August 27th, 2008 | Posted in Backdoors
“Hilton Sex Tape Shot at Hyatt” Email Threat Level: 
“Hilton Sex Tape Shot at Hyatt” Email is circulating spam that links to a scam site, ColorCoverShop.com. “Hilton Sex Tape Shot at Hyatt” Email’s site poses as a news web page, and after it loads you’ll get a popup telling you’re missing a Video ActiveX object needed to watch the “Hilton Sex Tape Shot at Hyatt” Email video.
This Video ActiveX object error reads:
The page at http://colorcovershop.com says:
Video ActiveX Object Error
Your browser cannot play this video file.
Click ‘OK’ to download and install missing Video ActiveX Object.
If you click “CANCEL” — as you should — , you’ll get another popup:
The page at http://colorcovershop.com says:
Please install new version of Video ActiveX Object.
Funny enough, you don’t have many options besides downloading this Video ActiveX Object. And if you do download this “Video ActiveX Object,” you’ll download “codec_install.exe,” which is really a Trojan.
Which will really give a hacker access to your PC.
Which is really #*($*&@*%&^$!
Let me show you how to block “Hilton Sex Tape Shot at Hyatt” Email.
Read more about “Hilton Sex Tape Shot at Hyatt” Email »
August 27th, 2008 | Posted in Backdoors, Trojans
“RE: ® Official Update 2008!” Email Threat Level:
“RE: ® Official Update 2008!” Email is circulating spam that links to a scam site, http://89.187.49.18/install.exe. That .exe extension tells you “RE: ® Official Update 2008!” Email links to a processes file, which means a program, which means –
Probably a Trojan.
“RE: ® Official Update 2008!” Email reads:
From: Microsoft XP (or Antivirus XP)
Subject: RE: ® Official Update 2008!
Free Update Windows XP,Vista
About this mailing:
You are receiving this e-mail because you subscribed to MSN Featured Offers. Microsoft respects your privacy. If you do not wish to receive this MSN Featured Offers e-mail, please click the “Unsubscribe” link below. This will not unsubscribe you from e-mail communications from third-party advertisers that may appear in MSN Feature Offers. This shall not constitute an offer by MSN. MSN shall not be responsible or liable for the advertisers’ content nor any of the goods or service advertised. Prices and item availability subject to change without notice.
©2008 Microsoft | Unsubscribe | More Newsletters | Privacy
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052
Let me show you how to block “RE: ® Official Update 2008!” Email.
Read more about “RE: ® Official Update 2008!” Email »
August 27th, 2008 | Posted in Rogue Anti Spyware
AndromedaAV Threat Level: 
AndromedaAV is a scam.
Just more fake anti-spyware, like other scamware, AndromedaAV — or AndromedaAntiVirus 2009 — runs exaggerated security scans and pops up fake warnings to trick you into buying AndromedaAV for $49.95-79.95.
You’d be better off burning your money than buying AndromedaAV.
Before you set fire to your PC after one too many AndromedaAVpopups, I’ll show you how to get rid of AndromedaAV for free.
Read more about AndromedaAV »
August 27th, 2008 | Posted in Rogue Anti Spyware
Antivirus 2008 XP Threat Level:
Antivirus 2008 XP is more fake anti-spyware; Antivirus 2008 XP is just Antivirus XP 2008 by another name. Like Antivirus XP 2008 and XP Antivirus 2008, Antivirus 2008 XP pops up fake security alerts to try and trick you into buying Antivirus 2008 XP. Antivirus 2008 XP may have downloaded itself onto your computer through a trojan, like Zlob. Antivirus 2008 XP can launch when you start up Windows, and Antivirus 2008 XP may popup tons of ads that are difficult to close.
Get rid of Antivirus 2008 XP, if only because Antivirus 2008 XP may make you want to throw your PC out the window.
Read more about Antivirus 2008 XP »
August 26th, 2008 | Posted in Browser Hijackers, Rogue Anti Spyware
Security-Scan-PC.com Threat Level:
Security-Scan-PC.com is a scam site that pimps fake antispyware software Antivirus2008. Security-Scan-PC.com runs a sham security scan, and Security-Scan-PC.com popups read:
“Dangerous files found! Your privacy is at Risk!
