Shrunk Expand

  • Tag Archives computer threats
  • New KillDisk wiper varient threatens industrial control networks with Ransomware Trojan

    The TeleBots gang, which recently attacked Ukrainian banks with KillDisk malware that used Mr. Robot imagery (pictured), may now be targeting industrial control systems with a ransomware variant.

    The TeleBots gang, which recently attacked Ukrainian banks with KillDisk malware that used Mr. Robot imagery (pictured), may now be targeting industrial control systems with a ransomware variant.

    The KillDisk disk-wiper program that was used in conjunction with BlackEnergy malware to attack Ukrainian energy utilities has evolved into ransomware that may be targeting industrial-control networks.

    According to researchers at CyberX, the new variant was developed by the TeleBots cybergang, which recently emerged from the Sandworm threat group that is believed to have disrupted the Ukrainian power grid offline in December 2015 and January 2016, and allegedly compromised U.S. industrial-control systems and SCADA systems in 2014. Earlier this year, ESET researchers reported that TeleBots was a using different version of KillDisk to conduct cybersabotage attacks against the Ukrainian financial sector.

    In a blog post on Tuesday, CyberX reported that the ransomware variant is distributed via malicious Office attachments and displays a pop-up message demanding 222 Bitcoins, which is currently the equivalent of approximately $206,000. The variant’s exorbitant ransom and its link to Sandworm suggests that the group could be actively launching ransomware attacks against industrial-control networks.

    KillDisk uses a mix of RSA 1028 public key and AES shared key algorithms to encrypt local hard-drives and network-mapped folders that are shared across organizations, CyberX further reported.


  • Uroburos Rootkit – Most sophisticated 3 year old Russian Cyber Espionage Campaign

    The Continuous Growth of spyware, their existence, and the criminals who produce & spread them are increasing tremendously. It’s difficult to recognize spyware as it is becoming more complex and sophisticated with time, so is spreading most rapidly as an Internet threat.

    Recently, The security researchers have unearthed a very complex and sophisticated piece of malware that was designed to steal confidential data and has ability able to capture network traffic.

    The Researchers at the German security company G Data Software, refer the malware as Uroburos, named after an ancient symbol depicting a serpent or dragon eating its own tail, and in correspondence with a string (Ur0bUr()sGotyOu#) lurking deep in the malware’s code.

    The researchers claimed that the malware may have been active for as long as three years before being discovered and appears to have been created by Russian developers.

    Uroburos is a rootkit designed to steal data from secure facilities, has ability to take control of an infected machine, execute arbitrary commands and hide system activities, communicating primarily using peer-to-peer connections in a network it has penetrated to infect new machines within the network, manages to pass back the exfiltrated information back to attackers from infected machines and network data, the researchers explained.

    The two main components of Uroburos are – a driver and an encrypted virtual file system, used to disguise its nasty activities and to try to avoid detection. Its driver part is extremely complex and is designed to be very discrete and very difficult to identify.

    The malware uses two virtual file systems, one NTFS file system and one FAT file system, and both are stored locally on the infected system and are used as a “workspace” by the attackers, providing a storage space for third-party tools, post-exploitation tools, temporary files and binary output. The virtual file system can’t be decrypted without the presence of drivers, according to the Gdata’s analysis explained in the PDF.

    The driver is needed to decrypt the virtual file systems, to create several hooks to hide its activities, to inject libraries in the users land and to establish and manage some communication channels.

    “The development of a framework like Uroburos is a huge investment. The development team behind this malware obviously comprises highly skilled computer experts, as you can infer from the structure and the advanced design of the rootkit. We believe that the team behind Uroburos has continued working on even more advanced variants, which are still to be discovered.”

    WITH LOVE From RUSSIA: Technical Similarities with the previous malware Agent.BTZ and that the malware Uroburos checks the presence of Agent.BTZ in the system and remains inactive if Agent.BTZ is present, makes the researchers believe that it was designed by the same by the Russian intelligence services, according to G Data analysis.

    “Due to many technical details (file name, encryption keys, behavior and more details mentioned in this report), we assume that the group behind Uroburos is the same group that performed a cyberattack against the United States of America in 2008 with a malware called Agent.BTZ,” say the researchers. They also added that the reason it is meant to be of the Russian origin is, “Uroburos checks for the presence of Agent.BTZ and remains inactive if it is installed. It appears that the authors of Uroburos speak Russian (the language appears in a sample), which corroborates the relation to Agent.BTZ. Furthermore, according to public newspaper articles, this fact, the usage of Russian, also applied for the authors of Agent.BTZ.”

