyware Alert! Your computer is infected with spyware. It could damage your critical files or expose your private data on the Internet. Click here to register your copy of SoftCop and remove spyware threats from your PC."

TREAntivirus

Mon, 19 Oct 2009 10:10:53 EST

TRE Antivirus is a rogue anti-spyware program. TRE Antivirus comes from the group of hackers that make and sell the fake security programs such as WiniGuard and Soft Cop. TRE Antivirus is not able to detect and remove parasite threats even thought it seems that it detects it in a system scan. The system scan conducted by TRE Antivirus is bogus. TRE Antivirus does not have the capability to detect and remove parasites. TRE Antivirus may also display several misleading popup adverts. Computer users are urged to avoid purchasing or using TRE Antivirus for any reason because it could cause damage to the computer it is installed onto.

DetectedsecurityproblemsonyourcomputerPopup

Fri, 16 Oct 2009 17:14:20 EST

"Detected security problems on your computer" popup is a fake security alert meant to mislead computer users into purchasing the rogue software Trust Fighter. "Detected security problems on your computer" popup is one of many fake messages that appear on the malicious website Yourguardonline.com. The following is the text of the "Detected security problems on your computer" popup message: "Detected security problems on your computer. Spyware is software, which can gather information from user's computer through Internet connection and send them to its creator. Gather information can be passwords, e-mail addresses and all that data, which is important for you." If you click the "Fix Now" link on the popup message, you will automatically be redirected to a malicious website where Trust Fighter is available for download. Do not be fooled by the "Detected security problems on your computer" popup and do not purchase the bogus software Trust Fighter.

GenericDropperln

Fri, 16 Oct 2009 14:31:27 EST

Generic Dropper.ln is a computer Trojan that can cause damage to a computer through other malware files. Generic Dropper.ln can download malware onto a computer without notification to the computer user until it is too late. Generic Dropper.ln should be detected and automatically removed with a reputable spyware detection and removal tool to prevent damage to essential system files.

TrojanDropperWin32Decayasd

Fri, 16 Oct 2009 14:29:53 EST

Trojan-Dropper.Win32.Decay.asd is a Trojan horse capable of installing unknown malware files or programs onto an infected system. Trojan-Dropper.Win32.Decay.asd may enter your computer through a security hole or web browser exploit while going undetected. Trojan-Dropper.Win32.Decay.asd can be difficult to manually remove.

TrojanPasta

Fri, 16 Oct 2009 14:26:55 EST

Trojan.Pasta is a Trojan horse with the capabilities of being able to install malware parasites onto your computer. Trojan.Pasta can also connect to a remote source allowing a hacker to gain access for the purpose of stealing valuable information stored on the hard drive. Trojan.Pasta can be difficult to manually remove.

AdwareWSearchO

Fri, 16 Oct 2009 14:25:41 EST

Adware.WSearch.O is a dangerous adware parasite that could infected a system without notification to the computer user. Once a system is infected with Adware.WSearch.O, the user may be greeted with several misleading popup adverts that could redirect them to a malicious site that sells fake security applications.

TrojanPWSMaganiaBDU

Fri, 16 Oct 2009 14:17:18 EST

Trojan-PWS.Magania.BDU is a dangerous parasite that is able to monitor activity via online gaming. Trojan-PWS.Magania.BDU may record keystrokes and then allow a remote attacker to obtain the information compromising personal data. Trojan-PWS.Magania.BDU has proven to be difficult to manually remove.

TrojanATRAPS

Fri, 16 Oct 2009 14:15:30 EST

Trojan.ATRAPS is a computer Trojan parasite. Trojan.ATRAPS is designed to steal information from an infected system and send the compromised data to a remote server. Trojan.ATRAPS can compromise a computer where a remote attacker could gain access without knowledge of the computer user. Trojan.ATRAPS is able to spread through file sharing P2P services or malicious video codecs.

Genericdxfvx

Fri, 16 Oct 2009 14:14:37 EST

Generic.dx!fvx is a dangerous computer Trojan horse that cannot self replicate but can infect a system through exploits or browser security holes. Once a system is infected with Generic.dx!fvx it could be damaged from populating the registry with malicious entries.

TrojanWin32Buzuscgms

Fri, 16 Oct 2009 14:13:00 EST

Trojan.Win32.Buzus.cgms is a computer Trojan known to spread through spam or solicited email attachments. Trojan.Win32.Buzus.cgms can be installed onto a computer without knowledge to the computer user. Once installed, Trojan.Win32.Buzus.cgms can create malicious registry entries that load at startup of Windows making it very difficult to manually remove Trojan.Win32.Buzus.cgms.

MalBehav285

Fri, 16 Oct 2009 14:11:51 EST

Mal/Behav-285 is the malware family for the Windows operating system. Memebers of Mal/Behav-285 are typically related to a protection system being used by malware creators. Mal/Behav-285 belongs to a category of viruses and spyware. Malicious behavior of Mal/Behav-285 relates to an executable file that shows characteristics or behavior that are identified exlusvely within malware and are therefore restricted to prevent intrusion, disruption or harm to computer systems.

NewMalwarejn

Fri, 16 Oct 2009 14:10:24 EST

New Malware.jn is a trojan detection. Differently to viruses and trojans it is not self-replicate. New Malware.jn could be installed manually, in most cases under the statement that it is beneficial or wanted. The most usual installation methods include system or security exploitation, and not suspecting users, who manually execute unidentified applications. Distribution channels encompass email, malicious or attacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc. New Malware.jn is a heuristic detection. It might detect either viruses or trojans. If a sample is found as New Malware.j then it is no doubt that the system is presently infected and runs a virus or trojan processes.

PCScout

Fri, 16 Oct 2009 10:48:39 EST

PC Scout (PCScout) is a rogue anti-spyware application that uses devious tactics to extort money from unsuspecting computer users. PC Scout was found to come from the same group of hackers that create and market the fake security programs known as Protection System and Active Security. PC Scout, once installed, is able to plaster the infected computer's screen with several misleading popup warnings and conduct system scans that return falsified parasite results. PC Scout in full or trial version is completely unable to detect or rid your computer of parasites. Manual removal of PC Scout is difficult to perform successfully due to its ability to load into memory at startup of Windows.

W32KoobfaceAWO

Thu, 15 Oct 2009 14:22:25 EST

W32/Koobface.AWO is a dangerous computer worm parasite. W32/Koobface.AWO can infect a computer and then copy itself onto files within the Windows folder. W32/Koobface.AWO is related to the infamous Koobface parasite. W32/Koobface.AWO is also known as Worm.Koobface.ANF, W32.Koobface.A, Net-Worm.Win32.Koobface.awo.

Scanstopandscanyourpccom

Thu, 15 Oct 2009 11:59:41 EST

Scan.stopandscanyourpc.com is a malicious web site that was created by hackers to promote Smart Protector which is a rogue anti-spyware program. Once visited, Scan.stopandscanyourpc.com will appear to scan your computer only to return bogus results. Each instance of Scan.stopandscanyourpc.com was created to push you into purchasing the full Smart Protector application. Computer users should not fall for the devious tricks carries out by Scan.stopandscanyourpc.com.

Scanclearedpcsecuritycom

Thu, 15 Oct 2009 11:44:31 EST

Scan.clearedpcsecurity.com is a devious website that was created to sell and promote the fake security application Smart Protector. Scan.clearedpcsecurity.com can be very misleading in the way that it claims Smart Protector can rid your system of parasites. Scan.clearedpcsecurity.com will pretend to scan your computer for parasites only to return falsified results. Scan.clearedpcsecurity.com is not a trusted web page and should never be visited under any conditions.

SoftSoldier

Thu, 15 Oct 2009 11:36:56 EST

Soft Soldier (SoftSoldier) is a rogue anti-spyware program that comes from the hackers that created WiniGuard, Trust Soldier, Safe Fighter and Trust Fighter, which are fake security applications. Soft Soldier, through the use of fake popup messages and bogus system scans, attempts to push computer users into purchasing a full version of Soft Soldier making them believe that it will resolve all issues it detected. Soft Soldier is not able to detect or remove legitimate computer parasites. Instead, Soft Soldier is virtually a bogus security application. Manual remove of Soft Soldier is somewhat difficult to successfully complete.

FakeASC

Thu, 15 Oct 2009 11:30:07 EST

FakeASC is a computer Trojan horse that can use methods similar to rootkits to stay hidden while performing malicious activities on the infected computer. FakeASC can also open up a backdoor of the infected system allowing remote attackers access to steal personal files or compromise operations of the computer. System performance is greatly reduced by FakeASC which could lead to the computer crashing. Manual detection and removal of FakeASC is proven to be difficult to perform successfully.

ExploitIMGWMFoy

Thu, 15 Oct 2009 11:28:44 EST

Exploit.IMG.WMF.oy is a computer malware parasite. Exploit.IMG.WMF.oy is used as an exploitation tool that could compromise a computer user's web browser application. Exploit.IMG.WMF.oy is able to target security vulnerabilities within an installed web browser program. Malware can be installed through Exploit.IMG.WMF.oy without notice to the computer user. Manual detection and removal of Exploit.IMG.WMF.oy is difficult to perform in many cases.

TrojanFakeVRL

Thu, 15 Oct 2009 11:26:19 EST

Trojan.FakeVRL is a dangerous Trojan that could display bombarding popup alerts and warning messages. The messages displayed by Trojan.FakeVRL can lead to the installation or download of malicious files and applications without the computer user's permission. Trojan.FakeVRL is used as a computer parasite to trick users into purchasing a bogus security program. Manual removal of Trojan.FakeVRL can be difficult to complete.

RemoteAdminRemotelyAnywherea

Thu, 15 Oct 2009 11:23:59 EST

RemoteAdmin.RemotelyAnywhere.a is a remote administration tool that comes from the software called RemotelyAnywhere. RemoteAdmin.RemotelyAnywhere.a can be used as a malicious tool when in the hands of a hacker. RemoteAdmin.RemotelyAnywhere.a can give a remote user access to a computer where personal information can be compromised.

ActiveSecurity

Thu, 15 Oct 2009 11:23:02 EST

Active Security is a rogue anti-spyware program that uses misleading tactics to extort money from unsuspecting computer users. Active Security falsely claims that it is able to speed up system performance but does just the opposite. Once installed, Active Security can greatly reduce system performance and populate the hard drive with malicious files. Active Security usually tricks computer users into purchasing a full version of Active Security through bogus popup messages and fabricated system scans. Active Security can be very difficult to manually remove due to its ability to load into memory during startup of Windows.

FakeRean

Wed, 14 Oct 2009 14:33:20 EST

FakeRean is a computer Trojan horse that was discovered to be similar to the ZBot Trojan variant in the way it spread through email. FakeRean is known as FakeRean Trojan, W32/FakeRean.A.gen!Eldorado, W32/FakeAV.AE!genr, W32/PackSpam.A!worm and TrojanDownloader:Win32/FakeRean over the internet. FakeRean is different from ZBot only in the way that it now includes a ZIP file named "install.zip" that includes the install.exe executable file. FakeRean can cause serious damage to a computer if it is not removed.

Antispywarecomputerscan14com

Wed, 14 Oct 2009 10:53:29 EST

Antispywarecomputerscan14.com is a malicious website made by hackers to spread malicious files and applications that could extort money from unsuspecting computer users. Antispywarecomputerscan14.com may prompt system scans on your screen that return many falsified results only to push you into purchasing some bogus security application. Antispywarecomputerscan14.com is not a trusted website for security information or needs.

Antispywarecomputerscan8com

Wed, 14 Oct 2009 10:51:17 EST

Antispywarecomputerscan8.com is a web browser hijacker that is associated with the hackers that spread the rogue anti-spyware program Alpha Antivirus. Antispywarecomputerscan8.com may install the Alpha Antivirus program on your computer without permission and later resulting in several misleading popup messages and fabricated system scans. Antispywarecomputerscan8.com is not a trusted website.

Newsystemscannernet

Wed, 14 Oct 2009 10:50:18 EST

Newsystem-scanner.net is a potentially dangerous website that was designed by hackers to spread unwanted malware. Newsystem-scanner.net can download and install malicious files or applications without your permission resulting in damage to your computer. Newsystem-scanner.net is not a viable source for security solutions.

Aboutsecurityauditcom

Wed, 14 Oct 2009 10:49:33 EST

Aboutsecurityaudit.com is a suspicious website that is designed to mislead computer users. Aboutsecurityaudit.com may appear to offer a security program but it may turn out to be a rogue anti-spyware application. Aboutsecurityaudit.com is not a good source for computer security.

Safetytestinternetcom

Wed, 14 Oct 2009 10:47:18 EST

Safetytestinternet.com is a malicious website that is designed to spread malicious software. Safetytestinternet.com can change the home page setting of your web browser application and redirect you without permission. Safetytestinternet.com may display misleading messages that could lead to the download of rogue security software or other dangerous malware files. IP Address of Safetytestinternet.com: 62.90.136.237

TrojanKissderfrom

Wed, 14 Oct 2009 09:17:38 EST

Trojan.Kissderfrom is a dangerous computer Trojan horse that is known for stealing information from the infected system. Trojan.Kissderfrom can compromise a computer allowing a remote attacker to steal personal information stored on the infected system. Trojan.Kissderfrom is able to populate an infected computer with malicious registry entries and load at startup making Trojan.Kissderfrom very difficult to manually detect or remove.

VirToolTinxyA

Wed, 14 Oct 2009 09:16:23 EST

VirTool.Tinxy.A is a dangerous computer worm parasite. VirTool.Tinxy.A has the ability to download and install dangerous programs onto an infected computer without permission of the computer user. Once a system is infected with VirTool.Tinxy.A it can then load into memory at startup proving to be difficult to manually detect and remove.

BrowserModifierFotomoto

Wed, 14 Oct 2009 09:14:28 EST

BrowserModifier.Fotomoto is a dangerous adware parasite. BrowserModifier.Fotomoto is known to display fake adverts that lead to the download or installation of other unknown malware parasites. BrowserModifier.Fotomoto can be installed without permission and then load into memory at start only to display several intrusive pop-up messages that if clicked on could redirect you to a malicious website that advertises dangerous programs.

Yourguardonlinecom

Wed, 14 Oct 2009 09:10:52 EST

Yourguardonline.com is a dangerous web site that was designed and created to exploit the rogue anti-spyware program called Trust Fighter. Yourguardonline.com has the ability to hijack your web browser application and display fictitious security alert messages on your screen that attempt to warn you of security issues and offer the Trust Fighter application as a solution. TrustFighter unfortunately is unable to fix any type of security related issue on a computer. Yourguardonline.com should never be visited as it is not a trusted source. If you are redirected to Yourguardonline.com then you should not ever click on any messages as they could lead to the installation of a rogue anti-spyware program or other unknown malware.

