Windows Easy Transfer

Windows Easy Transfer is a legitimate program included in the newer versions of Windows to help users move files and settings from old computer to new one. Recently, another Windows Easy Transfer was identified as rogue program that will be spread with the help of a Trojan. It was also observed that Windows Easy Transfer virus can be acquired by visiting malicious web sites and clicking on links intentionally served by attacker on instant messaging applications. File-sharing networks are also responsible in propagating this rogue application on victims computer by embedding itself on legitimate executable files. Once downloaded and installed, a copy of Windows Easy Transfer is also being loaded in the background without the consent of the user. More

Active Pro Security 2011

Active Pro Security 2011

Active Pro Security 2011 is also known as Active Pro Security Antivirus, a rogue security program that will use unfair marketing technique to be able to sell itself online. Active Pro Security 2011 will use a Trojan that will penetrate a computer and redirect victim’s Internet browser and point it to a fake security web sites. This site will declare certain infection on the PC and advise to download a copy of Active Pro Security 2011 in order to clean and protect it from viruses. More

Ultimate Guard

Ultimate Guard

Ultimate Guard or also called as the Ultimate Guard 2011 virus is a rogue security application that is being promoted as a legitimate software on its own web sites. Ultimate Guard will disguise as complete protection for business and home but in reality, this bogus program was developed in the sole purpose of providing misleading alerts and advertisements on infected computer. First, victims will be infected with a Trojan that will provide fake alerts and advise to remove these by downloading a copy of the endorsed application. A link to download Ultimate Guard will be presented and immediately execute without an intervention of the visitors. More

Windows Salvage System

Windows Salvage System

Windows Salvage System is a fake software developed for Windows systems. It was part of the large group of rogue programs where Windows Rescue Center and Windows Anticrashes Utility also belongs. These programs are able to penetrate into target computer and mess everything to annoy user. With this method, Windows Salvage System may promote itself as the only solution to resolve computer issues. A bunch of fake alerts and messages will also display that alarms users of threats detected on the computer. Every time Windows starts, Windows Salvage System will run its own scan and displays fabricated results in an attempt to persuade users to obtain the paid version of the program. More

Infostealer.Sarhus

Infostealer.Sarhus is a deadly computer Trojan. It will connect to a remote server to download and upload files. Infostealer.Sarhus can also gather sensitive information from an infected computer. It will save your critical information as a log text file and send it to a remote attacker on scheduled basis. More

Backdoor.Zegost

Backdoor.Zegost is a harmful computer Trojan that will function as a backdoor once it gains an access on your computer. Backdoor.Zegost will connect to a specified domain that will allow a remote attacker to download and execute files on victim’s PC. Additionally, it will let the author to have control on the affected system using the same backdoor port. More

Windows Rescue Center

Windows Rescue Center

Windows Rescue Center is a rogue software that mimics other programs from the same clan. Internet is the primary means to spread this malware to computers worldwide. Initially, fake Microsoft Security Essentials Alert will introduce Windows Rescue Center as the key software to remove Trojans and viruses on your computer. Users may encounter the said alert when they visit a malicious web page disguising as online virus scanner. It will scan the computer and produce false results that may lead to convince visitors to download a trial version of Windows Rescue Center. More

Personal Shield Pro

Personal Shield Pro

Personal Shield Pro is a worthless program that will pose as real security software. This virus tries to hit every computer connected via the Internet bringing Trojan into play. It sends false meaning regarding security level by publishing forged virus scan and alert messages. Developer of Personal Shield Pro spends quality time to make the unlawful program sneak into the system without being spotted by your anti-virus software. As a matter of fact, they even analyze certain security and software exploit to infect rapidly the moment that the rogue software is released in the wild. Attacking the system with highly developed method makes it hard for anti-virus vendors to come up with a solution in protecting PC’s against this threat. More

Backdoor.Layork

Backdoor.Layork is a backdoor Trojan that will allow a remote attacker to gain access on compromised computer and steal confidential information such as user name and passwords. Backdoor.Layork may send gathered information to a remote computer or predefined web sites.

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Windows Vista

Characteristics
When the Trojan is executed, it will drop multiple files on different folders. See related files and folders area. It will also add an entry to Windows registry that allows the Trojan to run every time Windows starts.

Once running on the computer, Backdoor.Layork will connect to a remote site and start uploading stolen data. Security experts believed that an attacker would use these data for other malicious online activities.

Distribution
This kind of Trojan spread through file-sharing networks or peer-to-peer connections. In most cases, Backdoor.Layork author embeds the code onto executable files that users may acquire from a public server. Using an advanced technique, the Trojan often conceals itself from anti-virus software. There is also instances that spam email messages are used to distribute Backdoor.Layork to unspecified targets. It may arrive as an attached file that pretends as valid document file or useful programs.

[cf]regis[/cf] [cf]files[/cf]

How to Protect Computer From Backdoor.Layork

Internet Precautions:
- Configure email clients to block incoming emails that contains attached files with .vbs, .bat, .exe, .pif and .scr extensions.
- Be wise in opening e-mail attachments. Spam messages that pretend to be from a known source may contain infected attached files.
- Never click on a suspicious link sent through instant messaging programs.

Backdoor.Esion

Backdoor.Esion is a deadly computer Trojan that will open a backdoor on infected computer and steal confidential information. This Trojan is found to be a component of a bot network that is currently utilized to execute a distributed denial of service attack. The attack is also known as DDOS. More