    In 2008, USB and Removable storage drives placed on hold in the U.S. Army facilities after the spread of Agent.BTZ worm. The USB stick contained malicious code was trying to keep on multiplying further and infected the military’s network.

    The attacks carried out with Uroburos are targeting government institutions, research institutions, intelligence agencies, nation states, research institutions or companies dealing with sensitive information as well as similar high-profile targets. The oldest drivers identified by the researchers was compiled in 2011 is the evidence that the malware was created around three years ago and was undetected.

    “The Uroburos rootkit is one of the most advanced rootkits we have ever analyzed in this Environment,” the G Data concluded.

    The team behind the development of the malware Uroburos has developed an even more sophisticated framework, which still remains undiscovered, the researchers believe. Many infection vectors are conceivable. E.g. Spear phishing, drive-by-infections, USB sticks, or social engineering attacks.

    For complete Online Latest news visit our blog

    WWW.CCREPAIRSERVICES.COM


  • NEW VIRUS – Windows Safety Master Virus Windows PC Computers

    Windows Safety Master is a rogue anti-spyware program from the Rogue.FakeVimes family of computer infections. This program is considered scareware because it displays fake scan results, fake security warnings, and does not allow you to run programs on your computer. Windows Safety Master is distributed through web sites that display a fake online virus scanner that states your computer is infected and then prompts you to download the installation file. This infection is also promoted by hacked web sites that contain exploit code that tries to install the infection on your computer without your permission or knowledge.

    When Windows Safety Master is installed it will be configured to automatically start when you login to Windows. Once started, it will pretend to scan your computer and then states that there are numerous infections present. If you attempt to remove any of these supposed infections, the program will state that you first need to purchase a license before being allowed to do so. As all of the scan results are false, please ignore any prompts to purchase the program.

    Windows Safety Master screen shot

     

    To protect itself from being removed, Windows Safety Master will also block you from running any legitimate application on your computer. It does this to prevent you from running legitimate security software that may detect it as an infection and remove it. The message that you will see when you attempt to run a program is:

    Firewall has blocked a program from accessing the Internet
    C:\Program Files\Internet Explorer\iexplore.exe
    is suspected to have infected your PC.
    This type of virus intercepts entered data and transmits them
    to a remote server.

    When you see this message please ignore it as your programs are not infected and will work normally after this infection is removed.

    While Windows Safety Master is running it will also display fake security alerts that are designed to make you think your computer has a severe security problem. Some of these warnings include:

    Error
    Trojan activity detected. System integrity at risk.
    Full system scan is highly recommended.

    Error
    System data security is at risk!
    To prevent potential PC errors, run a full system scan.

    Warning! Identity theft attempt detected
    Hidden connection IP: xx.xxx.xxx.xxx
    Target: Microsoft Corporation keys
    Your IP: 127.0.0.1

    Just like the scan results, these warnings are fake and can be ignored.

    As you can see, this infection was created for the sole reason of scaring you into purchasing it. It goes without saying that you should definitely not purchase Windows Safety Master, and if you already have, please contact your credit card company and dispute the charges stating that the program is a scam and a computer virus. To remove Windows Safety Master and other related malware, PLEASE VISIT OUR WEBSITE

    CALL – COMPUTER REPAIR at 754-234-5598 if you are infected by any of these viruses.

    www.ccrepairservices.com


  • LiveSupport Un-wanted Program

    The LiveSupport program is a small program that displays contact information for a remote support company and suggests that you download a variety of security programs to protect your computer. This program is commonly bundled with free programs that you can download off of the Internet. These free programs bundle adware programs like LiveSupport in order to generate revenue even though the program you wanted is free. Once installed, Live Support will automatically start when you login to Windows and display an icon of a remote-support person’s head on the title bar of the active Window. When you click on this head icon, you will be shown a screen that offers a remote support number, which is currently 1-855-544-6024, as well as a tab that pretends to perform a system check and recommends two of four programs. The programs it promotes are Driver Pro, Optimizer Pro, Driver Updater, and System Performance Optimizer.

