Friday, January 15, 2010



Thanks to Patrick Jordan of SunbeltSoftware for the valuable info.

DefendAPc is yet new cloned rogue security application from WiniGuard rogue Family.

Screenshot of DefendAPc application

The rogue has dropped installing rootkit and has replaced it with SERH (Search Engine Results Hijacking Click Fraud) component. This component is used for Search Engine Results Hijacking.

Screenshot of the browser hijacked by the SERH component.

Bharath M N

blog comments powered by Disqus