To prevent yourself from personal data loss, you need to install a special application to help protect your personal data from possible theft or unauthorized use.”
To prevent yourself from personal money loss, you need to block Security-Scan-PC.com, and uninstall Antivirus2008.
Read more about Security-Scan-PC.com »
August 26th, 2008 | Posted in Rogue Anti Spyware
Andromeda AntiVirus 2009 Threat Level:
Andromeda AntiVirus 2009 is a scam.
Just more fake anti-spyware, like other scamware, AndromedaAntiVirus 2009 runs exaggerated security scans and pops up fake warnings to trick you into buying Andromeda AntiVirus 2009 for $49.95-79.95.
You’d be better off burning your money than buying Andromeda AntiVirus 2009.
Before you set fire to your PC after one too many Andromeda AntiVirus 2009popups, I’ll show you how to get rid of Andromeda AntiVirus 2009 for free.
Read more about Andromeda AntiVirus 2009 »
August 26th, 2008 | Posted in Rogue Anti Spyware
SpywarePreventer Threat Level:
SpywarePreventer, AKA Spyware Preventer is a scam.
Just more fake anti-spyware, like other scamware, SpywarePreventer runs exaggerated security scans and pops up fake warnings to trick you into buying SpywarePreventer for $39.95-79.95.
You’d be better off burning your money than buying SpywarePreventer.
You can try to get a SpywarePreventer refund here, but I’d save my time. I’ll show you how to get rid of SpywarePreventer for free.
Read more about SpywarePreventer »
August 25th, 2008 | Posted in Backdoors
“Flash player: Incorrect version” popup Threat Level: 
“Flash player: Incorrect version” popup is a backdoor Trojan posing as a flash codec. You need to download “Flash player: Incorrect version” popup like you need more fake anti-spyware on your computer.
Which is fitting, because that’s what “Flash player: Incorrect version” popup does: if you download it, all the sudden you’ll find out now you “need” to download and/or buy scamware like Files Secure 2.2, VirusHeat, or VirusProtect Pro to remove threats that don’t really exist. “Flash player: Incorrect version” popup popups read:
“Flash player: Incorrect version
Your browser cannot display this site. You need to download new version flash player Object to play this video file.”
My advice if you get this “Flash player: Incorrect version” popup popup? Click CANCEL CANCEL CANCEL until your break your mouse.
Read more about “Flash player: Incorrect version” popup »
August 25th, 2008 | Posted in Rogue Anti Spyware
AntiSpyHunter Threat Level:
AntiSpyHunter, AKA Anti SpyHunter, is more fake anti-spyware. Like other scamware, AntiSpyHunter is tries to get cred by working legitimate anti-spyware software into its name (i.e., SpyHunter). AntiSpyHunter also runs the usual exaggerated security scans and pops up fake warnings to trick you into buying AntiSpyHunter for $39.95-79.95. AntiSpyHunter might have installed itself onto your PC through a Trojan, like Zlob, or through a rogue site.
Before AntiSpyHunter popups make you throw your PC into a bubble bath, I’ll show you how to get rid of AntiSpyHunter for free.
Read more about AntiSpyHunter »
August 22nd, 2008 | Posted in Backdoors
DVBN756512.zip Threat Level: 
DVBN756512.zip is a Trojan attached to a scam email that pretends to be an invoice from Fedex.
This DVBN756512.zip email reads:
From: John Barker (tengyun@qbchina.com)
Subject: Tracking N 2894898381
Unfortunately we were not able to deliver postal package you sent on July the 25 in time
because the recipients address is not correct.
Please print out the invoice copy attached and collect the package at our office.
Your FEDEX
www.fedex.com
Attachment: DVBN756512.zip 49.9 KB
If you open this DVBN756512.zip attachment, you’ll probably launch a Trojan that’ll give a hacker control over your computer.
I’m sure identity theft sounds like a fun weekend, but if you’d rather spend your weekend otherwise — church? Family? Strip club? — I can show you how to get rid of DVBN756512.zip for free.
Read more about DVBN756512.zip »