     


    LiveSupport screen shot

     

    It is important to note that even though some may find this program to be misleading and annoying, it is not an actual computer infection. Rather this program is installed by free programs that did not adequately disclose that other software would be installed along with it. Therefore, it is important that you pay attention to the license agreements and installation screens when installing anything off of the Internet. If an installation screen offers you Custom or Advanced installation options, it is a good idea to select these as they will typically disclose what other 3rd party software will also be installed. Furthermore, If the license agreement or installation screens state that they are going to install a toolbar or other unwanted adware, it is advised that you cancel the install and not use the free software.

    This program does contain an uninstall entry within the Add or Remove Programs or Uninstall Programs control panel. Unfortunately, there have been many cases where the program did not fully remove itself when using the control panel or it encountered errors. For this reason you may contact Complete Computer Repair Services at 754-234-5598 or Visit our Online Website www.ccrepairservices.com


  • Complete List of Viruses up to date

    LIST OF COMPUTER VIRUSES IN CIRCULATION FROM OLDEST TO NEWEST

    Advanced Cleaner AV Protection 2011 AV Security 2012 AKM Antivirus 2010 Pro AlfaCleaner Alpha AntiVirus
    ANG Antivirus Antimalware Doctor AntiMalware  Go AntiSpyCheck 2.1 AntiSpyStorm AntiSpyware 2008
    AntiSpyware 2009 Antispyware 2010 AntiSpyware 2011 AntiSpyware Bot from 2Squared Software AntiSpywareExpert AntiSpywareMaster AntiSpyware Shield AntiSpyware Soft AntiSpywareSuite Antivermins Antivir Solution pro Antivira AV Antivirus Action Antivirus Monitor Antivirus 7 Antivirus 8 Antivirus 2008 Antivirus 2009 Antivirus 2010 Anti-virus-1 AntiVirus Gold or AntivirusGT Antivirus IS Antivirus Live Antivirus Master Antivirus .NET Antivirus Pro 2009 Antivirus Pro 2010 Antivirus Scan Antivirus Soft Antivirus Studio 2010 Antivirus Suite Antivirus System PRO Antivirus XP 2008 Antivirus XP 2010 AV Antivirus Suite Avatod Antispyware 8.0 AVG Antivirus 2011 AV Security Suite Awola Best Malware Protection BestsellerAntivirus, Browser Defender ByteDefender also known as ByteDefender Security 2010 CleanThis Cloud Protection ContraVirus Control Center Cyber Security Core Security Data Protection Defense Center Desktop Security 2010 Digital Security Disk Defrag Disk Doctor Doctor Antivirus Doctor Antivirus 2008 Dr Guard DriveCleaner EasySpywareCleaner EasyFix Tools eco AntiVirus Errorsafe, Error Expert ErrorSmart, ErrorFix Essential Cleaner Fast Windows Antivirus 2011 Flu Shot 4 Green Antivirus 2009 HDD Fix HDD Plus HDD Rescue HDD Scan IE Antivirus IE Antivirus 3.2 IEDefender InfeSto Internet Antivirus InstallShield Internet Antivirus Pro Internet Antivirus 2011 Internet Defender 2011 Internet Security 2010 Internet Security Essentials KVMSecure Live PC Care Live Security Suite Mac Defender Mac Protector MacSweeper MalwareAlarm Malware Bell 3.2 MalwareCrus Malware Defender Malware Defense MaxAntiSpy Memory Fixer MS AntiSpyware 2009 MS Antivirus Microsoft Anti Malware MS Removal Tool MS Removal Tool My Security Engine My Security Shield My Security Wall MxOne Antivirus Navashield Netcom3 Cleaner Paladin Antivirus Palladium Pro PAL Spyware Remover PC Antispy PC AntiSpyWare 2010 PC Clean Pro PC-Doctor PC Scan and Sweep PC Privacy Cleaner PCPrivacy Tools PCSecureSystem PerfectCleaner Perfect Defender 2009 Perfect Optimizer PersonalAntiSpy Free Personal Antivirus Personal Internet Security 2011 Personal Security Personal Shield Pro PC Antispyware PC Defender Antivirus Privacy Center Privacy Protection Protection Center PSGuard Quick Defragmenter Rapid AntiVirus Real AntiVirus, RegAlilve Reggenie Antivirus Registry Great Registry Patrol Registry Defender Registry Winner Reg tool also Regclean RegWork Safety Alerter 2006 Safety Center or Security Center SafetyKeeper SaliarAR ScanAngryAgainAntivirus SecureFighter SecurePCCleaner SecureVeteran Security Defender Security Master AV Security Protection Security Scan 2009 Security Shield Security Solution 2011 Security Suite Platinum Security Tool Security Toolbar 7.1 Security Essentials 2010 SiteAdware Smart Antivirus 2009 Smart Engine Smart HDD Smart security Soft Soldier Spy Away SpyAxe SpyCrush Spydawn SpyErase SpyGuarder SpyHeal SpyHeals VirusHeal Spylocked SpyMarshal SpyRid SpySheriff PestTrap BraveSentry SpyTrooper SpySpotter Spy Tool SpywareBot SpywareSTOP Spyware Cleaner or Spyware BlasterSpywareGuard 2008 Spyware Protect 2009 Spyware Protect 2009 SpywareQuake SpywareSheriff Spyware Stormer Spyware X-terminator SpywareStrike Spyware Striker Pro SpyWiper SysGuard spyware NO Sysinternals Antivirus System Antivirus 2008 SystemArmor System Defender System Defragmenter System fix SystemDoctor or Spyware Doctor System Live Protect System Security Rogue Antivirus System Tool 2011 System Tools System Restore TheSpyBot

