Category: Virus

List of Rogue Antivirus sites August 4, 2009

Paul

personalantivirus3

Looks like they have more Fake Antivirus sites up and running so I thought I would pass them along:

  • basicsystemscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • checkmypcantivirus.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • onlineproantivirusscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • online-pro-antivirus-scan.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])

  • secure-pro.cn (Fake Windows Security Messages)

  • bodyscanguide.com (Fake Windows Security Messages)

  • bestsecuredpcs.com (Fake Windows Security Messages)

  • somesecuritypc.com (Rogue Exploit Antivirus Scanner)

  • scanwebtech.com (Rogue Exploit Antivirus Scanner)

  • bisquva.cn (Rogue Antivirus)

  • pc-anti-spyware-20-10.com (Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])

  • pcantispyware2010.com(Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])

  • spywaredisplay.com (Rogue AntiSpyware)

  • spywaremonitoring.com (Rogue AntiSpyware)

  • spywareremovalhelp.net (Rogue AntiSpyware)

  • antispywarefile.com (Rogue AntiSpyware)

These sites try to get you to install software or get you to buy pay for some fake software.   If you keep getting popups from these guys then you have some kind Trojan acting like it is a real Antivirus or Antispyware.  I recommend getting rid of those annoying little warnings and redirects.   Some of these are actually Web Browser redirects, others try to scare you into downloading or buying their product.   You should never download or buy anything from a site you don’t know anything about.

Some common tricks are Popups, warnings, Toolbar shield, and also a fake web page scanning screen.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Scareware List for July 31, 2009

Paul

Antivirussystempro1

Looks like they went out and made a quite a few domains lately so Here they are:

  • antivirus-live-pro.org ([intlink id=”1837″ type=”post”]Antivirus Pro Scareware[/intlink])

  • internetantivirusplus.com (Fake Antivirus)

  • mybestantivirusplus.com

  • securesoftwarebill.com (Rogue System Security Antivirus)

  • yourantimalware.com

  • totalsurfguard.com

  • systemsecuritysupport.com

  • stabilitysuite.com

  • powersystemstability.com

  • onlinecentersupport.net

  • identitysecuritysuite.com

  • etotalsecurity.com

  • defenseinteractive.com

  • defenseinteractive.com

  • antispyinteractive.com

  • antispyavailable.com

  • protectionsystem.org(Like [intlink id=”1837″ type=”post”]Antivirus Pro Scareware[/intlink])

  • realbestantivirusplus.com

Remember these sites are active and are scaring people into buying or installing there product, you should not go to these sites. As you can see the Scareware Writers and domains have been busy this week and have made these to use in this weekend I can bet on that.   These sites are trying to [intlink id=”3607″ type=”post”]scare you into buying there product or installing there fake antivirus software[/intlink].    If you are constantly inundated with pop up windows warning you have a virus or trojan and showing you a load of viruses or trojans on your screen. They will probably ask you to install software or buy the product that would be a big waste of time and could possibly install even more malware and also could loose money. You should never download any software from sites you don’t know or buy from sites that you’ve never heard from.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Malware sites for July 30, 2009

Paul

I just got some news about a few sites:

personalantivirus3

  • husger.info (Scareware, Rogue Antivirus)

  • antivirus-quickscanv5.com ([intlink id=”3607″ type=”post”]Personal Antivirus[/intlink])

  • safe-online-scanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus[/intlink])

These sites are either claiming you have a virus and are considered either URL Redirects or URL Hijackers.   If these sites keep appearing on your web browsing maybe it is time to do a complete system scan and get that spyware off your system.   Some of these Rogue Antiviruses  may even have a security adviser claiming random sites are infected with viruses or Trojans and claiming they are unsafe.  These sites are either wanting you to isntall the software or trying to sell you the fake product, which will do nothing but harm your system.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Some more Malware Sites July 29, 2009

Paul

mailware-live-pro-scanv1-1

I’ve done my usual looking around and found some Rogue Antivirus sites that I call scareware:

  • tb2car.com

  • rundaqimao.com

  • shuncheng2car.com

  • dakbesy.cn

  • befynru.cn

  • scanworldwideweb.com

All these sites are scaring users into installing software that does nothing but bothers the users into registering this software. You should not visit these sites are active right now and are spreading the malware and getting people to install malware. If you have installed this scareware software, I would recommend removing with really Antimalware software and not pay for these fake products.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Computer Security : important caveat not all websites are safe

Paul

Everyday we’ve seen people get infections on there systems and most don’t understand that they’ve been duped and have installed the software themselves.

In this article we will talk about how most people will willingly install these Trojans and virus themselves for several different reasons.

ineluctable truth about Human Nature

These malware authors know all about how people think.    It usually happens when people think they are seeing something provocative and something you can watch in your private homes.   There are several different ways to do this:

  • News stories —  Alas this is always being used to spread malware.   For example Erin Andrews Peephole malware.

  • Fake photos files — This is also a very common ploy, to make people think it is a Photo but in reality it is an Executable.  Example : MichealJackson.JPG.EXE

  • Fake Codecs — You visit what you think is a popular movie and it says you need to install a codec.  This is another way for people to get infected with a Trojan, or a Virus.   For example : [intlink id=”3739″ type=”post”]Harry Potter and the Half Blood Prince malware[/intlink].

  • Fake PDF’s —  There have been known exploits in the Adobe Reader and Adobe where a malware author can take control over the pc and install whatever they want into the system.  Example : Attackers Target New Adobe Flash/Reader Flaw

As you can see these are just a few but have been used in the past so it doesn’t mean they won’t be used in the future.   The Malware authors will also use Social sites to infect your pc, Here are a few common ones:

  • You get a message that states “[intlink id=”3662″ type=”post”]Look at this[/intlink]” Most of the twitter users were very curious and had not seen alot of malware on twitter and was very trusting, so they would willingly go to these sites not expecting to get a trojan or virus.

  • You get a message in face book “You look just awesome in this video.”  You try to go to the URL and it says You have to update your flash player.   This is another common way to get the user to install a trojan or virus and think it is a legitimate update.

  • Twitter Spambots —  You get a message about a Registry cleaner but it is a rogue Antivurs.  You down load this software and without thinking run it and your infected.   Twitter and facebook users are to relax to see just how dangerous links can be.

Most or all can be used as email also so you don’t have to be on any site to recieved an attached file with something similar to that you see up there.   You must never download anything you know nothing about and if in doubt scan it with several virus scanners by uploading it to Virustotal that is a good site to see if some well known vendors consider this program or file to be a virus. These were just a few, I am sure I have missed several and will probably hear about this from the users. I encourage people to discuss this and talk about other ways this can happen.

I recommend:
[ad#SUPERAntiSpyware]