Feb 06
The Internet Defender Rogue, a member of the Fake-DLL family which claims to keep your system free of Malware, by scaring the end-user into purchasing “protection” through fake infection warnings. Files and Locations: <Drive>:\Documents and Settings\<User>\Application Data\<Random Names>.avi <Drive>:PROGRAM FILES\Internet Defender\Internet Defender.dll The Internet Defender rogue can be removed with manually, however, because of blocking …
Jan 26
Antivirus Smart Protection is a rogue of the FakeVimes Family which comes after the Malware Protection Center clone. The rogue uses the scare tactics of generating pop up fake alerts to get the users infected to purchase the rogue. The FakeVimes rogues also hijacks the hosts file and sets a proxy in the Internet Options, …
Jan 25
Smart Protection 2012 is Rogue of the WinWeb Security Family replaces the Security Sphere 2012 clone. This rogue like so many of today’s rogues, block the running of all other applications and the constant pop ups and re-directs to scare messages designed to scare those infected into purchasing the rogue. Files and Locations: %COMMON_APPDATA%\<random named> .exe …
Jan 25
Internet Security 2012 is a rogue that is part of the Malware Protection family of rogues that uses fake alert and fake scan results as scare tactics to get the user to purchase the rogue. Associated Internet Security 2012 Files: %COMMON_APPDATA% \isecurity.exe File Location Notes: %Desktop% means that the file is located directly on your desktop. …
Jan 25
Malware Protection Center is a rogue of the FakeVimes Family which replaces the Home Security Solutions. The rogue uses the scare tactics of generating pop up fake alerts to get the users infected to purchase the rogue. The FakeVimes rogues also at times hijacks the hosts file and sets a proxy in the Internet Options, …
Jan 17
Internet Security Guard is a rogue of the FakeVimes Family which replaces the Home Security Solutions. The rogue uses the scare tactics of generating pop up fake alerts to get the users infected to purchase the rogue. The FakeVimes rogues also hijacks the hosts file and sets a proxy in the Internet Options, Connections, Lan …
Dec 30
Home Security Solutions is a rogue of the FakeVimes Family which replaces the Anti-Malware Lab clone. The rogue uses the scare tactics of generating pop up fake alerts to get the users infected to purchase the rogue. The FakeVimes rogues also hijacks the hosts file and sets a proxy in the Internet Options, Connections, Lan …
Dec 29
System Check, is a rogue of the FakeSysDef Family which uses fake scareware of having hard drive and system errors to scare those infected to purchase the rogue. The FakeSysDef rogues also includes an MBR (Master Boot Record) Rootkit like TDSS, TDL#, or Sinowal used for profiting from search engine results hijackings even after the user purchases the …
Dec 12
Antivirii 2011 rogue is one that doesn’t point to any of the known families of rogues, however, this rogue like others uses fake alerts with fake scan results to scare the user into buying the rogue. This one didn’t block the running of other applications and has only two files it drops to the Windows folder, …
Nov 24
Cloud AV 2012 is a rogue of the FakeScanti Family, that uses deceptive tactics, fake spam email alerts, and results of fake scans showing the computer being infected, and also the blocking of all applications when trying to run them to scare the user into buying the rogue to clean the fake infections shown. Files …