    SVCHOST.exe Virus ThinkPoint Total Secure 2009 Total Win 7 Security Total Win Vista Security Total Win XP Security TrustedAntivirus UltimateCleaner Ultra Defragger VirusHeat Virus Locker VirusProtectPro AntiVirGear VirusRanger VirusRemover2008 VirusRemover2009 Virus Response Lab 2009 VirusTrigger Vista Antimalware 2011 Vista Antispyware 2010 Vista Antispyware 2011 Vista Antivirus 2008 Vista Home Security 2011 Vista Internet Security 2010 Vista Security 2011 Vista Security 2012 Vista Smart Security 2010 Volcano Security Suite W32.Blaster.Worm Win7 Antispyware 2011 Win 7 Antivirus 2010 Win Antispyware Center Win 7 Home Security 2011 WinAntiVirus Pro 2006 WinDefender Win Defrag Windows 7 Recovery Windows Anticrashes Utility Windows Antidanger Center Windows Attention Utility Windows Cleaning Tool Windows Efficiency Magnifier Windows Emergency System Windows Passport Utility Windows Police Pro Windows Power Expansion Windows Privacy Agent Windows Processes Organizer Windows Protection Suite Windows Recovery Windows Remedy Windows Repair Windows Restore Windows Scan Windows Shield Center Windows Secure Web Patch Windows Steady Work Windows Support System Windows Tasks Optimizer Windows Threats Removing Windows Tool Windows Tweaking Utility Windows Utility Tool Windows Vista Recovery Windows Wise Protection Windows XP Recovery
    WinFixer Win HDD WinHound Winpc Antivirus Winpc Defender WinSpywareProtect WinWeb Security 2008 Wireshark Antivirus WorldAntiSpy XP AntiMalware XP AntiSpyware 2009 XP AntiSpyware 2010 XP AntiSpyware 2012 XP Antivirus 2010 XP Antivirus 2012 XP Antivirus Pro 2010 XP Defender Pro XP Guardian XP Home Security 2011 XP Internet Security 2010 XP Security 2012 XP Security Tool XP-Shield XJR Antivirus Your Protection Your PC Protector Zinaps AntiSpyware 2008 Security solution 2011 Advanced Antivirus Advanced Antivirus 2008 Advanced XP Defender Advanced XP Fixer AdvancedAntivirus AdvancedAntivirus 2008 AdvancedXPDefender AdvancedXPFixer Adware Delete 2.0 Adware Deluxe AlertSpy Anti –pro-scan Anti Spy Check Anti virus 360
    AntiMalware Guard AntiMalwareGuard antimalware-pro-scan AntiMalwareShield AntiSpy Check AntiSpyBoss AntiSpyControl AntiSpyGolden AntiSpyKit AntiSpyMaster AntispySpider AntiSpyStorm AntiSpyStorm2008 Antispyware 2008 Antispyware 2008 XP Antispyware PRO XP Antispyware Suite Antispyware2008 Antispyware2008XP Anti-spyware-2009 AntiSpywareApp AntiSpywareBot AntiSpywareControl AntiSpywareDeluxe Antispywareexpert Antispyware-free-scanner AntiSpywareMaster AntispywareProXP AntiSpywareShield AntiSpywareUpdates ProtejaseuDrive Prt3ctionactiv3scan Prtectionactivescan PSGuard PureSafetyHere.com PyroAntiSpy RaptorDefence Razespyware-RAZESPYWARE.NET Real AntiSpyware Real Antivirus RealAV RealAV RegClean 2008 Registry Doctor Registry Doctor 2008 Registry Great RegistryCare RegistryCleanerXP SegistryCleanFixer RegistryDefender RegistryDoctor 2008 Repair Registry Pro RepairRegistry2008 SafeBrowseNow.com SafePcTool SaferScan ScanSpywarev3.8 SchijfBewaker SearchAndDestroy SecureExpertCleaner SecurePCCleaner SecurityMaster AV Securityscannersite SemErros SlimShield tied with Winhound Spyware Remover Smartantivirus2009v2 Smart-antivirus2009v2 buy Smartantivirus-2009v2buy Smartantivirus2009v2-buy Smartantivirusv2 Smart Fortress 2012 AntispywareXp2009 AntiSpyZone Antivermins Antivir gear Antivir 2008Win Antivir64 AntiVirGear AntiVirProtect AntiVirus.net Antivirus 2008 Antivirus 2008 XP Antivirus 2009 Antivirus 2010 Antivirus Gold AntiVirus Lab 2009 Antivirus Master Antivirus Pro 2009 Antivirus Security Antivirus XP 2008 AntiVirus2008 Antivirus2008Pro Antivirus 2008XP Antivirus2009 AntivirusDoc AntivirusForAll Antivirusfulldefence AntivirusGold AntivirusGT AntivirusMaster AntivirusPro 2009 Antivirussecurity-solution AntivirusXP2008 AntiVirXP08 ANTIWORM 2008 Aprotectionhelp AS-pro-xp-download AVDefender 2011 AV Master AVproscan Avproscan AVsecurity suite AVSystemCare Awola BestsellerAntivirus BraveSentry BugDokter BugsDestroyer Centod SpyAway SpyAxe SpyBurner SpyCrush SpyGuard SpyGuarder SpyHeal SpyKillerPro SpyLocked SpyMaxx SpyOnThis Spy-Rid SpySheriff SpySheriff SpyShield SpySnipe Spyware Annihilator Pro SpyWare Bomber Spyware Destructor Spyware Remover Spyware Scanner 2008
