CoreGuard Antivirus 2009

CoreGuard Antivirus 2009

Thanks to S!Ri

CoreGuard Antivirus 2009 is the new rogue security application.

You can find CoreGuard Antivirus 2009 removal instructions here. More information of this rogue here

Bharath M N

New rogues

New rogues

PCAntiMalware and PCPrivacyDefender are the two new recycled rogue security applications.

PCAntiMalware is a clone of AntiMalwareSuite

PCAntiMalware removal instructions here

PCPrivacyDefender is a clone of Cleaner2009

As usual these guys have left behind some traces in their code

Sites involved:

91.212.41.236 Pcantimalware com
91.212.41.236 Pc-privacydefender com

Stay away from this group.

Bharath M N

Extra Antivirus

Extra Antivirus

A pair of new rogues applications named as Extra Antivirus has been seen in the wild.

More info here

Bharath M N

Comment Spam

Comment Spam

Recently there was sudden rush of comments all trying to promote Search-and-Destroy application (not the Legitimate Spybot Search & Destroy application)



F-Secure has more details about the previous comment spam from this gang here.

Bharath M N

WiniBlueSoft

WiniBlueSoft

WiniBlueSoft is a new rogue security application. This is a clone of WiniGuard rogue security application.



WiniBlueSoft removal instructions here

Bharath M N

AV Antispyware

AV Antispyware

AV Antispyware is yet another rogue from WinSpywareProtect rogue family.

More info here

Bharath M N

HomeAntivirus 2009

HomeAntivirus 2009

Thanks to Grinler

HomeAntivirus 2009 is a new rogue security application and a clone of WinReanimator

This Fiamily of rogue security applocations are usually pused through Trojan-Downloader.braviax infection.


HomeAntivirus 2009 removal instructions here.

Bharath M N

Couple of New Rogues

Couple of New Rogues

P Antispyware 09 and Antivirus'09 are the two new rogue security applications.

More info on P Antispyware 09 here

More info on Antivirus'09 here

Bharath M N

Do it yourself

Do it yourself

Lately we saw a new rogue campaign which is really a good example of clonning/renaming technique used by the scammers.  The campaign allows one to purchase a empty project and customize it with their own Graphics/Name.

S!Ri has posted about the do it yourself rogue campaign in detail here.

Bharath M N

Conficker in Action

Conficker in Action

Conficker now back in action. Kaspersky Lab has couple of intresting posts here and here.

You can find the removal instructions here.

You can also try the stand alone scanners from Sunbelt or f-secure to remove Conficker/Downadup/Kido variants from infected PC's.

Stay Safe!

Bharath M N

Virus Sweeper

Virus Sweeper

Thanks to S!Ri

Virus Sweeper is the new rogue security application from Virusdoctor rogue family.



This rogue family continues to host its installers on Google Code.You can find the removal instructions here.

Bharath M N

WinPC Antivirus

WinPC Antivirus

WinPC Antivirus is a new rogue security application. More info here

WinPC Antivirus removal instructions here

Bharath M N

System Protector

System Protector

System Protector is a new rogue security application. This one is a clone of Spy Protector rogue security application.

System Protector

System Protector Home page

System Protector removal instructions here

Bharath M N