TrojBancbanRD

Tue, 13 Oct 2009 11:51:32 EST

Troj/Bancban-RD is a Trojan that has the ability to download malicious files or applications from a remote server. Troj/Bancban-RD can install malicious programs without permission from the computer users. Usually Troj/Bancban-RD performs these malicious actions by modifying the host file and potentially causes damage to the infected computer.

TrojanWin32AntiAV

Tue, 13 Oct 2009 11:49:32 EST

Trojan.Win32.AntiAV is a computer Trojan horse that can run in the background and go undetected. Trojan.Win32.AntiAV could open up an infected computer to a remote attacker where personal information may be compromised. Trojan.Win32.AntiAV can also disable an installed anti-virus program making it difficult to detect and remove.

PackedWin32Krapx

Tue, 13 Oct 2009 11:39:47 EST

Packed.Win32.Krap.x is a dangerous computer Trojan horse that can go undetected on a system for a long period of time. Packed.Win32.Krap.x can be installed and spread through spam email attachments and then lead to the installation of a rogue anti-spyware program. Once Packed.Win32.Krap.x is installed, it serves up many misleading popup notifications and could redirect a user to an unwanted website if clicked on.

MalBehav340

Tue, 13 Oct 2009 11:38:50 EST

Mal/Behav-340 is a dangerous malware parasite. Mal/Behav-340 is able to drastically reduce system performance and further infect a computer with other unknown files. Manual detection and removal of Mal/Behav-340 is difficult to perform in many cases.

TrustFighter

Tue, 13 Oct 2009 11:32:14 EST

TrustFighter is a rogue anti-spyware program that comes from the rogue family of programs called Trust Cop, Security Soldier and Trust Soldier. TrustFighter is usually portrayed as a legitimate anti-spyware application until a computer user finds out otherwise when it is unable to detect and remove parasites. TrustFighter is not a trusted security program. TrustFighter, once installed, will display several misleading popup warning messages and conduct fabricated system scans. TrustFighter should never be used as a security solution to any computer problems that you may be facing.

Scanupdatecom

Mon, 12 Oct 2009 14:13:55 EST

Scanupdate.com is a dangerous and potentially threatening website. Scanupdate.com could install a Trojan horse parasite that is able to automatically download and install malware applications. Scanupdate.com could be used to push and advertise rogue anti-spyware programs. It is highly advisable that computer users avoid visiting the Scanupdate.com web site.

Scanupdatenet

Mon, 12 Oct 2009 14:13:06 EST

Scanupdate.net is a malicious web site. Scanupdate.net could be used to spread malicious software or rogue anti-spyware applications. If visited, Scanupdate.net may infect your system with Trojan horse parasites that could later lead to the download and installation of other unknown malware without your permission.

PopeGreenDefender

Mon, 12 Oct 2009 12:27:40 EST

Pope Green Defender is a software program that appears to be exactly similar to other bad programs. Pope Green Defender is a particular clone of Perfect Defender 2009 or PerfectDefender2009. Pope Green Defender is actually a malicious rogue program that has been created in order to try to gain money of victims. Pope Green Defender might use a false system scan, false scan report results as well as false computer security system reports. Users should need to know that this is all one big malicious scam aiming to steal their money and that no part of it is real. The best recommendation that could be suggested is to remove Pope Green Defender at once just after discovery. Users could use the manual removal instructions but they need to be seriously notified that they run the risk of producing even further harm to their computer if they do something improperly. Users are highly recommended rather to use a decent and new antispyware removal tool that could find and automatically remove Pope Green Defender.

Seresexe

Mon, 12 Oct 2009 12:23:15 EST

Seres.exe is a critical file which creates activities on a user's computer. They might be highly unwanted. This file is insecure. Seres.exe has been discovered as a Trojan virus downloader. The file could download additional forms of malware, which include Antivirus Pro 2010, which is a false antivirus software program. Seres.exe is quite risky and unsecure for PCs and there might be other infections on them. Users should necessarily check their PCs and remove any malicious software programs which include SERES.EXE immediately.

InfostealerBancos

Mon, 12 Oct 2009 12:20:05 EST

Infostealer.Bancos is a Trojan horse, which steals passwords. It imitates the interface of certain Brazilian banks with a purpose to collect passwords and other sensitive information from users of an affected computer. The Trojan usually comes as an e-mail attachment that appears to have come from Symantec. Symantec is in no way associated or affiliated with Infostealer.Bancos. The following instructions related to all existing and recent Symantec antivirus products, which include the Symantec AntiVirus and Norton AntiVirus product lines, should be taken to remove Infostealer.Bancos: 1. Disable System Restore (Windows Me/XP). 2. Update the virus definitions. 3. Run a full system scan. 4. Eliminate any values added to the registry.

PackedWin32TDSSz

Mon, 12 Oct 2009 12:17:31 EST

Packed.Win32.TDSS.z is a Trojan. Generally, a Trojan horse, or Trojan shortly, is a term used to describe malware appearing to the user, to execute an attractive function though, in fact, eases unauthorized access to the user's computer system. Trojan horses are not self-replicating which divides them from viruses and worms. Additionally, they need cooperation with an attacker to accomplish their goal. The attacker need not be the individual responsible to exploit the Trojan horse. Attackers have a chance to scan computers on a network using a port scanner in the hope to find one with a Trojan horse installed.

FraudToolMalwareCrushe

Mon, 12 Oct 2009 12:15:09 EST

FraudTool.MalwareCrush.e is a form of malicious software encrypting the hard drive of the infected computer and might also encrypt the files which include valuable information. An attacker associated with FraudTool.MalwareCrush.e would then try to extort money from the computer's owner in exchange for the chance to have access to the data again. Also categorized as software pertaining to spyware, FraudTool.MalwareCrush.e assures that the vulnerable computer's security and privacy stays at risk, when FraudTool.MalwareCrush.e exists on the system in question. Barely, FraudTool.MalwareCrush.e is a malicious Trojan infection that is able to download and install renegade applications onto a system without the user's agreement or knowledge thereof. FraudTool.MalwareCrush.e is known to download adware, spyware or other malware from a big variety of servers and sources on the Internet. Therefore, the state of the system's personal security is at serious risk with FraudTool.MalwareCrush.e existing on your computer. Thus, FraudTool.MalwareCrush.e is thought to be as a high security danger to any PC system, and a user needs to remove it from any computer system at once, just after it had been found.

HeurInvader

Mon, 12 Oct 2009 12:11:48 EST

Heur.Invader is the most recent malware being targeting computer systems everywhere. Heur.Invader, being a heuristic detection routine, was created to be able to change the security settings of infiltrated systems, and might be capable to download additional malware onto the vulnerable computer system also. When this particular software program is installed on a computer system, it might try to adjust the Windows registry keys, and could create additional malware onto the infiltrated system. It is vital to know that "Heur" detections refer to a generic classification of any file or application, which is identified to have one or more malicious features. That is to say, "Heur" detections could be malware, a virus, a Trojan, Spyware, Adware or some other type of unwanted software program. If you want to get rid of unnecessary risk of further damaging your computer system, you should start using a good legitimate and trustworthy spyware remover. It would include all the necessary tools needed to remove all nefarious activities from your computer system enabled to enter into it by Heur.Invader.

WindowsEnterpriseDefender

Mon, 12 Oct 2009 12:05:45 EST

Windows Enterprise Defender is a new rogue anti-spyware (scam, scareware). This program would try and trick a user to purchase it so a user could remove the assumed infections it generated and then detected. When Windows Enterprise Defender installs itself on a user's computer, it will automatically start when Windows is loaded. Before it would launch itself, it would produce a huge amount of essentially harmless files on a user's computer (cb.sys, ddv.dll, eb.sys, energy.exe, pal.sys, PE.drv, ppal.exe and tempdoc.tmp). Then, it would pretend a scan of a user's computer and would show these files as viruses. After all, a user will be asked to purchase the false software program to avoid these viruses. Additionally, Windows Enterprise Defender would run a huge number of security warnings that would alert a user about an active malware that has been detected, or that a user's computer is currently under attack. These are all false warnings and a user should not purchase this application as it is a scam. If you have any suspect that Windows Enterprise Defender might be on your PC, you should remove it at once. There are two removal process options: manual and automatic.

TrustSoldier

Mon, 12 Oct 2009 11:55:03 EST

Trust Soldier is a critical rogue software program. Regardless of its name, Trust Soldier can't be trusted by computer users. This particular application would only result in a big number of unwanted computer issues, invade user's privacy as well as try to steal hard earned money. Trust Soldier would try every single trick that it could to try and persuade a user that a computer has serious dangers running on it. This is all done with an aim to try to persuade a user to purchase the whole version of Trust Soldier. Trust Soldier is a rogue anti-spyware program and not an application that would fix your computer. You need not download, install or buy anything even remotely associated with Trust Soldier. Also, you need to be alerted to not rely on the bogus scan or the bogus scan report results which is produced by Trust Soldier. Users could remove this fraudulent application manually but it's risky and could be harmful to your computer. Thus, automatic removal process is suggested.

WindowsSmartSecurity

Fri, 09 Oct 2009 17:53:15 EST

Windows Smart Security is a rogue anti-spyware application designed to use misleading tactics to extort money from unsuspecting computer users. Windows Smart Security is a clone of another rogue security application called Total Security 2009 and Security Tool. Windows Smart Security can be installed without notification of the computer user. After installed, Windows Smart Security will display falsified infection warning messages and conduct system scans that return fake results. Windows Smart Security is not a legitimate security program for any computer.

Myantispywarecheck00com

Fri, 09 Oct 2009 15:39:08 EST

Myantispywarecheck00.com relates to an insecure source and supports the malicious product of cyber criminals' hacking attempts which is called Alpha Antivirus. Myantispywarecheck00.com obtains access to user's system to the amount sufficient for browser manipulations deployment. This hijacker releases confusing alerts popping up in the process on web-surfing of a victim. Those ads redirect to a spoof security scanner hosted at Myantispywarecheck00.com and resembling one"s inner computer disks structure. Myantispywarecheck00.com scan is not that software program users could trust or take for granted just because it's a simple website script that is not in any way associated with what's inside a system and which applications of the installed ones are malicious. Despite this, Myantispywarecheck00.com reports a huge number of dangerous infections on a computer and then even recommends the victim to install and register Alpha Antivirus to protect the system from unauthorized malware attack. Users should repair Myantispywarecheck00.com and the software it promotes with extreme caution because the former is a browser hijacker and the former is a rogue anti-spyware application; both could damage your computer system. You could remove it manually but it's risky and could be harmful to your computer. Thus, automatic removal process is suggested.

Scancheckyourpcsecuredcom

Fri, 09 Oct 2009 15:35:51 EST

Scan.checkyourpcsecured.com most probably is worthless software program, which is rogue anti-spyware, to spread worldwide and attack computers. Scan.checkyourpcsecured.com literally enslaves user's browser and forces it to obey fraudulent coercions of the hijacker to be analyzed. If a user has this awful parasite on board your computer, a browser would keep displaying more and more hits to Scan.checkyourpcsecured.com domain without user's wish. If a user has been redirected to Scan.checkyourpcsecured.com URL with a pre-defined extension, he/she would note an absolutely false online scanner which would check user's system for infections. Users need to be attentive that the PC scanning activity is being only forged by Scan.checkyourpcsecured.com which is by its essence a static script programmed to show a pre-designed animation. The worst thing about Scan.checkyourpcsecured.com is the fact that it pushes ultimately fake badware called Smart Protector. Another symptomatic drawback of having Scan.checkyourpcsecured.com hijacker on your PC is its preventing you from surfing the Internet in a routine mode by its redirections and deceitful popup statements. Users could remove this fraudulent application manually but it"s risky and could be harmful to your computer. Thus, automatic removal process is suggested.

Myspywarescan12com

Fri, 09 Oct 2009 15:32:05 EST

Myspyware-scan12.com is related to serious Internet surfing problems. It hacks a computer system and corrupts web browsing. Myspyware-scan12.com is known to have been supporting the rogue program called Alpha Antivirus. This particular false antivirus software uses false techniques to self-propagation. Myspyware-scan12.com acts as a hijacker as it warns the compromised browser configuration and results in random hits to its domain. Myspyware-scan12.com reports a lot of non-existent infections that are not on user's computer actually. It's done in order to make a user purchase Alpha Antivirus license. Moreover, Myspyware-scan12.com scanner seems as a legitimate Windows interface. Therefore, users are warned do not get fooled. All you see on Myspyware-scan12.com is insinuation of a real PC monitoring activity. Users are strongly encouraged to avoid Myspyware-scan12.com irritating browser diverting. They are advised to remove the hijacker powered by Trojan viruses which settled down in your system. You could remove it manually but it's risky and could be harmful to your computer. Thus, automatic removal process is suggested.

BrowserModifierStarsdoor

Fri, 09 Oct 2009 15:21:27 EST

BrowserModifier.Starsdoor is an irritating adware application that has the ability to enter your system without your knowledge. Once on your system BrowserModifier.Starsdoor displays excessive amounts of pop-up advertisements which may lead your machine operating slower than usual. BrowserModifier.Starsdoor may spread through peer-to-peer networks, so practice caution when using such facilities. Should you detect BrowserModifier.Starsdoor on your system, use a reliable security program to remove it as soon as possible.

BackdoorIsnupA

Fri, 09 Oct 2009 15:19:54 EST

Backdoor.Isnup.A is a dangerous backdoor Trojan that is designed to secretly enters users computers. Backdoor.Isnup.A can infiltrate a system through the exploitation of software vulnerabilities or browser security holes. When in a system Backdoor.Isnup.A performs a number of malicious activities such as opening a backdoor through which remote attackers can gain access to an infected computer. This could lead to the further download of malware and the eventual slow operation of the computer system. Due to sophisticated stealth techniques, the detection and manual removal of Backdoor.Isnup.A is not an easy task.

CyberProtectionCenter

Fri, 09 Oct 2009 15:17:21 EST

Cyber Protection Center is irritating and fake computer parasite. Trojans install it secretly. When Cyber ProtectionCenter is loaded, it starts to produce security alerts. The strategy is likely to make CyberProtectionCenter seem as it is part of Windows operating system. Users are highly recommended to not trust warnings loaded by CyberProtection Center and not to pay for this useless application. Cyber Protection Center cannot operate as a security tool. It might hijack web browser and disrupt work of ordinary applications. Also, it might restrict real security tools to prevent user to remove the infection.