    Spyware Scrapper SpywareBomb SpywareDestructor Spywarefighter SpywareIsolator SpywareNo SpywarePro SpywareQuake SpywareQuake 2.4 Spyware-quickscan-2008 SPYwareRemover SpywareScanner2008
    SpywareSecure SpywareStop SpywareSweeperPro SpyWatchE StopingSpy SuperSpywareKiller SwiftCleaner SysKontroller System Antivirus System Antivirus 2008 System doctor System Integrity Scan Wizard System Live Protect SystemAntivirus 2008 Windows Antivirus Rampart  Windows Private Shield  Windows Pro Safety Windows Internet Booster  SystemAntivirus2008 CleanerMaster Windows Pro Scanner Homeland Security Clerk of Cours 17th Judicial Branch Police FBI Federal Government local judicial crime CrisystecSentry Win 8 Security System Windows Safety Series Windows Secure Workstation Windows Anti-Malware Patch Windows Virtual Security  Windows Antivirus Release CryptDrive 22Find.com FBI Cybercrime Division AVASoft Professional Antivirus Urausy FBI Disk Antivirus Professional Vista Internet Security 2013 Windows Web Commander DangerousVirus Search.certified-toolbar.com Smart Security Security Defender Vista Anti-Virus 2013 Vista Anti-Spyware 2013 Vista Total Security 2013 Windows Interactive Security DataHealer Win 7 Defender 2013 System Progressive Protection Windows Virtual Firewall  File Recovery  Windows Premium Defender  Windows Web Combat ACCDFISA Protection Program DioCleaner DisableSpyware Windows Profound Security  Windows Expert Series Windows Virtual Angel  Windows Profound Security  FBI MonkeyPak Ransomware Windows Virus Hunter Disk Antivirus Pro System Care Antivirus iON Internet Security Department of Justice Windows Proprietary Advisor Windows Custom Management  Windows Privacy Extension Windows Pro Defence DiscErrorFree Diskretter DisqudurProtection Doctor Adware Windows Premium Console  Windows Advanced Toolkit  Windows Proactive Safety  Windows Maintenance Guard  Doctor Antivirus 2008 XP Security 2013 FBI Anti-Piracy Warning Win Server Defender Win 7 Defender XP Defender Vista Defender FBI Online Agent Complete an Offer infection DoctorAdwarePro CouponDropDown Adware PC Defender Plus  Win 7 Antivirus Pro 2013 Micorsoft Essential Security Pro 2013 File Restore Vista Defender Xp  DefenderDoctorAntivirus2008 Windows Interactive Safety Windows Ultimate Safeguard  Windows Antivirus Machine  Windows Ultra-Antivirus  Windows Active Guard  Windows Security System DoctorVaccine Dr.AntiSpy DriveCleaner DriveCleaner 2006 eAntivirusPro EasySprinter ErrClean ErrorDigger ErrorDoctor 2008 Windows Security Renewal Windows Home Patron ErrorKiller ErrorProtector Errorsafe ErrorSmart Festplattencleaner Files Secure Windows Instant Scanner Windows PC Aid  Windows Safety Wizard  Windows TurnKey Console Files Secure 2.2 Vista Home Security 2013 Win 7 Anti-Virus 2013 Win 7 Anti-Spyware 2013 Win 7 Total Security 2013 Win 7 Internet Security 2013 Windows Malware Firewall Live Security Platinum Filterprogram Win 7 Home Security 2013 XP Anti-Virus 2013 XP Anti-Spyware 2013 XP Total Security 2013  XP Internet Security 2013  XP Home Security 2013 Freeonlinescanner9 Gktxaspm Toolbar HardDiskVakt Drivesweeper IE Antivirus IE Antivirus 3.2 IEAntiSpyware IEAntiVirus 3.2 IEAntivirus 3.3 IEAntivirus 3.4 IEDefender InfeStop InstantSafePage.com internet antivirus internet antiviruspro InternetSecurityDeluxe Internet Security 2010 SystemDefender SystemDoctor 2006 SystemErrorFixer