XP Protection 2013 virus (removal guide)

May 7, 2013 — andy

Appearance of XP Protection 2013 on your PC is surely the scary event. Its presence on your machine must not be ignored by you, so instead of tolerating the hoax you’d better hurry up to delete it immediately. Here is why we think so. First of all, this program is malicious. It rightfully belongs to the category of rogues (fake anti-spyware programs). It cannot detect or remove real security vulnerabilities of your PC. What it can do is undertake numerous attempts to convince you to effect payment for its fake and powerless license. However, be not deceived by it; the chances are that you will lose your money and will never get it back if you put your trust into this deceitful utility.

(more…)

andy on Google+
Posted in Rogues. Tags: , , , , , . No Comments »

Remove Win 8 Protection 2013

May 4, 2013 — andy

It has been recently noticed that another rogue anti-virus is attacking so many PCs all over the world. Its name is Win 8 Protection 2013. It belongs to Fake Rean (Braviax) virus family, but now Windows 8 is one of its targets. Users must be very careful when they see the programs that look similar to the one depicted at the screenshot you see. Often some particular program says that it can restore your PC from malwares and make it totally clean, but this is, indeed, quite a deceptive way of tricking users. Instead of protecting your computer such applications literally damage it and make it even more and more vulnerable to various other attacks of contemporary PC threats. If this is the case with your PC you must be very careful. Do not let the hackers fool or trick you, otherwise you’re in a danger of losing your hard earned funds.

(more…)

andy on Google+
Posted in Rogues. Tags: , , , , , . No Comments »

Amsecure.exe virus process termination

May 4, 2013 — andy
Isecurity.exe scam

Amsecure.exe is the main process of Internet Security 2013 virus. Its most typical location would be %CommonAppData%\amsecure.exe and this means that for Windows XP the file location is C:\Documents and Settings\All Users\Application Data\amsecure.exe and for Windows Vista/7 it is C:\ProgramData/amsecure.exe. When Internet Security 2013 virus approaches and finally gets installed onto your computer it would report various sorts of security problems. It would, in fact, tell of many viruses allegedly attacking it, whereas W32/Blaster.worm infection is reported by it more often then other ones. Such virus (W32/Blaster.worm) is real, but not in this case. The software bearing the name of Internet Security 2013 is not capable of identifying real security threats and thus cannot remove them. The reason why this rogue security program was developed was to trick users into paying for the licensed version of this malware program. Developing fake anti-virus applications is one of the key components of today’s generalized structure of cyber crimes, and every year the growth rates of this unfair and criminal business increase rapidly. So, when you see Internet Security 2013 fake anti-spyware in front of you remember what we’ve told you – this is a rogue security tool and not any legitimate program. Do not let this malware sample scare you. The reports it gives are not based on the true facts. You must ignore them all and get rid of the hoax without hesitation. Needless to mention, do not pay for this program. You will waste your money and will not receive any decent protection of security for your computer. In fact, by disclosing your personal bank details or the information about your credit card you are making your finances vulnerable to further attacks and attempts of the frauds to rob you. Finally, if you purchase their malware application you are supporting them for further cyber crimes and development of other versions of rogue anti-malware applications. So, be wise and do not let the frauds fool you.

(more…)

andy on Google+
Posted in Rogues. Tags: , , , , . 1 Comment »

Remove Internet Security 2013 (uninstall tips)

May 3, 2013 — andy
Isecurity.exe scam

The program that names itself as Internet Security 2013 is a rogue anti-spyware application. Its claims to be able to delete malwares from your computer are surely overestimated. The tool behaves like a typical hoax, it enters your system without approval or asking for your consent to enter your PC. Thus, it seems that there are no any security barriers for this badware. So, when you face this malware in front of your screen, please remember that you’re dealing with a serious malicious application that should be wiped off immediately from your PC. Failure to remove it on time may lead to many unpredictable consequences, so be very careful when you actually realize the scam is on your machine.