Antivirus

Fri, 09 Oct 2009 12:11:38 EST

Antivirus is a rogueware program designed to trick users into spending their money. Coming from the same family as Antivirus Pro 2010, Antivirus also surreptitiously infiltrates systems via other malware such as Trojans. Once in a system Antivirus conducts a fake system scan that displays bogus results of an alarming amount of malware on the system. These scare tactics are used to persuade a user to purchase the full version of the rogueware. Antivirus is not capable of detecting or removing any type if malware, therefore the immediate removal of of Antivirus is highly recommended.

TrojanFakeRemoc

Thu, 08 Oct 2009 11:42:31 EST

Trojan.FakeRemoc is a dangerous Trojan that performs many malicious actions without notification or permission. Once a computer has Trojan.FakeRemoc, then it could have other malware parasites installed onto it causing further security and operational issues. Trojan.FakeRemoc usually enters a computer through a security hole or browser exploit.

WormHikjavA

Thu, 08 Oct 2009 11:41:27 EST

Worm.Hikjav.A is a malicious worm parasite that can spread onto local drives. Once installed, Worm.Hikjav.A can cause serious issues on an infected computer and potentially delete system files rendering the computer useless. Worm.Hikjav.A may also open up a computer to remote attackers where personal information can be stolen.

TrojanZlobou

Thu, 08 Oct 2009 11:40:20 EST

Trojan.Zlobou is a computer Trojan horse that could give a remote attacker access to the infected system. Through Trojan.Zlobou, personal information can be compromised and then used to lead to identity theft. Trojan.Zlobou uses certain methods through instant messenger or p2p file sharing sites to further infect a computer. Trojan.Zlobou can install unknown malware without permission from the computer user.

FakeAlertAQF

Thu, 08 Oct 2009 11:39:00 EST

FakeAlert.AQF is a dangerous Trojan horse that is known to install rogue anti-spyware onto the infected system. Usually the process of FakeAlert.AQF installing a rogue application onto the infected computer is done without permission or notification to the computer user. FakeAlert.AQF may display misleading warning messages and lead to further infection from unknown malware. FakeAlert.AQF is recommended to be removed with a reputable spyware detection tool.

SafeFighter

Thu, 08 Oct 2009 10:34:46 EST

Safe Fighter is a rogue anti-spyware application. Safe Fighter is a clone of other fake security programs known as WiniFighter, Secure Fighter, Secure Warrior, Trust Cop and others. Safe Fighter does not have the ability to detect or remove parasites but it will falsely claim that it found many parasites through a system scan. Once installed, Safe Fighter will also display fake warning messages that attempt to notify the computer user of virus or spyware infections. Many of the fake popup notifications that come from Safe Fighter appear to mimic the Windows Security Center windows. Safe Fighter is not a trusted security program.

WormRudovB

Wed, 07 Oct 2009 09:27:40 EST

Worm.Rudov.B is a malicious computer worm infection that is associated with the svc.exe file. This executable belongs to an advertising application from Odysseus Marketing. Worm.Rudov.B can be installed onto a computer without knowledge to the computer user. Worm.Rudov.B can greatly reduce system performance and may cause other issues if it is not removed.

TrojanMailfinder

Wed, 07 Oct 2009 09:26:40 EST

Trojan.Mailfinder.Small.ac is a computer Trojan that poses a serious threat to the security of your computer. Trojan.Mailfinder.Small.ac can be installed from a malicious source online without your knowledge or consent. Once installed, Trojan.Mailfinder.Small.ac can drastically reduce the performance of your system and potentially cause it to crash.

PackedAutoit

Wed, 07 Oct 2009 09:25:38 EST

Packed.Autoit is a dangerous computer Trojan. Packed.Autoit is able to be installed from a malicious source without knowledge to the computer user. After installation, Packed.Autoit can perform malicious actions without permission causing further infection from unknown malware parasites.

TrojanIrcbrute

Wed, 07 Oct 2009 09:22:35 EST

Trojan.Ircbrute, also known as Trojan Ircbrute or TrojanIrcbrute, is a dangerous computer Trojan horse. Trojan.Ircbrute can be installed onto a computer through a security hole or browser exploit. Once installed, Trojan.Ircbrute can compromise the infected system allowing a remote attacker access. Trojan.Ircbrute is also known to communicate with a remote IRC server further compromising the infected computer.

CyberSecurity

Wed, 07 Oct 2009 09:16:59 EST

Cyber Security is a rogue anti-spyware application that uses misleading notifications and fabricated system scans to scare users into purchasing a full version of Cyber Security. Cyber Security was found to come from the same makers of other rogues such as Total Security 2009 and System Security 2009. Cyber Security is not an effective security application for any computer. Despite the many notifications and system scan results from Cyber Security, it cannot effectively detect or remove computer parasites.

NewHeur_PE

Tue, 06 Oct 2009 10:19:13 EST

NewHeur_PE is a computer Trojan infection that can take over certain functions or hijack a computer. NewHeur_PE has the ability to download and install other malware without permission from the computer user. NewHeur_PE can lead to annoying popup notifications and system alerts that reduce system performance.

BackdoorHareBot

Tue, 06 Oct 2009 10:17:58 EST

Backdoor.HareBot is a backdoor trojan horse that can open up access to a remote attacker where personal information can be compromised. Backdoor.HareBot can lead to identity theft. Backdoor.HareBot was originally designed as an administration tool for computers but used by a hacker it is a serious threat to the security of any system.

TrojanEmurboA

Tue, 06 Oct 2009 10:16:58 EST

Trojan.Emurbo.A is a computer Trojan horse that tends to download other malware onto the infected computer without permission from the computer user. Trojan.Emurbo.A can also access remote websites to download and install other malicious files while going undetected. Trojan.Emurbo.A can lead to system slowdowns or crashes if not removed. Manual removal of Trojan.Emurbo.A can be difficult to perform.

WormSillyShareCopyU

Tue, 06 Oct 2009 10:14:35 EST

Worm.SillyShareCopy.U is a dangerous malware parasite. Worm.SillyShareCopy.U can enter into your computer through a backdoor without knowledge. Once installed, Worm.SillyShareCopy.U can download or install malicious files. These files can load into memory at startup of Windows making it hard to manually remove.

RemoteAccessGhostRadmin

Tue, 06 Oct 2009 10:13:02 EST

RemoteAccess.GhostRadmin is a malicious remove administration tool that is able to give a remote attacker access to the infected system. Once infected with RemoteAccess.GhostRadmin, the computer can be populated with many malicious files and registry entries that load into memory at startup which makes it difficult to manually remove RemoteAccess.GhostRadmin.

TrustCop

Tue, 06 Oct 2009 08:33:57 EST

Trust Cop is a rogue anti-spyware program. Trust Cop is a clone of the rogue security programs WiniFighter, Softsafeness, SaveDefense and others within the same family. Trust Cop uses several deceiving methods for tricking computer users into purchasing a full version of the Trust Cop application. Usually these tactics include displaying false parasite warning messages in the form of a popup and system scans that return erroneous results. Trust Cop, like its clone applications, is completely unable to detect and remove computer parasites.

SecureWarrior

Mon, 05 Oct 2009 10:04:37 EST

Secure Warrior or SecureWarrior, is a rogue application that uses deceptive messages and system scans to push computer users into purchasing a full version of the Secure Warrior program. Secure Warrior, once installed, will fabricate system scan results and display several popup notifications to further pursued purchase of Secure Warrior. Secure Warrior comes from the same group of fake security programs WiniFighter, SecureVeteran, SoftSafeness, SafetyKeeper and BlockDefense. Secure Warrior is unable to detect and remove computer threats and spyware. Secure Warrior is not a trusted application.

ClientIRCmIRC

Mon, 05 Oct 2009 09:52:36 EST

Client.IRC.mIRC is a dangerous spyware parasite that is able to populate the infect system with malicious executable files. Once executed, Client.IRC.mIRC can stay resident in memory making it very difficult to detect and remove manually. Client.IRC.mIRC can be related to infecting a computer through the IRC chat client for Windows.

MalBehav

Mon, 05 Oct 2009 09:51:31 EST

Mal.Behav is a computer malware infection. Mal.Behav is known to populate the Windows registry with malicious entries that can load at startup of the computer. Other malware infections can be downloaded and installed through Mal.Behav without the computer users knowledge. Systems infected with Mal.Behav may also receive annoying fabricated popup alerts that could lead to the infection of other malware.

HomePersonalAntiviruscom

Mon, 05 Oct 2009 09:49:55 EST

HomePersonalAntivirus.com is a dangerous website that uses misleading methods to get computer users to download and purchase the Home Personal Antivirus rogue anti-spyware application. HomePersonalAntivirus.com can infect a system with a Trojan that automatically prompts misleading messages that aid in the installation and purchase of fake security applications. Once visited, HomePersonalAntivirus.com will start to perform fabricated system scans further pushing a rogue application onto the user for a so-called solution to security issues.

TrojanKryptik

Mon, 05 Oct 2009 09:48:21 EST

Trojan.Kryptik is a dangerous computer Trojan horse. Once a system is infected with Trojan.Kryptik it can then recreate itself making it very difficult to manually detect and remove. Trojan.Kryptik is able to load at startup where it could compromise the infected system allowing an outside attacker to gain access.

SysSafe

Mon, 05 Oct 2009 09:47:16 EST

SysSafe is a dangerous malware parasite that has the ability to compromise personal information. SysSafe can record online activity or record keystrokes allowing an outside attacker to gain this information that could lead to identity theft. SysSafe could lead to the infection of other parasites without permission from the computer user.

Mycomputerscan43com

Mon, 05 Oct 2009 09:42:45 EST

My-computer-scan43.com is a malicious web page that advertises and pushes the Alpha Antivirus rogue anti-spyware program. Trojan horse infections are known to redirect computer users to the My-computer-scan43.com website. Once visited, a user may notice several misleading warning notifications or popups displayed that attempt to warn them of a computer infection and offer the Alpha Antivirus program to resolve the issue. My-computer-scan43.com is not a trusted source.

OSguardcom

Mon, 05 Oct 2009 09:40:10 EST

OS-guard.microsoft.com or also known as OS-guard.com, is a malicious web site that is designed to promote and sell the rogue anti-spyware application Antivirus System PRO. OS-guard.microsoft.com is not related to Microsoft despite the domain name. OS-guard.microsoft.com can infect a computer and instruct it to redirect the web browser to the IP 91.212.127.226. Through the OS-guard.microsoft.com website it will alert computer users of fake threats in an effort to make them believe they must purchase Antivirus System PRO to resolve the issue.

MalwareBancA

Fri, 02 Oct 2009 10:33:48 EST

Malware.Banc.A is a dangerous malware infection that is associated with a browser helper object. Malware.Banc.A has the ability to track and record text entered via Internet Explorer. Once a computer is infected with Malware.Banc.A, then it can be populated with malicious DLL or Dynamic Link Library files that load once the Internet Explorer application is started. Malware.Banc.A is a computer parasite that is very difficult to manually remove from an infected system.

FakeAlertN

Fri, 02 Oct 2009 10:32:46 EST

FakeAlert.N is a dangerous Trojan related to the FakeAlert family of vicious computer infections. FakeAlert.N can install malware onto an infected system without authorization from the computer administrator. You know that you have FakeAlert.N when the background wallpaper or screensaver is changed without your actions. FakeAlert.N can display fake security alerts that may lead to the installation of unknown malware infections.

PackednPack

Fri, 02 Oct 2009 10:30:10 EST

Packed.nPack is a very dangerous backdoor Trojan horse that is able to enter into a computer through undetected methods. Once infected with Packed.nPack, a computer becomes susceptible to attacks from remote users. Packed.nPack will infect the system registry with malicious entries that load at startup creating additional issues for the infected computer. Packed.nPack is difficult to manually detect and remove.

SettingsModifierPornAgent

Fri, 02 Oct 2009 10:28:20 EST

SettingsModifier.PornAgent is a dangerous computer worm that can infect a computer without notification to the user. SettingsModifier.PornAgent has the ability to lay resident in memory going undetected. SettingsModifier.PornAgent can also populate the system registry with malicious entries that load at startup of Windows. This makes SettingsModifier.PornAgent very difficult to manually detect and remove.

Myantispywarecheck07com

Fri, 02 Oct 2009 10:26:09 EST

Myantispywarecheck07.com is a dangerous website that is designed to use false advertising tactics to promote and sell the Alpha Antivirus rogue anti-spyware application. Myantispywarecheck07.com has the ability to hijack a computer users web browser and change certain settings within the program. Myantispywarecheck07.com can lead to destruction of a computer by installation of malware which can be downloaded through pages that Myantispywarecheck07.com automatically redirects a computer user to.

Spywarewebsiteblockcom

Fri, 02 Oct 2009 10:23:35 EST

Spywarewebsiteblock.com is a web browser hijacker that is able to redirect computer users to a website that promotes the Alpha Antivirus rogue anti-spyware program. Spywarewebsiteblock.com is known to change settings within a web browser application without permission from the computer user. When visited, Spywarewebsiteblock.com will display fabricated warning messages and that can lead to a landing page that sells the Alpha Antivirus application.

W32XpajB

Thu, 01 Oct 2009 16:01:06 EST

W32.Xpaj.B is a dangerous computer virus that uses advanced polymorphic file infector methods similar to its predecessor W32/Xpaj. W32.Xpaj.B is able to infect system files includes exe's and dll's. W32.Xpaj.B could render your system unstable and greatly reduce performance. Once executed, W32.Xpaj.B is also able to overwrite files and go undetected by many threat detection utilities including antivirus applications. W32.Xpaj.B is very difficult to manually remove.

Megasecuredownloadcom

Thu, 01 Oct 2009 14:12:21 EST

Megasecuredownload.com is a malicious site that is spammed over Youtube. Megasecuredownload.com targets various groups such as video gamers. If visited, Megasecuredownload.com can display what appears to be a download link that was scanned with several antivirus applications claiming to be "safe" for download. Megasecuredownload.com is linked to the Zbot parasite which is a hijacking trojan infection.

W32Xpaj

Thu, 01 Oct 2009 13:20:49 EST

W32/Xpaj is a computer virus that uses random code to block anti-virus applications. W32/Xpaj is similar to another virus called W32/Zmist or Mistfall in the way that it uses a polymorphic decryptor to gain control over an infected system. W32/Xpaj has the ability to infect system files such as .dll and .exe extension files spreading to different areas of the computer's hard drive.

