CastleCops® Slew Of New Rogue Anti-Spyware Sites

Need help? Click here to register for free! Absolutely zero advertisements on this site!

	Donation/Premium

	Donations. Become Premium Today!

	Security Central

	· Home · PIRT/Fried Phish · MIRT · SIRT · Deutsch · Wiki · Newsletter · O16/ActiveX · CLSID List · Contest2007 · Downloads · Feedback (send) · Forums · HijackThis · Hijacktrend · LSPs · My Downloads · O18 · O20 · O21 · O22 · O23 · O9 · Premium · Private Messages · Proxomitron · Reviews · Search · StartupList · Stories Archive · Submit News · WsIRT · Your Account · Acceptable Use Policy

Forum FAQ

Usergroups

Profile

Select FavForums

Slew Of New Rogue Anti-Spyware Sites

All -> FavForums -> Rogue Anti-Spyware

[del.icio.us!] [digg it!] [reddit!]

View previous topic :: View next topic

Author

Message

TeMerc

Captain
Captain

Premium Member

Joined: Apr 24, 2004
Posts: 557

Posted: Thu Dec 15, 2005 12:34 am Post subject: Slew Of New Rogue Anti-Spyware Sites

Sunbelt blog has uncovered a few new sites pushing rogue anti-spyware tools, such as SpyAxe and Winfixer, both known around the security forums and listed on Rogue Suspect Anti-Spyware list among many others.

Read links below for details:

It's a security scam party, and this is one party you don't want to crash

Quote:

Patrick and Adam found a bunch more of these �security scam� sites.

IPs below, feel free to put these in your block lists.

Newly found sites

Mattie Muirhead
Florence, AL US
wm @ needupdate[dot]com
85.255.115.174 dns404[dot]net
85.255.115.130 needupdate[dot]com
85.255.115.173 yoursystemupdate[dot]com
85.255.115.172 systemwarning[dot]com

Mag Dicacik
Praha, CZ
mag @ sexpicporn[dot]com
85.255.115.172 securitywarnings[dot]net

Sites already known

Henn Preson
Stockholm, SE
henn @ teeeen[dot]com

85.255.115.130 Warningmessage[dot]com
85.255.115.131 syserrors[dot]com

Mag Dicacik
Praha, CZ
mag @ sexpicporn[dot]com

85.255.115.131 notfound404[dot]com
85.255.115.132 Updateyoursystem[dot]com
85.255.115.170 securityerrors[dot]com
85.255.115.179 hdnsservidce[dot]com
85.255.115.180 downldboost[dot]com

Full Read @ Sunbelt Blog

============================================
Wondering how people get to these bogus security sites and download junk like SpyAxe?

Our spyware researchers have been investigating Vcodec.com. This is a site that has a program called �VCodec v3.05b is new generation multimedia compressor/decompressor which registers into the Windows collection of multimedia drivers...�

Full Read @ SunbeltBlog

==========================================
============================================
And another:
SunbeltBlog

_________________
Ultimate Countermeasures Page
Malware Advisor Blog

Paul

CastleCops Founder

Joined: Feb 22, 2002
Posts: 27351

Posted: Thu Dec 15, 2005 1:40 am Post subject:

Thanks for the update Temerc. _________________ Paul Laudanski - http://www.laudanski.com http://www.linkedin.com/pub/1/49a/17b

	All -> FavForums -> Rogue Anti-Spyware	All times are GMT
Page 1 of 1

You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


	2002-2008 � Computer Cops LLC dba CastleCops®. All rights reserved. Acceptable Use Policy. Use signifies your agreement. 161ppm 0.546s (0.298s) Making cybercriminals unhappy since 2002*