Tuesday, August 11, 2009

Rogue AV: Winifighter

winfighter

We've talked about digital clutter on a previous post.

But this one's a real bugger. Winifighter creates heaps of junk binary files in the %systemroot% and %system% directories. The filenames, the contents, and filesize are all random. The names, however, contains bits and pieces taken from malware names such as the following:

backdoor
not a virus
spy
trojan
virus
worm


This one also, spoofs the Windows Security Center to give itself that authentic feel and advises unsuspecting users to register Winifighter.

winifighter_windowssecuritycentre

Ad of course we also have those ever so genuinely adorable warning messages:

fakealert1
fakealert2

As always, I advise everyone to steer clear of these Rogue AVs.

No comments:

Post a Comment