W32Zmist

Thu, 01 Oct 2009 13:18:37 EST

W32/Zmist or Mistfall, is a computer virus that can go undetected by many antivirus detection applications. W32/Zmist uses advanced polymorphic methods to spread and infect system files such as DLL's and EXE's. W32/Zmist is known to disrupt computer functions and cause slowdowns because of its ability to modify or overwrite system files.

AdwareGenericA

Thu, 01 Oct 2009 09:43:32 EST

Adware.Generic.A is an adware parasite that can populate your screen with many false advertisements. Adware.Generic.A can lead to the download and installation of malware files or programs if the adverts are ever clicked on. Adware.Generic.A is able infest the system registry with bogus entries causing Adware.Generic.A to load at startup.

AdwareGetter

Thu, 01 Oct 2009 09:42:10 EST

Adware.Getter is a dangerous adware parasite. Once installed, Adware.Getter is able to display several bogus advertisement messages that could redirect you to a malicious site or initiate the download of malware. Adware.Getter is a security risk to personal information stored on your system.

AdwareBegin2Search

Thu, 01 Oct 2009 09:40:55 EST

Adware.Begin2Search is a dangerous adware parasite that is used to simulate online clicks within a hidden Internet Explorer Window. Adware.Begin2Search can be installed onto a computer without notification to the user. Once active, Adware.Begin2Search can load at startup of Windows making it difficult to manually detect and remove.

TrojanMybot

Thu, 01 Oct 2009 09:39:58 EST

Trojan.Mybot is a dangerous Trojan horse that has the ability to infect your system without notification to you. Once it is installed, Trojan.Mybot will load at startup of Windows and initiate the download of other malicious files without your permission. Trojan.Mybot is difficult to manually remove.

AdwareDelfinB

Thu, 01 Oct 2009 09:38:54 EST

Adware.Delfin.B is a parasite that is capable of downloading adware parasites without notification to the computer user. Once active, Adware.Delfin.B can also display misleading messages. Adware.Delfin.B is known to be represented as a media view application. Manual removal of Adware.Delfin.B is difficult to complete due to its ability to load at boot of Windows.

AdwareAscentive

Thu, 01 Oct 2009 09:37:48 EST

Adware.Ascentive is a dangerous adware parasite that is able to gain access to a computer without permission from the computer user. Once activated, Adware.Ascentive can display several misleading adverts that can lead to the download and installation of other unknown malware parasites.

SecureFighter

Thu, 01 Oct 2009 09:30:33 EST

SecureFighter or Secure Fighter, is a rogue anti-spyware program that is designed to fabricate many security alerts and return bogus parasite scan results to convince computer users that their system is infected with parasites. SecureFighter comes from the same group of attackers that develop and spread the rogue security applications called Secure Veteran, Security Soldier and Security Fighter. SecureFighter has the ability to create fake files and later detect them in a system scan as a scare tactic to further mislead users into purchasing the full version of SecureFighter. SecureFighter does not have the ability to detect and remove legitimate threats.

HomePersonalAntivirus

Thu, 01 Oct 2009 09:24:59 EST

Home Personal Antivirus is a fake security tool that uses misleading tactics to extort money from unsuspecting computer users. Home Personal Antivirus comes from the hackers that created the rogue anti-spyware programs Total Secure 2009, Win PC Defender and XP Police Antivirus. Home Personal Antivirus attempts to make computer users believe that they need to purchase a full version of the Home Personal Antivirus program through falsified system scan results and security alerts that resemble Windows Security Center. The trail and full version of Home Personal Antivirus is not effective in removing computer parasites.

Yourbrowserprotectioncom

Wed, 30 Sep 2009 10:28:13 EST

Yourbrowserprotection.com is a browser hijacker that advertises fake security applications mainly the Total Security rogue anti-spyware program. Yourbrowserprotection.com can hijack a computers web browser program changing settings and redirecting computer users to other malicious sites. System notification messages displayed by Yourbrowserprotection.com are bogus and cannot be trusted.

KeyloggerPerfloggerad

Wed, 30 Sep 2009 10:26:56 EST

Keylogger.Perflogger.ad is a keylogging program that is designed to monitor and record computer actions including online activity. Keylogger.Perflogger.ad is used for malicious purposes to steal personal information such as login usernames and passwords from an unsuspecting computer user. Hackers can use Keylogger.Perflogger.ad to compromise financial accounts over the internet.

TrojanDanmecA

Wed, 30 Sep 2009 10:24:50 EST

Trojan.Danmec.A is a Trojan horse could populate an infected computer with malware files or applications. Trojan.Danmec.A can load into memory at startup of Windows. Once activated, Trojan.Danmec.A can also make the infected computer vulnerable to remote attackers where personal data can be stolen without knowledge to the computer user.

BackdoorNumnomA

Wed, 30 Sep 2009 10:23:28 EST

Backdoor.Numnom.A is a dangerous computer Trojan horse that is usually installed without notice to the computer user. After installed, Backdoor.Numnom.A can open up a backdoor allowing remote a attacker to steal personal information. Backdoor.Numnom.A can be difficult to manually remove due to its ability to load at startup Windows.

BrowserModifierE404

Wed, 30 Sep 2009 10:22:11 EST

BrowserModifier.E404 is an adware program that is used to display multiple advertisements on an infected computer. After BrowserModifier.E404 is initiated, it will start to populate the infected computer's screen with ads that advertise products that can lead to the installation of other malware.

PCKMEW

Wed, 30 Sep 2009 10:20:25 EST

PCK.MEW is malicious software that can be used to download and install other malware applications onto the infected system without permission from the computer user. Once active, PCK.MEW can populate the infected computer with malicious registry entries and executable files that initiate at startup of Windows. It is very important to detect and remove PCK.MEW with a reputable spyware detection and removal tool.

Keylogger007SpySoft

Wed, 30 Sep 2009 10:18:56 EST

Keylogger.007SpySoft is a keylogging application that is used for malicious purposes. Keylogger.007SpySoft can record keystrokes and online activities which could compromise a computer user"s login credentials for financial institutions. Online attackers are able to use Keylogger.007SpySoft to cause harm to someone when personal information is obtained. Keylogger.007SpySoft can lead to identity theft.

SusDropperA

Tue, 29 Sep 2009 10:00:34 EST

Sus.Dropper.A is a dangerous computer Trojan. Sus.Dropper.A can install other malware onto the infected computer without knowledge or permission from the computer user. Once these actions have taken place, Sus.Dropper.A can open up the infected computer to outside attackers where personal information may be stolen. Manual deletion of Sus.Dropper.A can be difficult to complete.

MalTibsPkD

Tue, 29 Sep 2009 09:59:26 EST

Mal.TibsPk.D is a computer Trojan horse that is able to create malicious executable files on the infected system. Once active, Mal.TibsPk.D could open up the infected computer to outside attackers compromising personal information. Mal.TibsPk.D is difficult to manually detect and remove due to its ability to populate through other executable files.

WormEmerleox

Tue, 29 Sep 2009 09:57:54 EST

Worm.Emerleox is a dangerous computer worm that is able to infiltrate a computer without the user's knowledge. Once installed, Worm.Emerleox is able to propagate onto a network of computers in addition to mutating and replacing its own malicious code. Worm.Emerleox is difficult to manually detect and remove due to its ability to spread onto other files throughout an infected computer.

MalwareAntiSCA

Tue, 29 Sep 2009 09:56:36 EST

Malware.AntiSC.A is a dangerous malware program that can compromise a computer users security. Malware.AntiSC.A can lead to theft of personal data stored on the infected systems hard drive. Malware.AntiSC.A is also able to alter computer settings and allow remote users access.

VirToolVantiB

Tue, 29 Sep 2009 09:54:15 EST

VirTool.Vanti.B is a dangerous Trojan horse. VirTool.Vanti.B is able to be downloaded and installed without permission from a malicious source over the internet. Once installed, VirTool.Vanti.B can comprmise your computer allowing outside attackers to gain access and steal personal information. VirTool.Vanti.B can be difficult to manually detect and remove.

SecureVeteran

Tue, 29 Sep 2009 09:48:27 EST

SecureVeteran is a rogue anti-spyware program. SecureVeteran is a clone of the fake security application called SecurityFighter. Both SecureVeteran and SecurityFighter use similar tactics for the task of making computer users believe that they must purchase a full version of the program to remove threats that it supposedly found on the system. SecureVeteran is incapable of detecting or removing computer parasites. When installed, SecureVeteran is able to display several fabricated popup warning messages and conduct system scans that return fake results. SecureVeteran is not a trusted security program.

Computeronlinescan06com

Mon, 28 Sep 2009 09:07:35 EST

Computeron-linescan06.com is a browser hijacker web site that uses aggressive methods to advertise and push the rogue anti-spyware program Alpha Antivirus. Computeron-linescan06.com can take over or change settings within a computer user"s web browser application leading them to other malicious sites. Computeron-linescan06.com, once visited, will display fake warning notifications all in an effort to make computer users believe that they need the Alpha Antivirus program to remove a threat that was detected. Computeron-linescan06.com is not a trusted web site.

Internetantivirusscannercom

Mon, 28 Sep 2009 09:05:02 EST

Internet-antivirus-scanner.com is a rogue website designed to promote and sell the rogue anti-spyware program Alpha Antivirus. Internet-antivirus-scanner.com uses misleading warning messages and exaggerated descriptions to make computer users believe that they need to purchase the Alpha Antivirus program to detect and remove computer parasites. Internet-antivirus-scanner.com cannot be trusted as it was designed by the same group of hackers who set out to extort money from gullible computer users.

Explorersecuritysuitecom

Mon, 28 Sep 2009 09:02:34 EST

Explorersecuritysuite.com is a malicious website that was designed to market and sell the rogue anti-spyware program known as Total Security 2009. Explorersecuritysuite.com is able to use misleading messages and exaggerated descriptions to make computer users believe that they need to purchase the Total Security 2009 application to remove detected security threats. Explorersecuritysuite.com can hijack the web browser application used on an infected computer which could lead the user to other malicious websites. Explorersecuritysuite.com is not a trusted website despite what may be said on the home page.

BrowserSpywareCheckcom

Mon, 28 Sep 2009 08:59:45 EST

BrowserSpywareCheck.com is a malicious website designed to promote and sell the rogue anti-spyware program called Alpha Antivirus. BrowserSpywareCheck.com is known to use fabricated warning messages and offer the Alpha Antivirus application as a solution to the issue. BrowserSpywareCheck.com and the Alpha Antivirus program are part of a ploy to get unsuspecting computer users to purchase fake security software. BrowserSpywareCheck.com can also change certain settings on web browser applications which can lead to redirecting computer users to other unwanted websites.

AntivirusProfessional

Mon, 28 Sep 2009 08:58:02 EST

Anti-virus Professional or AntivirusProfessional, is a rogue anti-spyware application that uses fake system scans and misleading security alert messages to trick computer users into purchasing the full Anti-virus Professional program. Anti-virus Professional is able to use this tactic to ultimately extort money from computer users. Anti-virus Professional may be offered on malicious websites that are designed by hackers to spread and sell fake security programs. Anti-virus Professional is not an effective solution for detecting and removing computer parasites.

SecuritySoldier

Mon, 28 Sep 2009 08:49:48 EST

Security Soldier or SecuritySoldier, is a rogue anti-spyware program that uses misleading popup messages and system scans that return erroneous results to make computer users believe that they need to purchase the full Security Soldier application to remove security threats. Security Soldier comes from the same family of rogue security programs such as SystemCop, SecurityFighter, SaveDefender, SaveArmor and SoftSafeness. Just like all of these rogues, Security Soldier is unable to detect or remove computer parasites or security threats. Security Soldier is not a trusted application and has proven to be difficult to manually detect and remove from an infected system.

RecommendationsWindowsSecurityCenterPopup

Fri, 25 Sep 2009 09:53:58 EST

Recommendations... Windows Security Center Pop-up Alert is a bogus security alert message associated with the rogue anti-spyware programs SaveArmor, SecurityFighter and SoftSafeness. Recommendations... Windows Security Center Pop-up Alert can result in the installation of other malicious applications and files if clicked on. Recommendations... Windows Security Center Pop-up Alert cannot be trusted.

TroyandropperSecurityCenterAlertPopup

Fri, 25 Sep 2009 09:50:53 EST

Troyan-dropper Security Center Alert Pop-up is a malicious and deceiving popup message. Usually the Troyan-dropper Security Center Alert Pop-up comes from the installation of a rogue anti-spyware program such as SaveDefender or SoftSafeness. Troyan-dropper Security Center Alert Pop-up is not a trusted message as it could lead to the download and installation of malware.

TrojanPSWWin32HookerPopup

Fri, 25 Sep 2009 09:49:11 EST

Trojan-PSW.Win32.Hooker Pop-up is a malicious notification that comes from the rogue anti-spyware program Windows PC Defender. Trojan-PSW.Win32.Hooker Pop-up can lead to the installation of malicious applications without notification to the computer user.

WindowsPoliceProAlertPopup

Fri, 25 Sep 2009 09:47:40 EST

Windows Police Pro Alert Pop-up is a malicious popup notification related to the Windows Police Pro rogue anti-spyware program. Once Windows Police Pro is installed on a system, then the computer user may be prompted with deceiving alert messages and a Windows Police Pro Alert Pop-up. Windows Police Pro Alert Pop-up can lead to the installation or download of other malware.

HalfLemonPopupAlert

Fri, 25 Sep 2009 09:45:53 EST

HalfLemon Pop-up Alert is a malicious message that is associated with the Windows Police Pro rogue anti-spyware program. HalfLemon Pop-up Alert message may be displayed on computers that have the rogue Windows Police Pro installed. HalfLemon Pop-up Alert can be very misleading and result in the download of other malware.

TotalSecurity452

Fri, 25 Sep 2009 09:43:07 EST

Total Security 4.52 is a rogue anti-spyware program that uses dubious methods to get computer users to purchase a full version of Total Security 4.52. Total Security 4.52, once installed, will prompt computer users with many misleading popup messages and conduct a system scan the returns bogus results. Total Security 4.52 is not an effective program for the tasks of detecting and removing computer parasites.

SecurityTool

Fri, 25 Sep 2009 09:37:18 EST

Security Tool is a rogue anti-spyware program that uses fake security alerts and system scan results to make computer users believe that they must purchase the Security Tool program to remove the found threats. Security Tool comes from the same group of attackers that made the fake security programs System Security and Total Security 2009. Use of Security Tool will not help alleviate the threat of legitimate parasites. Security Tool, through the use of Trojans and malicious websites, can be installed onto your computer without notification. Detection and removal of Security Tool can be difficult to perform manually.