SystemGuard SystemSecurity SystemTool TheSpyBot Total Antivirus Total Antivirus 3.11 Total Secure 2009-https://www.total- secure2009.com TotalAntivirus Trace Sweeper TrustedAntivirus TrustedProtection Ultimate Antivirus 2008 Ultimate Antivirus 2008 Ultimate Fixer 2007 UltimateAntivirus2008 UltimateCleaner UltimateCleaner 2007 Ultimatefixer2007 UltraAV Unigray VIPAntiSpyware VirusEffaceur Virusgarde VirusHeal VirusHeat 4.4 VirusIsolator Viruslabs2009 VirusLocker VirusProtect Pro VirusRanger VirusRemover2008 Virusschlacht Vista Antivirus 2008 VistaAntivirus 2008 Vista Security 2011 Vitae Antivirus Vitae Antivirus 2008 WebSpyShield Win Kvm Secure LastDefender LiveKill LongLifePC MacroAV Magicantispy Malware Bell 3.2 Malware Crush Malware Protection MalwareAlarm MalwareBell MalwareBot MalwareBurn MalwarePatrol Pro MalwarePatrolPro MalwarePro MalwareProtector 2008
    MalwareProtector2008 MalwareScanner MalwareWar MalwareWiped MalWarrior MalWarrior 2008 MasterAntivirus MaxAntiSpy Menace Rescue Micro Antivirus 2009 MicroAntivirus2009 MS antispyware 2009. MS Antivirus MS Antivirus MS Antivirus 2008 msantispyware msantivirus 2009 MSAntivirus2008 MSantivirus-xp MS Removal Tool MSx Antivirus My Security Shield NadadeVirus nano antivirus Neospace Internet Security NoWayVirus NowFixPc.com Online-security-systems PC Protection Center 2008 PC-AntispyWinantispyware 2007 WinAntispyware 2008 WinAntiVir WinAntiVirus its companion WinAntiSpyware 2005 WinAntiVirus Pro WinAntiVirus Pro 2006 Winantivirus pro 2007 WinAntivirusPro 3.7 WinDefender 2008 WinDefender2008 Windefender2009 Windows Antivirus Windows Antivirus 2008 WinFixer WinFixMaster Winifixer WinPerformance WinProtector 3.8 Winprotector 3.8 winprotector 3.8 Winreanimator winsecureav WinSecureDisc WinSpyControl WinSpyKiller WinSpywareProtect WinX Security Center WinXDefender Win-xp-antivir-hqscanner Winxp-antivir-on-line-scan Winxprotector WistaAntivirus WorldAntiSpy XLG Security Center XLGuarder XP Antispyware 2009 XP Antivirus 2008 XP Internet Security XP Protector 2009 XP SecurityCenter XP Total Security 2011 XP2008-protect XPAntivirus XPAntivirus 2009 XPAntivirus2008 XPAntivirus2009 Xpburnerpro PCClean Pro PC-Cleaner PCCleaner 2008 PC-Cleaner 2008 PCCleanPro PC-cleanpro.com PCHealthKeeper PCPrivacyCleaner PCSecureSystem PCSegura PCSweeperPro PCTotalDefender PCTurboPro PcVirusLess perfect defender PersonalAntiSpy Free Pestcapture Pest-Patrol PestSweeper Power AntiVirus 2009 Power Antivirus 2009 Privacy Warrior PrivacyProtector PrivacyRedeemer PrivacyWatcher ProAntiSpy ProtectingTool Protectnotice XPCleaner Win 7 Security Cleaner Pro Spamhaus Ransomware XPCleanerPro XPert Antivirus XPert Antivirus Enterprise XP-Guard XPonlinescanner XPonlinescanner9 XPprivacypro XP-protections XPprotectionsoftware XPprotector XPrepairpro XPSecurityCenter XPshield XP-Shield XP-shield XP-vista XP-vista-download Xscanner.malwarealarm Xscanner.malwarealarms Xscanner.shredderscan Xscanner.shredder-scan Xscanner.shredder-scanner Xscanner.spyshredderscanner  Xscanner.xmalwarealarm Xscanner.xspy-shredder Xspy-shredder Xspyware Xsremover YourPrivacyGuard Zinaps Anti-Spyware FBI Moneypak Ransomware  the Everything on your computer has been fully encrypted Ransomware Antivirus System Mandiant U.S.A Cyber Security Serious Organised Crime Agency (SOCA) SweetPacks Toolbar and SweetIM Toolbar Attentive Antivirus Remove Live Security Professional Your computer has been locked Qvo6.com ICE Cyber Crime Center System Doctor 2014 United States Courts Computer Crime and Intellectual Property Section S.M.A.R.T. Repair Smitfraud SpamBlockerUtility Spy Guarder Spy Trooper Crypto Locker Windows Premium Shield Windows Prime Booster Windows Virtual Protector Windows Accelerator Pro  Smart Guard Protection Windows Activity Booster Windows Efficiency Console

