Scareware Rogues

Maybe it’s magic

September 10, 2008

There are a lot of rogue (fake) security programs afflicting the Internet. When a rogue is new often the first victims are few, (that will change swiftly enough), and security companies look for samples so they can add the rogue to their software’s detections. Often at this early stage one will see places touting a [...]

Read the full article →

SmartAntivirus2009 Rogue Security Program

September 6, 2008

Another rogue spreading fast. If your computer has been infected please seek assistance with removal at one of the security forums, short list in right side column. Domains on the same IP. 1. Antispyware2008b.com 2. Antivir–2008.com 3. Antivirus2008proxp.com 4. Directnameservice2008.com 5. Mediatubeforme1.com 6. Onsafepro2008.com 7. Smart-antivirus-2009-buy.com 8. Smart-antivirus-2009.com 9. Smart-antivirus-2009buy.com 10. Smart-antivirus2009-buy.com 11. Smart-antivirus2009.com 12. [...]

Read the full article →

Rogue, MS AntiVirus via ifrance.com

September 5, 2008

I was taking a look at nine4teen.com with Fiddler running. Brief lowdown of the trail: nine4teen.com Host: ferlin.ifrance.com Host: js-perso.ifrance.com Host: web.ifrance.com Host: ad.ieurop.net Host: sfttraff.com Edit: Domain Name: SFTTRAFF.COM Registrar: ESTDOMAINS, INC. Dates: Created 01-sep-2008 Updated 01-sep-2008 Expires 01-sep-2009 srv1.e-statistic.com www.Nineteen.com Host: c39.statcounter.com Host: scanner.msscanneronline.com Then BAM… Sandi blogged about her frustration with ifrance.com [...]

Read the full article →

Adobe Flash ads launch Clipboard hijack attack by Rogues

August 19, 2008

Web-based attacks continue to affect Windows, Mac and Linux users by hijacking clipboards and spreading malicious links via Adobe Flash-based banner advertising on legitimate sites. One of the rogues involved, xp-vista-update.net, is rated by McAfee as ‘Green’. Previous Certifiedbug: xpsecuritycenter Rogue Security Program New domains of rogue Antivirus XP 2008, CNN Top 10 XP Antivirus: [...]

Read the full article →

AntiSpyCheck Rogue Security Program

June 11, 2008

The latest rogue installed through the Zlob Trojan. How to remove AntiSpyCheck If you have an infected computer and would feel more comfortable being assisted by a trained malware remover helper, please start a topic at one of the forums. Short but trusted list in the right hand column. Certifiedbug: Fake Security Programs

Read the full article →

Anykindmp3 com installs Rogue Virusheat

June 6, 2008

Sunbelt Blog, screenshots here Anykindmp3 com advertises free music. Instead, what you’re going to get is a trojan downloader that installs Virusheat. This is an extremely dangerous site, because it’s so innocuous, luring people in with “free MP3s”. Expect users to get infected by typing in various keywords to search engines. Certifiedbug: VirusHeat Rogue antispyware [...]

Read the full article →

Zinaps Rogue Security Program

May 28, 2008

Not much information at this time, a couple of screenshots at the Sunbelt Blog and a few victims in the security forums seeking assistance. Sunbelt: Fresh new rogue antispyware programs

Read the full article →

KvmSecure Rogue Security Program

May 22, 2008

Bharath’s Security Blog The rogue uses Software-payment.com site for payment processing. Beware that this site is also used by many other rogue security applications for payment processing. How to remove KVMSecure http://www.bleepingcomputer.com/malware-removal/kvmsecure As always, if you have an infected computer and would feel more comfortable being assisted by a trained malware remover helper, please start [...]

Read the full article →

Victims of bucksbill.com

May 19, 2008

Going by the amount of complaints you have less chance of getting a refund from bucksbill.com than winning the lottery. Spyware Sucks, an anti spyware blog, warned about the rogue awhile back and today posted a disclaimer: Unfortunately, people are also emailing me directly because they (mistakenly) believe that I and/or this blog are associated [...]

Read the full article →

AntiSpySpider Rogue Security Program

May 13, 2008

Along with the dark side pushing cracks, warez, keygens for rogue programs (perhaps to dupe people into thinking the programs have value), there are also many untrustworthy sites offering to remove it. From the frying pan into the fire. From Bleeping Computer: This infection attempts to make it difficult to uninstall by disabling the Windows [...]

Read the full article →

← Previous Entries

Next Entries →