BrowserModifierFeedMerge

Thu, 24 Sep 2009 10:04:40 EST

BrowserModifier.FeedMerge is a dangerous Adware application. BrowserModifier.FeedMerge is known to display ficticuious adverts that can lead to the installation of malware. BrowserModifier.FeedMerge is also referred to as FeedMerge.dll or BrowserModifier FeedMerge. Manual detection and removal of BrowserModifier.FeedMerge can be difficult to perform.

PCKRepacked

Thu, 24 Sep 2009 10:03:42 EST

PCK.Repacked is a malware infection that can mislead computer users into downloading other malicious files or applications. PCK.Repacked is known to populate the system registry with malicious entries and severely decrease system performance. PCK.Repacked is a serious security threat to the infected system.

TrojanOpachki

Thu, 24 Sep 2009 10:00:43 EST

Trojan.Opachki is a dangerous Trojan horse that is designed to use misleading tactics to force computer users into downloading additional malware. Trojan.Opachki can be installed without notification to the computer usually without asking for permission. Once installed, Trojan.Opachki will spread and infect other files making difficult to manually detect and remove Trojan.Opachki.

Freddy66exe

Thu, 24 Sep 2009 09:57:45 EST

Freddy66.exe is a dangerous Trojan file and variant of the Koobface worm parasite. Freddy66.exe is spread as part of the Koobface worm through social networks such as Facebook, MySpace and Twitter. Freddy66.exe has the ability to aid in opening up your system to remote attackers.

SecurityFighter

Thu, 24 Sep 2009 07:24:24 EST

SecurityFighter is a rogue anti-spyware application that is known to come from the same group of hackers that created other fake security programs such as SoftSafeness, SaveDefense, SaveArmor, SaveDefender and BlockDefense. Once SecurityFighter is installed, it will display fake warning messages and carry out system scans that return erroneous results all in an attempt to make you think that you need a full version of SecurityFighter to remove the threats. SecurityFighter does not have the ability to remove computer parasites. SecurityFighter is none other than another bogus security application. SecurityFighter may be installed through a Trojan without your knowledge. Detection and removal of SecurityFighter is recommended to reduce the risk of damage to the infected system.

Winshield2009com

Wed, 23 Sep 2009 10:40:37 EST

Winshield2009.com is a malicious website and browser hijacker. Winshield2009.com has the capability of changing settings on your web browser application in addition to displaying misleading notifications leading to the installation of the rogue application Antivirus System PRO. Winshield2009.com is usually followed by a fake system scan that displays bogus results to further mislead computer users into downloading and installing fake security software.

FraudToolMalwareProtectord

Wed, 23 Sep 2009 10:39:33 EST

FraudTool.MalwareProtector.d is a rogue application that uses misleading popup notifications and fake system scans to trick computer users into believing that they need to purchase a full security app in order to remove spyware threats. FraudTool.MalwareProtector.d is not capable of removing parasites. Once installed, FraudTool.MalwareProtector.d is apt to cause destruction. Manual removal of FraudTool.MalwareProtector.d can be difficult to perform.

AutoitObfus

Wed, 23 Sep 2009 10:38:27 EST

Autoit.Obfus is a worm application that has the ability to display many fake warning messages on a Windows PC. Autoit.Obfus can be very annoying and difficult to manually detect and remove. It is suggested that detection and removal of Autoit.Obfus be performed with a reputable spyware removal tool.

AdwareMostofate

Wed, 23 Sep 2009 10:36:54 EST

Adware.Mostofate is a misleading program that introduces many fake advertisements that are associated with malware. Adware.Mostofate can show up in the form of a malicious toolbar that has the capability to hijack the web browser program.

WormKolab

Wed, 23 Sep 2009 10:35:24 EST

Worm.Kolab is a computer worm infection that can open up the infected system to outside attackers. A hacker could gain the ability to steal personal information from a PC infected with Worm.Kolab. Worm.Kolab is able to recreate itself and load at startup of Windows which makes it difficult to manually detect and remove.

AlphaAntivirus

Wed, 23 Sep 2009 07:00:22 EST

Alpha Antivirus is a rogue anti-spyware application that uses deceptive plagiaristic messages and bogus system scans to entice computer users to purchase a full version of the Alpha Antivirus program. Alpha Antivirus appearance is somewhat similar to other popular rogue applications such as Personal Antivirus. Alpha Antivirus, once installed, is able to load at startup of Windows into memory making it difficult to manually remove. Alpha Antivirus is not capable of detecting and removing legitimate spyware parasites.

6malwarescancom

Tue, 22 Sep 2009 09:38:25 EST

6malwarescan.com is a malicious website designed by hackers to promote and sell the rogue application called Personal Antivirus. 6malwarescan.com uses misleading tactics such as falsified system scans and bogus warning notifications as an outlet to push Personal Antivirus onto computer users. 6malwarescan.com has the ability to change settings on your web browser application without your permission.

6cleanspywarecom

Tue, 22 Sep 2009 09:35:51 EST

6cleanspyware.com is a browser hijacker known to use many misleading methods to promote the Personal Antivirus rogue anti-spyware application. 6cleanspyware.com usually shows up in search results for an unsuspecting computer users seeking to find a solution to spyware. 6cleanspyware.com uses aggressive tactics to promote Personal Antivirus such as misleading popup messages and falsified system scans.

NetWormWin32Mytobt

Tue, 22 Sep 2009 09:32:35 EST

Net-Worm.Win32.Mytob.t is a dangerous computer worm infection. Net-Worm.Win32.Mytob.t has the ability to compromise a Windows PC allowing a remote attacker to gain access to personal files or control the system to perform malicious actions over the internet. Net-Worm.Win32.Mytob.t is known to promote the rogue anti-spyware program Windows Police Pro through fake warning notifications. Net-Worm.Win32.Mytob.t can be difficult to manually detect and remove.

Malwareurlirblockcom

Tue, 22 Sep 2009 09:30:18 EST

Malwareurlirblock.com is a malicious domain that is known to push the rogue anti-spyware program Personal Antivirus. Malwareurlirblock.com is a browser hijacker that could change the settings of your web browser application which could redirect you to other malicious sites that are designed to install malware. Malwareurlirblock.com may act as a spyware scanner and offer Personal Antivirus as a solution to the many threats that it finds. Malwareurlirblock.com should not be trusted. If visited, Malwareurlirblock.com can display several annoying warning messages and take over some functions of your web browser application without your permission.

SaveArmor

Tue, 22 Sep 2009 06:58:47 EST

SaveArmor is a rogue anti-spyware program that comes from the same group of fake security applications as SaveDefender, SaveKeeper and SoftSafeness. SaveArmor is designed to display fake security alerts to scare computer users into thinking that their system is infected with parasites. SaveArmor will then prompt computer users to purchase a full version of SaveArmor as a solution to the issues. SaveArmor is not able to detect or remove computer parasites. SaveArmor can lead to the installation of other malware including Trojans. SaveArmor is bogus security software that is basically designed to extort money from unsuspecting computer users.

4cleanspywarecom

Mon, 21 Sep 2009 10:59:26 EST

4cleanspyware.com is a malicious website that is known to be a browser hijacker which can change browser settings without permission or consent from the computer operator. 4cleanspyware.com is another website that is associated to Personal Antivirus, a rogue anti-spyware program. 4cleanspyware.com is designed in one way to promote Personal Antivirus. 4cleanspyware.com is able to display a fictitious system scan and then offers Personal Antivirus as a solution to the bogus results it returns.

Windowsshieldcom

Mon, 21 Sep 2009 10:56:37 EST

Windows-shield.com is a malicious browser hijacker that distributes and advertises the Antivirus System PRO rogue anti-spyware program. Windows-shield.com uses misleading descriptions to push computer users into downloading and purchasing the full Antivirus System PRO application. Windows-shield.com can change browser settings. Windows-shield.com may appear to come from a Microsoft.com domain listed as Windows-shield.microsoft.com. Computer users must know that Windows-shield.com is not connected or associated with Microsoft in anyway way.

Drlcleanerinfo

Mon, 21 Sep 2009 10:54:12 EST

Drlcleaner.info is a malicious website connected to the distribution and sell of the rogue anti-spyware program Safety Center. Drlcleaner.info can lead to the installation of a Trojan such as Zlob or Vundo which is capable of installation malicious applications without the computer users consent. Drlcleaner.info uses many convincing messages to make computer users believe that they need to purchase a full version of Safety Center to remove certain spyware threats.

Suspiciouswebsiteblockcom

Mon, 21 Sep 2009 10:48:29 EST

Suspiciouswebsiteblock.com is a malicious hijacker website that is known to promote the rogue anti-spyware program Personal Antivirus. Suspiciouswebsiteblock.com can employ many malicious actions such as changing your web browser settings and block certain sites. Suspiciouswebsiteblock.com displays many misleading messages to push computer users into purchasing a full Personal Antivirus application.

TrojanWin32Agentdcc

Mon, 21 Sep 2009 10:45:11 EST

Trojan.Win32.Agent.dcc is a computer Trojan horse that is able to use rootkit actions to compromise and infected computer. Trojan.Win32.Agent.dcc is able to carryout malicious actions in the background going undetected. Trojan.Win32.Agent.dcc is also known to download and install malware from a malicious source.

BackdoorWin32Poisonpgb

Mon, 21 Sep 2009 10:41:57 EST

Backdoor.Win32.Poison.pgb is a malicious backdoor Trojan horse. Once installed, Backdoor.Win32.Poison.pgb is able to run in the background going undetected and hidden from the computer user and many antivirus or antispyware applications. Backdoor.Win32.Poison.pgb is able to open up a computer to outside attackers.

TrojanAdialerOP

Mon, 21 Sep 2009 10:40:01 EST

Trojan.Adialer.OP is a malicious Trojan dialer that has the ability to connect to remote hosts without letting the computer user know. Trojan.Adialer.OP can download or install malicious files once connected to a remote host. Trojan.Adialer.OP is composed of dll files and installer app.

SpywareBroadcastDSSAGENT

Mon, 21 Sep 2009 10:38:47 EST

Spyware.BroadcastDSSAGENT is a spyware program that is able to download malicious files onto the infected system withough consent from the computer user. Spyware.BroadcastDSSAGENT performs this process normally from a product update. Spyware.BroadcastDSSAGENT can be difficult to manually remove.

SaveDefender

Mon, 21 Sep 2009 07:11:29 EST

SaveDefender is a fake security program that comes from the same group of rogue anti-spyware programs named SafetyKeeper, TrustWarrior, and SoftSafeness. SaveDefender uses the same methods as these rogue anti-spyware programs to push computer users into believing that they need to purchrase SaveDefender in order to remove parasites that it found on their computer. SaveDefender is programmed to scan your system once installed only to return fake results. SaveDefender will also report back fake alert messages to further confuse you. All computer users must know that SaveDefender is an ineffective application for the tasks of detecting and removing any type of computer parasite.

PackedGeneric42

Fri, 18 Sep 2009 09:15:11 EST

Packed.Generic.42 is a computer virus that uses heuristic methods to go undetected from antivirus or antispyware programs. Packed.Generic.42 can infect your system without your knowledge or permission usually from a malicious website or other internet source. Packed.Generic.42 may install other files that can download additional malware to the infected system.

BackdoorFarfliG

Fri, 18 Sep 2009 09:13:14 EST

Backdoor.Farfli.G is a backdoor computer Trojan horse that, when installed, displays misleading notifications to push computer users into purchasing a fake anti-spyware program. Backdoor.Farfli.G may open up a means for a remote hacker to gain access to the infected system. In addition, Backdoor.Farfli.G can port malware to the infected machine without notification to the user.

TrojanWinNTAlureonC

Fri, 18 Sep 2009 09:11:24 EST

Trojan.WinNT.Alureon.C is a dangerous Trojan horse infection that usually comes as part of a bundled malicious software package. Once installed, Trojan.WinNT.Alureon.C is able to modify or add malicious registry keys, processes and change network connections without notice to the computer user. Trojan.WinNT.Alureon.C is difficult to manually detect and remove.

TrojanGenomehbg

Fri, 18 Sep 2009 09:09:31 EST

Trojan.Genome.hbg is a computer Trojan horse that can be installed from a malicious source without the computer user"s knowledge or consent. After installation, Trojan.Genome.hbg is able to change settings or install other malware. In addition, Trojan.Genome.hbg has been known to add malicious registry entries causing further issues with a Windows PC that can lead to outside users compromising the system. Trojan.Genome.hbg can go undetected making it difficult to manually detect and remove.

TrustWarrior

Fri, 18 Sep 2009 08:19:42 EST

TrustWarrior is a fake anti-spyware program that uses aggressive techniques to trick computer users into purchasing a full version of the TrustWarrior application. TrustWarrior comes from the same family of rogues SoftSafeness and WiniGuard. TrustWarrior, after installed, is able to display a multitude of fake alert messages and conduct system scans that return fabricated results. TrustWarrior will not detect or rid your system of spyware. Detection and removal of TrustWarrior has proven to be difficult to perform manually in many cases.

FlashPlayerUpgradeRequired

Thu, 17 Sep 2009 10:09:49 EST

"Flash Player Upgrade Required" is a fake security message related to malicious social network pages that offer a computer user a video to view. Facebook users, when compromised, usually get a "Flash Player Upgrade Required" message displayed and when clicked it prompts the download of malware. "Flash Player Upgrade Required" messages are usually difficult to decipher and identify as being counterfeit.

PackedExecryptor

Thu, 17 Sep 2009 10:06:32 EST

Packed.Execryptor is a malware infection that performs functions similar to that of spyware. Packed.Execryptor is a potential threat to the security of your computer. Detection and removal of Packed.Execryptor has proven to be difficult because it is able to load into memory at startup of your computer.

Need2FindBar

Thu, 17 Sep 2009 10:04:46 EST

Adware.Need2FindBar or Need2FindBar, is a dangerous Adware application that uses fake adverts to port malware onto a users system. Adware.Need2FindBar may come included with other applications that may have been downloaded from a P2P network or malicious site.

PackedMEW

Thu, 17 Sep 2009 10:02:51 EST

Packed.MEW is a form of malware that is able to access your computer without permission. Packed.MEW is known to infiltrate your computer only to install other malicious files. Computer functions and settings are at risk of being manipulated by Packed.MEW. Packed.MEW is difficult to manually detect and remove.