     

    CALL – COMPUTER REPAIR at 754-234-5598 if you are infected by any of these viruses.

    www.ccrepairservices.com


  • Prison Locker Virus Upcoming in 2014

    Ransomware is one of the most blatant and obvious criminal’s money making schemes out there. Ransomware malware was mostly known by the people when Cryptolocker comes into play. At the time when readers were getting aware of ransomware, Cryptolocker threat had touched the peak and other money motivated cyber criminals have started developing their own Cryptolocker versions.

    Two hackers going by the name of ‘gyx’ and ‘Porphyry’ (admin of maldev.net hacking forum) are advertizing a new ramsomware malware tool-kit called “Prison Locker” on various hacking forums with tutorials.

    They have developed the Prison Locker a.k.a Power Locker ramsomware toolkit in C/C++ programming language, proving a GUI version with customizable features for customers.

    The Ransomware is using BlowFish encryption to encrypt all available files on the victim’s hard disk and shared drives except .exe, .dll, .sys, other system files.

    During encryption it will generate unique BlowFish key for each file and then encrypts the keys further with RSA-2048 encryption and will send victim’s system information back to the command-and-control center of the attacker.

    As the developer mention in a Pastebin post, the Command-and-control center allows an attacker to set the ramsomware warning time duration, ransom amount, payment mode and also allow decrypting the files on the victim system after payment received.

    The addition features added to Prison Locker:

    • The malware is able to detect Virtual Machine, Sandbox mode, and debugging environments.
    • It Will disable Windows key & Escape key to prevent unwanted user actions.
    • Malware can startup in both regular boot mode and safe boot under HKCU.
    • Kills taskmgr, regedit, cmd, explorer, and msconfig. processes to prevent unwanted user actions.

    If you get infected with this virus call Computer Repair Services at 754-234-5598

    www.ccrepairservices.com


  • PASSWORD REMOVAL Unlock your Laptop or Computer

    Is your Laptop or desktop computer locked? Does it have a password which you forgot?

    Password removal and unlock service for all type of computers & Laptops Pc & Mac.