(more…)

andy on Google+
Posted in Rogues. Tags: , , , , , . 1 Comment »

Remove aramamekani.com as a start page of your browser

April 30, 2013 — andy
ramamekani.com

Some users these days have a serious problem with their computers. This is the problem of browser redirection via aramamekani.com. This is a site that offers some sort of search. It seems like the one offered by Google, yet this is a totally different thing, of course. This aramamekani.com has a lot of other unwanted stuff integrated into the search page. What’s more horrible, it has some links to some extremely evil stuff, such as erotic videos and other adult sinful entertainments. Obviously, this is a serious browser hijacker that should be immediately removed off your system.

(more…)

andy on Google+
Posted in redirect virus. Tags: , , , . No Comments »

Remove Joint Chiefs of Staff warning (virus)

April 30, 2013 — andy
Joint Chiefs of Staff warning

Joint Chiefs of Staff virus stands for a special type of Trojan categorized as Reveton. It blocks an attacked PC‘s desktop with the notice “The work of your computer has been suspended on the grounds of the violation of the law of the United States of America”. By the way, this alert is typical to many other similar ransomware lockers. Later on the ransomware instructs that user must pay a fine amounting to 400USD in order for the locker to be removed and a system to be restored to the normal condition. The faulty accusations are the following: watching and/or spreading child pornography, downloading and sharing illegal music and video files or using illegal software downloaded from illegal resources. The scary warning is presented in a manner that allows it to seem as if it is originated by Joint Chiefs of Staff. It attacks systems in the USA. Here is the partial quotation from the fake alert:

(more…)

andy on Google+
Posted in Ransomware. Tags: , , , , . No Comments »

Remove search.conduit.com browser redirection

April 30, 2013 — andy
search.conduit.com

search.conduit.com is a browser hijacker that has gained bad popularity in many countries over the world. Many users would like to find out the simple answer to the question – how to remove search.conduit.com of their browser as the start page. The reason why they would like to get rid of it is because these redirects via this domain are very annoying. Why is it so? Well, because users see a lot of ads that are often persistent, together with the search results via this site.

(more…)

andy on Google+
Posted in redirect virus. Tags: , , , . No Comments »

Search.iminent.com browser hijacker. Removal guide

April 29, 2013 — andy
search.iminent.com

How to remove search.iminent.com off your browser? This question surely bothers many users today. search.iminent.com is a browser hijacker that replaces the default search page with its own, thus causing serious redirections. This is, of course, annoying for many users. Obviously, they would like to get rid of this redirection from their browser. This guide will explain you how to do it.

(more…)

andy on Google+
Posted in Ransomware. Tags: , , , , , . No Comments »

Australian Federal Police (AFP ICSPA) virus removal

April 29, 2013 — andy
Australian Federal Police virus

Beware of fake alert coming supposedly from Australian Federal Police (also abbreviated as AFP). It also uses the logo of ICSPA (International Cyber Security Protection Alliance). This is not a real warning. On the contrary, this is a ransomware program that was developed by hackers specifically for the goals of scaring users primarily in Australia. The virus hijacks the entire desktop of the infected PC and then asks for certain ransom to be paid in order to unlock it. The ransom price, by the way, makes up 100 Australian dollars, or possibly even more with some other malware modifications. However, this money should never be paid by you or other users whose systems became infected with this malware.

(more…)

andy on Google+
Posted in Ransomware. Tags: , , , . No Comments »

Disk Drive C is being deleted – new scam from SecureBit Technologies rogue

April 27, 2013 — andy
Disk Drive C is being deleted

If you have SecureBit Technologies rogue on your computer you will eventually have some unusual fake security warnings and bogus system error alerts. We’ve recently viewed a nice video performance at YouTube where one excellent rogue analyst had this scam on his test computer. As time went by, the scam appeared on his test machine, saying the following – Disk Drive C is being deleted. Obviously, this is a typical scam, and SecureBit Technologies is a pseudo fake AV, sort of a lame rogue software. The message about ‘Disk Drive C being deleted’ is surely funny to be observed by professional security analysts, yet it may indeed be scary for those users who don’t realize that SecureBit Technologies is a fake AV software.

(more…)

andy on Google+
Posted in Rogues. Tags: , , , , , . No Comments »
« Older posts «
Newer posts » »