WindowsPCDefender

Thu, 17 Sep 2009 09:55:07 EST

Windows PC Defender is a fake security application that uses fake security threat alerts to make computer users think that their computer is infected with parasites. Windows PC Defender is usually offered as a solution to the notifications but is not effectively able to rid any system of computer parasites. Windows PC Defender comes from the same family of rogue applications as Windows Additional Guard, OmegaAntivir and Ultimate System Guard. Windows PC Defender can be download and installed through the use of a computer Trojan horse.

PackedGeneric203

Thu, 17 Sep 2009 09:53:34 EST

Packed.Generic.203 is a computer virus that usually detects malicious files that were packed or encrypted to hide them from an antivirus application. Packed.Generic.203 is known to generate misleading alert messages. Once Packed.Generic.203 is executed, it can cause harm to the infected computer by downloading other malware from a remote server. Packed.Generic.203 has proven to be difficult to manually detect and remove.

TrojanMonderb

Thu, 17 Sep 2009 09:51:15 EST

Trojan.Monderb is a vicious computer Trojan horse that is designed to infiltrate your system without your knowledge. Once installed, Trojan.Monderb will display fake messages related to computer infection warnings. Trojan.Monderb may change the behavior of your system and install malicious files throughout the system directory in addition to adding unwanted registry entries.

TrojanHookjaA

Thu, 17 Sep 2009 09:30:51 EST

Trojan.Hookja.A is a Trojan horse that uses falsified results to persuade computer users into purchasing a fake anti-spyware program. Trojan.Hookja.A is able to display fabricated messages that attempt to warn computer users of a potential threat or computer infection found on the system. Trojan.Hookja.A can be difficult to detect and manually remove.

WormBankeraf

Thu, 17 Sep 2009 09:25:33 EST

Worm.Banker.af is a malicious computer worm that may take over operations and functions of your computer. Worm.Banker.af is a serious security risk to personal data stored on your system. Worm.Banker.af could open up your computer to remote attackers where information can be stolen potentially leading to identity theft. Worm.Banker.af is also known as Worm/Banker.B.1, Banker.worm.af, PWS-Banker and Banker.af.Banker.worm.

Gamevance

Wed, 16 Sep 2009 10:26:26 EST

Gamevance is advertised as free gaming software that provides many different free online games. Gamevance is able to display adverts and track usage information. Gamevance is basically adware that has proven to be difficult to manually remove.

005threatsscannercom

Wed, 16 Sep 2009 10:23:59 EST

005threats-scanner.com is a malicious website related to the Personal Antivirus rogue anti-spyware program. 005threats-scanner.com is a clone of 009threats-scanner.com, which is another malicious domain that advertises fake security applications. 005threats-scanner.com can hijack your computer and redirect you to scanner pages that can be misleading in nature.

09computerquickscancom

Wed, 16 Sep 2009 10:21:38 EST

09computerquickscan.com is a malicious domain that was created for the purpose of promoting the rogue anti-spyware program Personal Antivirus. 09computerquickscan.com is part of a scheme in getting computer users to spend their money on a full version of a fake security application. 09computerquickscan.com is known to have the ability to hijack your computer via a Trojan horse an initiate the installation of Personal Antivirus.

Antivirplatinumcom

Wed, 16 Sep 2009 10:18:52 EST

Antivirplatinum.com is a rogue website that is designed to advertise and sell the rogue anti-spyware program Antivirus System Pro. Through vigorous messages and literature, Antivirplatinum.com is able to convince unsuspecting computer users to download, install and ultimately purchase a fake security application such as Antivirus System Pro. Antivirplatinum.com may redirect you to the domain Antivirplatinum.microsoft.com but it is not related to Microsoft.

MonitoringToolArdamax

Tue, 15 Sep 2009 10:40:54 EST

MonitoringTool.Ardamax is a commercial keylogging program that was originally designed to record and store actions on a computer. MonitoringTool.Ardamax has the ability to record keystrokes and go undetected running in the background. MonitoringTool.Ardamax can be used as a malicious tool that may reveal impersonating information about a computer user to a hacker. Information such as your password and username can be captured by MonitoringTool.Ardamax and obtained by a remote attacker.

AdwareBookedSpace

Tue, 15 Sep 2009 10:35:00 EST

Adware.BookedSpace is an adware parasite that uses fake popup advertisements to promote fake security applications or mislead a computer user into making use of a bogus program. BookedSpace or Adware.BookedSpace, can be installed without the knowledge of the computer user and go undetected by running in the background. Adware.BookedSpace is a serious threat to the security of your system that could compromise personal data.

FakeSpyguard

Tue, 15 Sep 2009 10:32:50 EST

FakeSpyguard is a fake anti-spyware program that is designed to use false positives and alerts to push computer users into purchasing a full version of the FakeSpyguard application. FakeSpyguard can be installed though a P2P application or download from a P2P network. After installed, FakeSpyguard will display many misleading popup notifications in addition to carrying out system scans that returns many false results. FakeSpyguard may be advertised on a malicious site that is specifically designed to advertise and sell rogue anti-spyware programs. FakeSpyguard is not an effective application for the tasks of detecting and removing spyware.

Onlineantivirscan09com

Tue, 15 Sep 2009 10:30:24 EST

Online-antivir-scan09.com is a malicious website that aids in the distribution and sell of the Personal Antivirus rogue anti-spyware program. If visited, Online-antivir-scan09.com will display false positives and misleading popup notifications in an attempt to get computer users to download and install a fake security program. Online-antivir-scan09.com is also able to pretend to scan your system and offer a rogue anti-spyware program as a solution to remove the bogus threats that it supposedly found on your computer.

SoftSafeness

Tue, 15 Sep 2009 10:21:58 EST

SoftSafeness is a fake security program that comes from the same family of rogue anti-spyware programs BlockDefense, SystemCop and SafteyKeeper. SoftSafeness usually returns several fake results from an attempted system scan once installed. In addition, SoftSafeness is able to popup many bogus on-screen notifications to further confuse computer users to the point that they may purchase a full version of SoftSafeness. SoftSafeness is usually installed and promoted from a malicious website or trojan horse infection. SoftSafeness does not have the ability to detect and remove parasites or spyware infections.

OmegaAntivir

Mon, 14 Sep 2009 05:57:13 EST

Omega Antivir is a fake spyware remover from the creators of Windows Protection Suite, Windows Additional Guard and Windows Guard Pro. OmegaAntivir infiltrates your computer with the help of Trojans and through security vulnerabilities. Once active, Omega Antivir generates fabricated security alerts and issues a fake system scan, which reports fraudulent infection results. These are used to scare you into thinking your computer is under attack. You are then prompted to purchase Omega Antivir in order to combat these supposed threats.

W32ErkezBmm

Mon, 14 Sep 2009 05:55:59 EST

W32.Erkez.B@mm is a self-replicating computer worm that infiltrates your computer without your knowledge or approval, and begins harvesting your email contacts. W32.Erkez.B@mm then begins sending out infected emails to all these contacts, thus spreading the parasite. W32.Erkez.B@mm also has the ability to overwrite specific executable files.

Bestspywarescan07com

Mon, 14 Sep 2009 05:54:18 EST

Best-spyware-scan07.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Best-spyware-scan07.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

BestAntivirus03com

Mon, 14 Sep 2009 05:49:12 EST

Best-Antivirus03.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Best-Antivirus03.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

StopMalwareDomainscom

Mon, 14 Sep 2009 05:52:17 EST

StopMalwareDomains.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the StopMalwareDomains.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

Win32VirutgenO

Mon, 14 Sep 2009 05:48:14 EST

Win32/Virut.gen!O is a polymorphic virus, otherwise known as a virut virus, which infects executable files. Win32/Virut.gen!O is also capable of creating a backdoor port into your system, allowing a hacker to gain access to your personal and financial information.

BackdoorRumsootA

Mon, 14 Sep 2009 05:47:14 EST

Backdoor.Rumsoot.A is a malicious Trojan horse that typically enters your system without your knowledge or approval, and once active, may download additional forms of malware onto your PC. Backdoor.Rumsoot.A has also been known to create backdoors on your computer that allow a hacker to take control of your machine from a remote server, and access personal and financial information.

VirusMariofevA

Mon, 14 Sep 2009 05:46:42 EST

Virus.Mariofev.A is a computer worm that spreads by creating a copy of itself to network drives, infecting computers that execute them. Once active on a PC, Virus.Mariofev.A may reduce security settings by disabling security programs, such as anti-virus programs.

AdwareDealioA

Mon, 14 Sep 2009 05:45:34 EST

Adware.Dealio.A is an adware application that, once active on your computer system, tracks your Internet browsing habits and activities, displaying obsessive and numerous annoying pop-up ads that are directed towards your specific tastes.

SafetyKeeper

Fri, 11 Sep 2009 06:53:20 EST

SafetyKeeper is a fake spyware remover hailing from the same family as BlockDefense, SaveDefense and SaveKeeper. Through the use of trojan infections, SafetyKeeper gains entry to your PC and from there, begins issuing dozens of annoying security alerts and bogus system scans that turn up nothing but fabricated infection results. These tactics are there to scare you into purchasing the rogue spyware remover SafetyKeeper. Do not be fooled. Remove SafetyKeeper as soon as it is detected.

MalwareBHOFam

Fri, 11 Sep 2009 06:52:34 EST

Malware.BHO.Fam is a Trojan horse that infiltrates your computer through security vulnerabilities, and usually without your knowledge or approval. Once active, Malware.BHO.Fam acts as an adware application, causing a variety of pop-up advertisements to plague your screen. Malware.BHO.Fam may also create a registry key of its own in order to begin running every time Windows starts up.

BackdoorTidservinf

Fri, 11 Sep 2009 06:51:34 EST

Backdoor.Tidserv!inf is a Trojan horse that sneaks onto your computer and, once active, begins downloading additional malware onto your PC. Backdoor.Tidserv!inf may also create a registry key in order to begin running each time Windows starts up. Backdoor.Tidserv!inf has been known to corrupt essential system files.

Antivirusonlinescan03com

Fri, 11 Sep 2009 06:49:45 EST

Antivirusonlinescan03.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Antivirusonlinescan03.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

AdwareDesktop

Fri, 11 Sep 2009 06:49:09 EST

Adware.Desktop is an adware tool that may gain access to your computer through email attachments or browser security holes, and even instant messengers and file sharing programs. Adware.Desktop may monitor your browser habits and report this information to a third party user, which may lead to identity theft.

AdvancedCleaner

Fri, 11 Sep 2009 06:48:21 EST

Advanced Cleaner is a fake spyware remover that employs fraudulent tactics to fool you into purchasing the software. Advanced Cleaner reports fabricated infection results following fake system scans, as well as displaying fake security alerts. These help to scare you into purchasing and downloading the rogue spyware remover Advanced Cleaner.

AdwareWebRebates

Fri, 11 Sep 2009 06:47:11 EST

Adware.WebRebates is an adware tool that displays commercial rebate ads for specific websites. Adware.WebRebates may even hijack your web browser, changing your homepage and search page. Adware.WebRebates also monitors your Internet browsing habits and sends this information to a third party.

Advancedpcscanner6com

Thu, 10 Sep 2009 07:23:33 EST

Advancedpcscanner6.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Advancedpcscanner6.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

W32AgentCKAD

Thu, 10 Sep 2009 07:22:39 EST

W32/Agent.CKAD is a Trojan horse that will affect the Windows platform. Once it has infiltrated the computer via security vulnerabilities, W32/Agent.CKAD will begin downloading additional forms of malware onto your PC and may even allow a hacker to gain remote access, putting your personal information at great risk.

VirusWin32Induca

Thu, 10 Sep 2009 07:21:14 EST

Virus.Win32.Induc.a spread by infecting systems running the Delphi development environment. Virus.Win32.Induc.a is designed to retrieve the installation folder for Delphi from the same registry key and then infect it by adding its malicious code in the implementation section. Only appears to compromise Delphi versions 4 through 7.

FakeWindowsSecurityCenter

Thu, 10 Sep 2009 06:55:18 EST

Fake Windows Security Center masquerades as the legitimate Windows Security Center, using such fake spyware removers as SystemCop, BlockDefense, QuickHealCleaner, SaveDefense, TrustNinja and SaveKeep in order to scare you into believing your computer is under attack. Fake Windows Security Center may also prompt you to purchase one of these rogue spyware removers in order to protect yourself. Do not be fooled, and remove Fake Windows Security Center as soon as possible.

ShopAtHomeSelectAgent

Thu, 10 Sep 2009 06:54:23 EST

ShopAtHomeSelect Agent, otherwise known as ShopAtHome, is an adware application that once active on your PC, will cause your internet activities to be redirected to various websites as well as generate annoying pop-up advertisements. ShopAtHomeSelect Agent is also used to collect information on your Internet browsing habits and transmit this data to a third party.

TrojanWinwebsec

Thu, 10 Sep 2009 06:53:25 EST

Trojan.Winwebsec is a Trojan horse that infiltrates your system due to security vulnerabilities, and typically through the use of rogue websites. Once active, Trojan.Winwebsec may download additional malware onto your computer, as well as open backdoor ports allowing a hacker access to your personal and financial information.

WormSalityTdll

Thu, 10 Sep 2009 06:52:38 EST

Worm.Sality.T.dll is a self-replicating computer worm that is very difficult to detect once it has infiltrates your computer. Once active, Worm.Sality.T.dll harvests email addresses from your system and begins sending infected emails to all your contacts, thus spreading its mayhem.

TrojanMeredrop

Thu, 10 Sep 2009 06:51:32 EST

Trojan.Meredrop is a Trojan downloader that infiltrates your system under deceptive pretenses, and typically without your knowledge or approval. Once active, however, Trojan.Meredrop downloads additional malware onto your PC and may even open your computer to third party access, compromising personal and financial information.

TrojanFlyStudioI

Thu, 10 Sep 2009 06:50:00 EST

Trojan.FlyStudio.I is a dangerous Trojan horse that will secretly infiltrate a system and immediately begin downloading and executing remote files, while also redirecting your browser. Trojan.FlyStudio.I is a nearly perfect parasite; it may self-protect, can monitor the memory of your infected system, may randomly rename its affiliated malicious files, and also tends to integrate with the Windows Operating System critical processes. Trojan.FlyStudio.I is designed to terminate antivirus applications, firewalls and other security related applications.

