PCBugSquad

Though I have not been posting to the blog as much as I would have liked to when I started it, I have been keeping track of whats been goin on at some of the reputable security sites.  This evening I ran across an interesting article at BleepingComputer about a new rogue named Anti-Virus-1.  This particular rogue seems like a nasty one and uses some pretty tricky tactics to make you think it’s legit.  Definitely an interesting read:

How to remove Anti-virus-1 (Removal Guide)

and

Learning how to remove Anti-virus-1 teaches us some new tricks

Trace Sweeper is a rogue privacy software that when run on your computer displays fake exaggerated results that cannot be removed unless you first purchase the software. The program is also set to run automatically when your computer starts, which will cause your computer to operate slower and create pop-ups about how you should register [...]

The WORM_KOOBFACE.D worm is malware that spreads itself through the online social site called Facebook.  When a user becomes infected with this worm, it will install a copy of itself as C:\Windows\fbtre6.exe and then further download the following files: C:\5465465465463.BAT C:\Windows\fmark2.dat When fbtre6.exe is run it will display the following message in Windows: Error installing [...]

The WORM_SOHANAD.DR worm is once that propogates as an attachment to email messages that are spammed by other malware or users.  It is also possible, that this worm can be installed via other malware that download and install it on your computer.  When infected the following files will be created on your computer: C:\Windows\dc.exe C:\Windows\SVIQ.EXE [...]

The TROJ_POPHOT.O Trojan is installed form other malware downloaded off of the Internet. When run, this Trojan will install the following files on your computer:

* C:\Windows\System32\inf\scsys16_080725.dll
* C:\Windows\System32\inf\sppdcrs080725.scr
* C:\Windows\System32\inf\svchosd.exe
* C:\Windows\dcbdcatys32_080725a.dll
* C:\Windows\system\sgcxcxxaspf080725.exe
* C:\Windows\tawisys.ini

The Proscks Trojan modifies files on the compromised computer and connects to a remote server. Once infected you will be shown pop-up advertisements on your computer.

Secure Expert Cleaner is a program that states it can make your computer secure by cleaning it of security risks. Unfortunately, this program does not live up to its name. Secure Expert Cleaner will scan your computer and list legitimate programs as risks and state that they are dangerous. Then, in order to remove them, you need to first purchase the software.

The W32.Azero.A infection is virus that infects .exe files so that when they are run they further infect other .exe files. When a .exe file is run the virus will create the following files:

A new variant of the Troj_Renos.ACO infection was discovered that installs a file called lphc3pgj0e3ct.exe into your C:WindowsSystem32folder. This infection is installed on your computer by one of the following three methods:

XLGuarder, or XLG Security Center, is a rogue anti-spyware program that displays deliberate false information about infections found on your computer. Overall, this software is a scam and should be avoided at all cost. Please use the automated or manual removal instructions below to remove this infection.