How Fake Antivirus writers try to fool you

I went looking around and saw this:

Homeantivirusfake

As you can see they try to make this site look like it is real. It also make the user at first glance become relaxed because of all PC Magazines and site stickers as I call them.   You also get to see a list of  latest virus alerts and threats, all of this is done to make you feel like this is a real Antivirus site.   They also have the box look like Windows Vista and Windows 7 look and feel to it.  Everything you see here makes you more relaxed and almost gets you to buy the software but wait, I want to know more about this company.   No way to call or who they are?  So I download the file call “Installer2.exe” and AVG pops up with:

Homeantivirusfake1

Not even AVG had the chance to say or do anything about this before Microsoft throws up this warning about it being a “Trojandownloader:win32/fakerean.gen!c”, I have got to admit Microsoft has been doing a little better job of identifying some of the threats.  Sites that all have this type of theme to them are:

  • homeanti-virus2010.com
  • homeanti-virus-2010.com
  • home-antivirus-2010.com
  • home-anti-virus2010.com
  • home-anti-virus-2010.com
  • home-antivirus2010.com
  • homeantivirus-2010.com
  • homeantivirus2010.com
  • homeav2010.com
  • home-av2010.com
  • home-av-2010.com
  • pcsecurity09.com
  • pcsecurity-09.com
  • pc-security09.com

as you can see they have made a URL theme for all the domains.   But all of these are located at IP:

  • 72.52.210.130
  • 72.52.210.131
  • 72.52.210.132
  • 72.52.210.133

As you can tell this can be considered a campaign by some individual to try to get money from innocent people.   So your best bet is to not go there and if you have it:

RECOMMEND : [ad#SUPERAntiSpyware]