TrojanUSS

Thu, 10 Sep 2009 06:49:03 EST

Trojan.USS is a Trojan horse typically installed onto a computer via security vulnerabilities and without your knowledge or approval. Once embedded onto the system, Trojan.USS may begin downloading additional forms of malware onto your PC. Trojan.USS may also allow hackers to gain remote access to your computer and thereby placing your personal and financial information at great risk.

WormHuhkC

Wed, 09 Sep 2009 06:04:02 EST

Worm.Huhk.C is a computer worm that infects processes of explorer.exe in the DLL cache folder while attempting to replicate across all existing networks. Worm.Huhk.C was ultimately designed to collect sensitive information such as credit card numbers, login credentials and passwords. Worm.Huhk.C may also employ Rootkit techniques to continue undetected by you and any anti-spyware programs you may have running.

W32ScribbleA

Wed, 09 Sep 2009 06:03:30 EST

W32/Scribble-A is a polymorphic virus designed to affect the Windows platform. W32/Scribble-A may allow unauthorized remote access to your computer by creating backdoor ports on your PC through IRC channels.

TrojanFakeSecSen

Wed, 09 Sep 2009 06:02:42 EST

Trojan.FakeSecSen is a Trojan horse capable of being installed onto your computer system without your knowledge or approval, and going undetected by most anti-spyware applications. Once active, Trojan.FakeSecSen may begin downloading additional malware onto your PC, and allow remote hackers to gain access to your personal and financial information.

RemoteAcessRealVNC

Wed, 09 Sep 2009 06:01:51 EST

RemoteAcess.RealVNC is the malicious version of the Real VNC application, and this particular software is categorized as a Trojan horse. RemoteAcess.RealVNC will first disguise itself as a legitimate program, and will continue to hide all malicious activity from you. RemoteAcess.RealVNC allows a hacker to gain remote access to your computer system.

PersonalGuard2009

Wed, 09 Sep 2009 06:00:59 EST

Personal Guard 2009, otherwise known as PersonalGuard2009, is a fake spyware remover typically sponsored by rogue websites. Once installed onto your computer, it initiates a fake system scan that reports fabricated infection results. You are then prompted to download Personal Guard 2009 in order to combat these nonexistent threats. Personal Guard 2009 then begins running as soon as your Windows starts up, and bombards you with pop-up windows and fraudulent security alerts, scaring you into purchasing and downloading the full version of Personal Guard 2009.

MalwareDrsmartA

Wed, 09 Sep 2009 06:00:14 EST

Malware.Drsmart.A is a malicious Trojan horse that is capable of downloading and installing renegade applications onto a system without your knowledge or consent. Malware.Drsmart.A has been known to download adware, spyware and other malware from various sources and servers on the internet, thus placing the security of your personal system at great risk.

Intellectualvirscan01com

Wed, 09 Sep 2009 05:58:37 EST

Intellectual-vir-scan01.com is a rogue website sponsoring the distribution of the fake spyware remover Personal Antivirus. In order to achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Intellectual-vir-scan01.com web page. Once here, your PC is subject to a fake online scan that reports fabricated infection results in order to scare you into purchasing the rogue spyware remover Personal Antivirus.

InfostealerPhax

Wed, 09 Sep 2009 05:57:55 EST

Infostealer.Phax is a Trojan horse that once installed onto your system, may attempt to steal sensitive information from your infected PC. Infostealer.Phax may also download additional malware onto the computer, causing serious risk to your system.

AdwareInternetSpeedMonitor

Wed, 09 Sep 2009 05:57:05 EST

Adware.InternetSpeedMonitor is a form of malicious adware toolbar, specifically designed to alter system processes in Windows and may even activate annoying and obsessive pop-up advertisements. In some cases, Adware.InternetSpeedMonitor may even monitor your Internet activity and browsing habits, transmitting this data to a third party.

AdwareAdware

Wed, 09 Sep 2009 05:56:15 EST

Adware.Adware is a malicious piece of adware that is distributed by rogue websites. You are prompted to install an ActiveX plug-in that gives the adware parasite permission to install onto your PC. Once active, Adware.Adware begins displaying obsessive pop-up advertisements that may render the computer momentarily useless. Adware.Adware has also been known to monitor internet browsing habits and history, reporting this information to a third party.

W32XanibA

Tue, 08 Sep 2009 06:00:51 EST

W32/Xanib-A is a virus that infects executable and multimedia files on a computer, typically affecting the Windows platform.

TrojFakeAVAAB

Tue, 08 Sep 2009 06:00:08 EST

Troj/FakeAV-AAB is a Trojan horse that infiltrates your computer through security vulnerabilities with the aid of rogue websites. Once active, Troj/FakeAV-AAB typically paves the way for various fake spyware removers to begin implementing their methods on your system in order to get you to purchase them.

SaveKeeper

Tue, 08 Sep 2009 05:54:56 EST

SaveKeeper, otherwise known as Save Keeper, is a fake spyware remover that takes after various other rogue spyware removers such as QuickHealCleaner, SystemCop, BlockDefense and SaveSoldier. SaveKeeper reports fabricated infection results following fake system scans, as well as displaying fake security alerts. These help to scare you into purchasing and downloading the rogue spyware remover SaveKeeper.

PUAMadcodehook

Tue, 08 Sep 2009 05:54:17 EST

PUA.Madcodehook is an example of a Potentially Unwanted Application (PUA) that some experts refer to as a form of adware. PUA.Madcodehook often comes bundled with freeware programs such as messengers, alerts, weather reports, etc. Once active, PUA.Madcodehook becomes responsible for the numerous annoying pop-up advertisements that plague your PC.

Awareremovercom

Tue, 08 Sep 2009 05:52:11 EST

Awareremover.com is a rogue website sponsoring the fake spyware remover called Antivirus System PRO. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Awareremover.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Antivirus System PRO.

WindowsGuardPro

Mon, 07 Sep 2009 07:53:55 EST

Windows Guard Pro is a fake spyware remover hailing from the same family as Ultimate System Guard, Windows Protection Suite, Malware Catcher, and others. The unregistered version of Windows Guard Pro spreads via browser-hijacking methods or through trojans that utilize security exploits in order to infiltrate your PC. Once active and running, Windows Guard Pro displays numerous fake and annoying pop-up windows claiming your computer is infected, or it will report various fabricated results after a counterfeit scan of your system. Either way, Windows Guard Pro will attempt to scare you into purchasing the full version of Windows Guard Pro.

WindowsAdditionalGuard

Mon, 07 Sep 2009 07:49:26 EST

Windows Additional Guard is a fake spyware remover hailing from the same family as Malware Catcher, Windows Protection Suite, Ultimate Guard Pro and Windows Guard Pro. Through the use of trojan infections, Windows Additional Guard gains entry to your PC and from there, begins issuing dozens of annoying security alerts and bogus system scans that turn up nothing but fabricated infection results. These tactics are there to scare you into purchasing the rogue spyware remover Windows Additional Guard. Do not be fooled. Remove Windows Additional Guard as soon as it is detected.

Win32VirutE

Mon, 07 Sep 2009 07:48:51 EST

Win32/Virut.E is a polymorphic virus that may infect various system files on your computer. Win32/Virut.E may also create a backdoor on your system that allows a remote hacker to gain access to your computer, which may lead to the theft of personal and financial data.

UltimateSystemGuard

Mon, 07 Sep 2009 07:43:58 EST

Ultimate System Guard, otherwise known as Ultima System Guard, is a fake spyware remover hailing from the same family as Windows Protection Suite, Windows Security Suite and Malware Catcher. Once installed, Ultimate System Guard generates fictitious and sometimes grossly exaggerated scan results along with fabricated security alerts, all in order to fool you into thinking your PC is infected. You are then prompted to purchase and download the full version of Ultimate System Guard to combat these imaginary threats.

QuickHealCleaner

Mon, 07 Sep 2009 07:33:24 EST

QuickHealCleaner is yet another fake spyware remover following in the footsteps of known rogue spyware removers SystemCop, BlockDefense, SaveSoldier, TrustNinja and SaveDefense. QuickHealCleaner infiltrates your computer disguised as a video codec or driver. Once active, QuickHealCleaner then performs a fake system scan, informing you that your computer is infected. You are then prompted to purchase and download the commercial version of QuickHealCleaner in order to deal with these fabricated threats.

OnlineAntivirusXPVista2009

Mon, 07 Sep 2009 07:32:08 EST

Online Antivirus XP-Vista 2009, otherwise known as Online Antivirus or XP-Vista 2009, is a fake spyware remover. With the help of trojans infiltrating your computer through backdoors and security vulnerabilities, Online Antivirus XP-Vista 2009 will subject your PC to a fake system scan once it is installed, which will report numerous fabricated infection results. These are accompanied by fake pop-ups and system alert notifications, all in order to scare you into purchasing the full version of Online Antivirus XP-Vista 2009.

MalwaresEradicator

Mon, 07 Sep 2009 07:31:09 EST

MalwaresEradicator is a fake spyware remover. MalwaresEradicator infiltrates your computer via security exploits or backdoors provided by affiliated trojans, and once active, is configured to start running whenever Windows starts up. MalwaresEradicator will then prompt you to scan your computer. When this fake scan is complete, various false security alert notifications and annoying pop-ups will be triggered, stating that your PC is infected. In order to combat this threat, you must purchase MalwaresEradicator.

InfostealerEbod

Mon, 07 Sep 2009 07:30:06 EST

Infostealer.Ebod is a Trojan horse that enters your computer attached to a legitimate Flash installer. Once active, Infostealer.Ebod then proceeds to steal your logins, bank information and Media Access Control addresses, as well as search engine results and browser history. Infostealer.Ebod then transmits this information to a remote location.

Antiviruspro2010com

Mon, 07 Sep 2009 07:28:22 EST

Antiviruspro2010.com is a rogue website sponsoring the fake spyware remover called Antivirus Pro 2010. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Antiviruspro2010.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Antivirus Pro 2010.

AntivirusPro2010

Mon, 07 Sep 2009 07:26:39 EST

Antivirus Pro 2010 is a fake spyware remover taking over from the rogue spyware remover PC Antispyware 2010. It is also known as AntivirusPro 2010, Anti Virus Pro 2010 or XP Antivirus Pro 2010. Antivirus Pro 2010 reports fabricated infection results following fake system scans, as well as displaying fake security alerts. These help to scare you into purchasing and downloading the rogue anti-spyware program Antivirus Pro 2010.

Antimalwarescanner8com

Mon, 07 Sep 2009 07:24:08 EST

Antimalwarescanner8.com is a rogue website sponsoring the fake spyware remover called Personal Antivirus. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Antimalwarescanner8.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Personal Antivirus.

W32PinkRenA

Fri, 04 Sep 2009 06:18:19 EST

W32/PinkRen-A is an XSS computer worm that targets the specific Chinese social media website renren.com. W32/PinkRen-A uses posts on renren.com, which include a video promising to show you the Pink Floyd song, "Wish You Were Here", in order to execute and allow the worm to spread.

TrojReopnPPTA

Fri, 04 Sep 2009 06:17:28 EST

Troj/ReopnPPT-A is a Trojan horse for the Windows platform. Troj/ReopnPPT-A is used by malicious PowerPoint documents to terminate the existing vulnerability in PowerPoint processes and re-launch the process opening a non-malicious document.

TrojProtuxGen

Fri, 04 Sep 2009 06:16:40 EST

Troj/Protux-Gen is a nasty backdoor Trojan designed to open a conduit by which a remote hacker could gain full control over your machine. Once executed, Troj/Protux-Gen will allow the hacker to connect to your PC and perform lots of malicious activities. The hacker then may steal your personal information, destroy your data or even perform a credit card fraud. In addition, Troj/Protux-Gen is designed to exploit vulnerabilities in several Windows programs.

TrojFFSpyA

Fri, 04 Sep 2009 06:15:56 EST

Troj/FFSpy-A masquerades as a Firefox add-on that, once active, monitors your browsing habits and transmits this information to a third party. Troj/FFSpy-A pretends to be an Adobe Flash update, and when executed, will begin running installations for various java script components onto Firefox.

Win32Taterf

Thu, 03 Sep 2009 07:22:16 EST

Win32/Taterf is a computer worm that typically targets the fans of online games, stealing personal and financial information from online accounts, such as user names and passwords. In addition to this, Win32/Taterf may also try to disable antivirus and antispyware programs in order to protect itself from detection and removal. Win32/Taterf may also be known as Trojan.Lineage.Gen!Pac.3, PWS-Gamania.gen.a, and Mal/EncPk-CE.

TrojanPWSWin32Frethog

Thu, 03 Sep 2009 07:21:37 EST

Trojan-PWS.Win32.Frethog is a Trojan horse that gains access to your computer by infiltration through security vulnerabilities. Once active, Trojan-PWS.Win32.Frethog then proceeds to steal user names and passwords and transmit this information to a hacker at a remote server. This may lead to identity theft.

TrojanWin32FakeRean

Thu, 03 Sep 2009 07:20:59 EST

Trojan.Win32.FakeRean is a Trojan horse capable of infiltrating your computer through security vulnerabilities and proceeding to remain undetected by anti-virus and anti-spyware programs. Once active, Trojan.Win32.FakeRean downloads additional malware onto your system, and may even open your PC up to outside intrusion, leading to identity theft.

ThreatfoundalertEmailWormJSGigger

Thu, 03 Sep 2009 06:48:30 EST

"Threat found alert - Email-Worm.JS.Gigger" pop-up is a misleading security alert generated by the fake spyware remover PC Antispyware 2010. The false warning notification is used to scare you into believing that your computer is infected with the fictitious computer worm Email-Worm.JS.Gigger. You are then prompted to purchase and download PC Antispyware 2010 in order to combat the threat.

EmailWormJSGigger

Thu, 03 Sep 2009 06:46:12 EST

Email-Worm.JS.Gigger is a fake infection used for the purpose of malware distribution. The fake spyware remover PC Antispyware 2010 seeks to trick you by stating in fraudulent security alerts and fake warning pop-ups, that your computer has been infected with Email-Worm.JS.Gigger. This fictitious worm can apparently replicate using Outlook, Outlook Express and mIRC, and may format your hard disk after reboot. You are then prompted to purchase and install PC Antispyware 2010 in order to combat this falsified threat.

ProofDefender2009

Wed, 02 Sep 2009 15:04:25 EST

Proof Defender 2009 is a rogue anti-spyware program. Proof Defender 2009 appears to be a security application that has the ability to scan and detect issues on your computer. In addition, Proof Defender 2009 offers firewall settings which were found to be bogus. Proof Defender 2009 uses fabricated system notifications and system scans to warn computer users of threats that it finds. If you attempt to remove the threats that Proof Defender 2009 supposedly finds, it will ask that you register and purchase the full Proof Defender 2009 application which is incapable of detecting and removing any type of computer threat.

