Friday, December 18, 2009

SysDefence

SysDefence is a fake serurity software (rogue) from the Winisoft family (TheDefend, GuardPcs, IGuardPc, SiteAdware, AntiTroy, AntiKeep, AntiAdd, RESpyWare, REAnti, KeepCop, SiteVillain, LinkSafeness, SecureKeeper, AntiAID, System Warrior, System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



SysDefence comes from fake online antivirus scanners or fake video codecs, creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users.

If your PC is infected with some of the WiniSoft family rogue, use MBAM to remove the infection.

Wednesday, December 16, 2009

TheDefend

TheDefend is a fake serurity software (rogue) from the Winisoft family (GuardPcs, IGuardPc, SiteAdware, AntiTroy, AntiKeep, AntiAdd, RESpyWare, REAnti, KeepCop, SiteVillain, LinkSafeness, SecureKeeper, AntiAID, System Warrior, System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



TheDefend comes from fake online antivirus scanners or fake video codecs, creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users.

If your PC is infected with some of the WiniSoft family rogue, use MBAM to remove the infection.
Thanks to Bharath.

Tuesday, December 15, 2009

GuardPcs, IGuardPc, SiteAdware, AntiTroy, AntiKeep, AntiAdd, RESpyWare, REAnti, KeepCop

GuardPcs, IGuardPc, SiteAdware, AntiTroy, AntiKeep, AntiAdd, RESpyWare, REAnti, KeepCop are fake serurity softwares (rogues) from the Winisoft family (SiteVillain, LinkSafeness, SecureKeeper, AntiAID, System Warrior, System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



















GuardPcs, IGuardPc, SiteAdware, AntiTroy, AntiKeep, AntiAdd, RESpyWare, REAnti, KeepCop come from fake online antivirus scanners or fake video codecs. They create random files on the system and detects them as infected. They also display a lot of disturbing warning messages to scare users.

If your PC is infected with some of the WiniSoft family rogue, use MBAM to remove the infection.

Some pics are from Bharath's blog.

Friday, December 11, 2009

Fast Antispyware

Fast Antispyware is a fake security application from Hydra Networks.



If your PC is infected with Fast Antispyware use MBAM to remove the infection.

Wednesday, November 18, 2009

SiteVillain, LinkSafeness, SecureKeeper

SiteVillain, LinkSafeness, SecureKeeper are fake serurity software (rogues) from the Winisoft family (AntiAID, System Warrior, System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)







SiteVillain, LinkSafeness, SecureKeeper come from fake online antivirus scanners or fake video codecs. They create random files on the system and detects them as infected. They also display a lot of disturbing warning messages to scare users.

Thursday, November 12, 2009

Entreprise Suite

Entreprise Suite is the new rogue from the following family: Windows Entreprise Suite, Windows Entreprise Defender, Volcano Security Suite, Windows Entreprise Defender, Windows PC Defender, Windows Additional Guard, Windows Guard Pro, Ultimate System Guard, Smart Virus Eliminator, Windows Protection Suite, Windows System Suite, Windows Security Suite, Malware Destructor 2009, FastAntivirus, MalwareCatcher, VirusShield, Extra Antivirus, Virus Sweeper, Ultra Antivir 2009, Virusdoctor, VirusMelt, VirusAlarm.

Entreprise Suite Comes froms fake online virus scanners. It displays false alerts and warning messages to scare users pushing them to purchase a full license.



Thanks to Bharath

Wednesday, November 11, 2009

AntiAID

AntiAID is the new version of the Winisoft rogue family (System Warrior, System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



AntiAID comes from fake online antivirus scanners or fake video codecs, creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users.

If your PC is infected with AntiAID, follow the bleepingcomputer removal guide.
Thanks to Bharath

System Warrior

System Warrior is the new rogue of the Winisoft family (System Veteran, System Fighter, Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



System Warrior comes from fake online antivirus scanners or fake video codecs, creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users.

If your PC is infected with System Warrior, use MBAM to remove it.

Tuesday, November 10, 2009

System Veteran, System Fighter

System Veteran and System Fighter are from the Winisoft rogue family (Block Protector, Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)





System Veteran, System Fighter are coming from fake online antivirus scanners or fake video codecs. They create random files on the system and detects them as infected, displaying a lot of disturbing warning messages to scare users.

Wednesday, November 4, 2009

Block Protector

Block Protector is the new rogue of the Winisoft family (Block Keeper, Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



Block Protector comes from fake online antivirus scanners or fake video codecs. It creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users, pushing them to buy a license.

If your PC is infected with Block Protector, use MBAM to remove it.

Monday, November 2, 2009

BlockKeeper

Block Keeper is the new rogue of the Winisoft family (Block Scanner, Block Watcher, SoftBarrier, Shield Safeness, Soft Stronghold, Soft Veteran, SoftCop, Soft Soldier, Trust Fighter, Trust Soldier, Safe Fighter, Trust Cop, Secure Warrior, Secure Fighter, Secure Veteran, Security Soldier, Security Fighter, Save Armor, Save Defender, Trust Warrior, Soft Safeness, Safety Keeper, Save Keeper, Quick Heal Cleaner, System Cop, Block Defense, Save Defense, Trust Ninja, Save Soldier, Save Keep, Winishield, Wini Fighter, WiniBlueSoft)



BlockKeeper comes from fake online antivirus scanners or fake video codecs. It creates random files on the system and detects them as infected. It also display a lot of disturbing warning messages to scare users, pushing them to buy a license.

If your PC is infected with BlockKeeper, use MBAM to remove it.

IObit Steals Malwarebytes' Intellectual Property

Malwarebytes has recently uncovered evidence that a company called IObit based in China is stealing and incorporating its proprietary database and intellectual property into their software. Read the full story.



IObit replies with a declaration: "No hard proof shows that IObit stole database of Malwarebytes".


Few days ago, IObit has included a IE ToolBar in the software installation (quickly replaced by a Yahoo Toolbar).



The toolbar was made by Conduit, a well known spyware company. The mistake was done. Corrected, but unethical for a security company. IObit should have known.



There is more: IObit is hosting porn pages content with active link to porn sites:





Promoting security tools with porn pages. This is definitely unethical.