    BIOS HARD DRIVE MAC OSX OR WINDOWS PASSWORD REVOVAL AND UNLOCK SERVICE

    Please check other services offered below

    Screen Replacements
    Windows Wont Install
    Windows 7 Upgrades
    Data Transfer
    Virus Removal
    Data Recovery
    Password Recovery
    Blue Screen Of Death

    Black Screen

    LCD LED OR CCFL Screen Repair Sale Installation & Replacement-Plus Many more services

    Dell Sony Acer Hp Compaq Ibm Lenovo Asus Thinkpad Toshiba Samsung Mini Apple Mac Netbook Notebook Macbook

     CALL  – 754-234-5598    

    www.ccrepairservices.com/Password Help


  • Windows Premium Shield

    Windows Premium Shield is a scareware program from the Rogue.FakeVimes family of computer infections. This program is considered scareware because it displays false scan results, fake security warnings, and does not allow you to access your legitimate Windows applications. Windows Premium Shield is distributed through web sites that display a fake online virus scanner that states your computer is infected and then prompts you to download the installation file. This infection is also promoted by hacked web sites that contain exploit code that tries to install the infection on your computer without your permission or knowledge.

    Once Windows Premium Shield is installed it will be configured to automatically start when you login to Windows. Once started, it will pretend to scan your computer and then states that there are numerous infections present. If you attempt to remove any of these supposed infections, the program will state that you first need to purchase a license before being allowed to do so. As all of the scan results are false, please ignore any prompts to purchase the program.

     

    Windows Premium Shield screen shot
    Windows Premium Shield screen shot

    To protect itself from being removed, Windows Premium Shield will also block you from running any legitimate application on your computer. It does this to prevent you from running legitimate security software that may detect it as an infection and remove it. The message that you will see when you attempt to run a program is:

    Firewall has blocked a program from accessing the Internet
    C:\Program Files\Internet Explorer\iexplore.exe
    is suspected to have infected your PC.
    This type of virus intercepts entered data and transmits them
    to a remote server.

    When you see this message please ignore it as your programs are not infected and will work normally after this infection is removed.

    While Windows Premium Shield is running it will also display fake security alerts that are designed to make you think your computer has a severe security problem. Some of these warnings include:

    Error
    Trojan activity detected. System integrity at risk.
    Full system scan is highly recommended.

    Error
    System data security is at risk!
    To prevent potential PC errors, run a full system scan.

    Just like the scan results, these warnings are fake and can be ignored.

    Without a doubt, this infection was created for the sole reason of scaring you into purchasing it. It goes without saying that you should definitely not purchase Windows Premium Shield, and if you already have, please contact your credit card company and dispute the charges stating that the program is a scam and a computer virus.

    To remove Windows Premium Shield and other related malware, Please call Complete Computer Repair Services at 754-234-5598


  • Windows Accelerator Pro Virus

    Windows Accelerator Pro is a rogue anti-spyware program from the Rogue.FakeVimes family of computer infections. This program is considered scareware because it displays false scan results, fake security warnings, and does not allow you to access your legitimate Windows applications. Windows Accelerator Pro is distributed through web sites that display a fake online virus scanner that states your computer is infected and then prompts you to download the installation file. This infection is also promoted by hacked web sites that contain exploit code that tries to install the infection on your computer without your permission or knowledge.

    Once Windows Accelerator Pro is installed it will be configured to automatically start when you login to Windows. Once started, it will pretend to scan your computer and then states that there are numerous infections present. If you attempt to remove any of these supposed infections, the program will state that you first need to purchase a license before being allowed to do so. As all of the scan results are false, please ignore any prompts to purchase the program.

    To protect itself from being removed, Windows Accelerator Pro will also block you from running any legitimate application on your computer. It does this to prevent you from running legitimate security software that may detect it as an infection and remove it. The message that you will see when you attempt to run a program is:

    Firewall has blocked a program from accessing the Internet
    C:\Program Files\Internet Explorer\iexplore.exe
    is suspected to have infected your PC.
    This type of virus intercepts entered data and transmits them
    to a remote server.

    When you see this message please ignore it as your programs are not infected and will work normally after this infection is removed.

    While Windows Accelerator Pro is running it will also display fake security alerts that are designed to make you think your computer has a severe security problem. Some of these warnings include:

    Error
    Trojan activity detected. System integrity at risk.
    Full system scan is highly recommended.

    Error
    System data security is at risk!
    To prevent potential PC errors, run a full system scan.

    Just like the scan results, these warnings are fake and can be ignored.

    Complete Computer Repair Services can effectively remove this virus from your system wihthout any loss of data. Call 754-234-5598