W32Stealsmth

Wed, 02 Sep 2009 07:29:17 EST

W32.Stealsmth is a virus that may infect various system files on your computer. W32.Stealsmth can also gather personal and financial information, such as usernames and passwords, and send this data to a remote hacker.

Virusermoverprocom

Wed, 02 Sep 2009 07:27:02 EST

Virusermoverpro.com is a rogue website sponsoring the fake spyware remover called Antivirus System PRO. To achieve this goal, trojans infiltrate your computer through security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Virusermoverpro.com web page. Once here, your PC is subject to a fraudulent online scan that reports fabricated infection results in order to scare you into purchasing Antivirus System PRO.

TrojanWincodTrojanFoundPopup

Wed, 02 Sep 2009 07:23:33 EST

"Trojan.Wincod - Trojan Found!" Popup is a fake security alert generated by the fake spyware remover Personal Antivirus. "Trojan.Wincod - Trojan Found!" pop-up reads as follows: "Trojan.Wincod - Trojan Found! Trojan.Wincod is a Trojan horse that displays message boxes and modifies settings on the compromised computer." "Trojan.Wincod - Trojan Found!" seeks to trick you into believing your PC is infected or has been compromised, prompting you to purchase and download Personal Antivirus in order to combat these threats. Do not be fooled, and remove Personal Antivirus as soon as possible.

TrojanFfsearch

Wed, 02 Sep 2009 07:22:41 EST

Trojan.Ffsearch is a Trojan horse that, once it has infiltrated your computer, is capable of altering Internet search results that will cause you to be redirected towards unwanted rogue websites. This may lead to malicious script causing severe damage to your PC.

SystemCop

Wed, 02 Sep 2009 07:17:02 EST

SystemCop is a fake spyware remover hailing from the same family as BlockDefense, SaveDefense, WiniFighter, Trust Ninja and WiniBlueSoft. Through the use of trojan infections, SystemCop gains entry to your PC and from there, begins issuing dozens of annoying security alerts and bogus system scans that turn up nothing but fabricated infection results. These tactics are there to scare you into purchasing the rogue spyware remover SystemCop. Do not be fooled. Remove SystemCop as soon as it is detected.

SmartAntivirus2010

Wed, 02 Sep 2009 07:15:00 EST

Smart Antivirus 2010 is the latest version of the fake spyware remover Smart Antivirus. The unregistered version of Smart Antivirus 2010 spreads via browser-hijacking methods or through trojans that utilize security exploits in order to infiltrate your PC. Once active and running, Smart Antivirus 2010 displays numerous fake and annoying pop-up windows claiming your computer is infected, or it will report various fabricated results after a counterfeit scan of your system. Either way, Smart Antivirus 2010 will attempt to scare you into purchasing the full version of Smart Antivirus 2010.

NortelAntivirus

Wed, 02 Sep 2009 07:12:08 EST

Nortel Antivirus is a fake spyware remover that employs fraudulent tactics to fool you into purchasing the software. Nortel Antivirus reports fabricated infection results following fake system scans, as well as displaying fake security alerts. These help to scare you into purchasing and downloading the rogue spyware remover Nortel Antivirus.

FakeVirA

Wed, 02 Sep 2009 07:11:15 EST

Fake.Vir.A is a Trojan horse that is typically installed onto a computer through security vulnerabilities and without your knowledge or approval. Once active, Fake.Vir.A may download additional malware onto your PC, as well as allow a remote hacker access to your personal and financial data, leading to identity theft.

TrojanPeskyspy

Tue, 01 Sep 2009 11:47:21 EST

Trojan.Peskyspy is a trojan that has the ability to listen in on data traveling between VoIP communications via Skype. Trojan.Peskyspy has been identified as the first trojan that is able to tap into or record conversations via popular VoIP applications. Trojan.Peskyspy does not have the ability to spread to other systems from one infected system but still posses a viable threat to any system running Skype, which is the application that is Trojan.Peskyspy has targeted.

TrojanDownloaderWin32Bredolabx

Tue, 01 Sep 2009 11:44:41 EST

Trojan-Downloader.Win32.Bredolab.x is a malicious trojan horse that has the ability to connect to a remote server to download other malicious files onto the infected system without permission from the computer administrator. Once installed, Trojan-Downloader.Win32.Bredolab.x can open up the system to outside attackers where personal information or files can be compromised. Trojan-Downloader.Win32.Bredolab.x can be injected into the svhost.exe making it very difficult to detect and remove manually.

Dbsinitexe

Tue, 01 Sep 2009 10:23:30 EST

Dbsinit.exe is a dangerous trojan file that is related to the Windows Antivirus Pro and Windows Police Pro rogue anti-spyware programs. Dbsinit.exe may be automatically installed onto a computer if a Trojan has downloaded one of the rogue applications Windows Police Pro or Windows Antivirus Pro. Dbsinit.exe may load at startup of Windows making it difficult to detect and remove.

HookerTrojanKeylogger

Tue, 01 Sep 2009 10:18:03 EST

Hooker Trojan Keylogger is a malicious mailing keylogging application. Hooker Trojan Keylogger has the ability to record key strokes, download malicious files from the internet onto the infected system and populate the system registry with malicious entries. Hooker Trojan Keylogger may open up a system to be infiltrated remotely making files and data stored on the infected system vulnerable to theft. Hooker Trojan Keylogger, once installed, can run in the background and load at startup undetected.

WindowsPolicePRO

Mon, 31 Aug 2009 08:15:06 EST

Windows Police PRO is a malicious program whose main goal is to trick people into purchasing its licensed version. Using affiliated trojans to infiltrate a computer without your knowledge or permission, and when installed and active, Windows Police PRO displays annoying popup system warnings and system tray alerts reporting viruses that can allegedly damage your confidential data and deteriorate the system performance. Windows Police PRO also runs fabricated security scanners that return scan results full of spyware applications, trojans, worms and other malware. All the above alerts and scans attempt to mislead you into thinking you have serious PC risks and need to handle them using Windows Police PRO commercial version. Thus, it is suggested you purchase and install the licensed version of Windows Police PRO.

W32Nitomeivo

Mon, 31 Aug 2009 08:14:15 EST

W32.Nitomeivo is a virus that spreads through scam email messages, arriving onto your computer in the form of an executable file. When W32.Nitomeivo is eventually executed, it will begin to infect other executable files in the form of .exe and .scr. W32.Nitomeivo may also overwrite system files on your infected PC.

VistaAntivirus2010

Mon, 31 Aug 2009 08:13:07 EST

Vista Antivirus 2010 is a fake spyware remover. Vista Antivirus 2010 infiltrates your computer via security exploits or backdoors provided by affiliated trojans, and once active, is configured to start running whenever Windows starts up. Vista Antivirus 2010 will then prompt you to scan your computer. When this fake scan is complete, various false security alert notifications and annoying pop-ups will be triggered, stating that your PC is infected. In order to combat this threat, you must purchase Vista Antivirus 2010.

Systemisvulnerabletoattacks

Mon, 31 Aug 2009 08:09:34 EST

"System is vulnerable to attacks" is a fake security alert generated by the fake spyware remover Trust Ninja. "System is vulnerable to attacks" pop-up reads as follows: "System is vulnerable to attacks. Attention: DANGER! TrustNinja detected that This PC NOT PROTECTED. Currently installed malware application cause: Annoying advertisements wasting your traffic. Slow page downloading speed. Web browser is not working properly Cyber thieves get access to credit card. Criminals will steal your personal data and photos. Hackers will get access to email box, personals, hosting and internet services. They will use your computer and IP address for illegal purposes. Register TrustNinja to activate protection from malware attacks. Click "Protect" to register software and run protection." "System is vulnerable to attacks" seeks to trick you into believing your PC is infected or has been compromised, prompting you to purchase and download Trust Ninja in order to combat these threats. Do not be fooled, and remove Trust Ninja as soon as possible.

StopSpywarenet

Mon, 31 Aug 2009 08:06:32 EST

Stop-Spyware.net is a rogue website sponsoring the fake spyware remover Spyware Crusade. It achieves this goal by infiltrating your computer with trojans via security holes and altering the browser settings, causing web-surfing activities to be interrupted and diverted to the Stop-Spyware.net web page. Once here, your PC is subject to a fake online scan that reports back fraudulent infection results in order to scare you into purchasing the Spyware Crusade malicious program.

Gavexe

Mon, 31 Aug 2009 08:04:29 EST

Gav.exe is an executable file that is part of the fake spyware remover Green AV, and may cause deterioration of computer system performance and loss of speed. Remove Green AV as soon as possible.

BlockDefense

Mon, 31 Aug 2009 07:58:59 EST

BlockDefense, otherwise known as Block Defense, is a fake spyware remover masquerading as legitimate software. BlockDefense is a clone of other rogue anti-spyware programs such as SaveDefense, SaveKeep, SaveSoldier and TrustNinja. With the aid of affiliated trojans, BlockDefense sneaks onto your computer and begins running a fake system scan that reports fabricated infection results, accompanied by misleading security alerts, in order to trick you into believing your PC is infected. You are then prompted to purchase and download BlockDefense in order to combat these imaginary threats.

TrojanRenos

Fri, 28 Aug 2009 06:40:23 EST

Trojan.Renos (also referred to as Trojan.Renos.G and Trojan.Renos.M) is a Trojan horse capable of infiltrating your computer without your knowledge or consent, and begin downloading additional malware onto the PC in order to compromise it further. Trojan.Renos may also allow a hacker to take complete control of your system.

ToolbarMyWebSearch

Fri, 28 Aug 2009 06:38:05 EST

Toolbar.MyWebSearch, otherwise known as W32/Toolbar.MyWebSearch, is a misleading threat that appears in security alerts and desktop pop-up windows, generally initiated by fake spyware removers and rogue websites. Perhaps once, Toolbar.MyWebSearch may have been considered a threat, but now the biggest danger from Toolbar.MyWebSearch is to scare you into believing your PC is infected and purchasing Antivirus XP 2008 in order to combat the threat.

SpywareCrusade

Fri, 28 Aug 2009 06:37:08 EST

Spyware Crusade is a fake spyware remover that generates fictitious and sometimes grossly exaggerated scan results along with fabricated security alerts, all in order to fool you into thinking your PC is infected. You are then prompted to purchase and download the full version of Spyware Crusade to combat these imaginary threats.

Livevirusscanner7com

Fri, 28 Aug 2009 06:35:29 EST

Live-virus-scanner7.com is a rogue website sponsoring the distribution of the fake spyware remover Personal Antivirus. To achieve this goal, trojans infiltrate your computer by way of security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Live-virus-scanner7.com web page. Once here, your PC is subject to a fake online scan that depicts fabricated infection results in order to scare you into purchasing the rogue spyware remover Personal Antivirus.

VBSRunautoG

Thu, 27 Aug 2009 06:52:37 EST

VBS.Runauto.G is a computer worm that spreads by copying itself to removable drives and unsecured networks shares, automatically executed when accessed. VBS.Runauto.G may create backdoors on your PC allowing a remote hacker to gain entrance to your computer, leading to theft of personal and financial information.

SaveDefense

Thu, 27 Aug 2009 06:47:40 EST

SaveDefense (also referred to as Save Defense) is a fake spyware remover hailing from the same family as SaveKeep, SaveSoldier, WiniFighter and WiniBlueSoft. Once installed, SaveDefense generates fictitious and sometimes grossly exaggerated scan results along with fabricated security alerts, all in order to fool you into thinking your PC is infected. You are then prompted to purchase and download the full version of SaveDefense to combat these imaginary threats.

SafetyCenter

Thu, 27 Aug 2009 06:44:37 EST

Safety Center is a variant of the fake spyware removers Secret Service and Privacy Center. It masquerades as a useful program, but is nothing of the sort, only seeking to gain your trust. Typically Safety Center states that your computer is infected or has various problems, and then prompts you to purchase the full version in order to combat these imaginary issues.

PackedGeneric245

Thu, 27 Aug 2009 06:44:06 EST

Packed.Generic.245 is a detection method used to locate malicious files that were intentionally encrypted to be able to hide on system processes and evade detection by antivirus programs. Packed.Generic.248 is packed used illegitimate software not used for official purposes.

Greenavprocom

Thu, 27 Aug 2009 06:42:38 EST

Green-av-pro.com is a rogue website sponsoring the distribution of the fake spyware remover Green AV. To achieve this goal, trojans infiltrate your computer by way of security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Green-av-pro.com web page. Once here, your PC is subject to a fake online scan that depicts fabricated infection results in order to scare you into purchasing the rogue spyware remover Green AV.

Greenavcom

Thu, 27 Aug 2009 06:41:18 EST

Green-av.com is a rogue website sponsoring the distribution of the fake spyware remover Green AV. To achieve this goal, trojans infiltrate your computer by way of security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Green-av.com web page. Once here, your PC is subject to a fake online scan that depicts fabricated infection results in order to scare you into purchasing the rogue spyware remover Green AV.

W32Feberr

Wed, 26 Aug 2009 07:11:51 EST

W32.Feberr is a computer worm that spreads by copying itself to USB removable devices and via file-sharing networks. W32.Feberr may also create its own registry entry so that the worm begins running each time Windows starts up.

VirusWixudA

Wed, 26 Aug 2009 07:10:55 EST

Virus.Wixud.A is a computer virus that tends to infiltrate your computer without your knowledge or approval. Once active, Virus.Wixud.A seeks out shared folders and peer-to-peer file sharing applications in order to spread, all the while infecting executable files affiliated with file sharing programs.

TrustNinja

Wed, 26 Aug 2009 07:09:48 EST

TrustNinja (also referred to as Trust Ninja) is a fake system optimization tool. It masquerades as a useful program, but is nothing of the sort, only seeking to gain your trust. Typically TrustNinja states that your computer is infected or has various problems, and then prompts you to purchase the full version in order to combat these imaginary issues.

Osadwarekillmicrosoftcom

Wed, 26 Aug 2009 07:07:52 EST

Osadwarekill.microsoft.com is a rogue website sponsoring the distribution of the fake spyware remover Antivirus System PRO. To achieve this goal, trojans infiltrate your computer by way of security vulnerabilities and alter the browser settings, causing web-surfing activities to be interrupted and diverted to the Osadwarekill.microsoft.com web page. Once here, your PC is subject to a fake online scan that depicts fabricated infection results in order to scare you into purchasing the rogue spyware remover Antivirus System PRO.