Paul's Tech Talk

Today I saw something I wanted to point out:

Which if you click on any of these links it will lead you to something like this:

Then if you feel this out you will be directed to this:

Now if no red flags have produced anything yet, because I am sure one why would this software that can be free for anyone who wants to use Google, Yahoo, or Bing want to pay for this type of service. I can only fathom what they are going to do with your Credit card information or for that matter your Email address, could this be a way to harvest people's email address or credit cards.

[ad]Some of the products they are trying to have you pay on a yearly basis are:

[intlink id="3884" type="post"]SuperAntiSpyware[/intlink]

[intlink id="4305" type="post"]AVG 8.5[/intlink]

[intlink id="2205" type="page"]Zonealarm

Clamwin

Kespersky

Nod32

These are just a few, here are the sites that are associated doing the same thing:

antivirus-2009-version.com

anti-virus-link.org

anti-virus-101.com

vlc-software.com

popupremoval.com

personal-antivirus.org

open-office-software.com

open-office-pro.com

open-office-download.org

open-office-2009.com

musicmembersarea.com

itunes-muzic.com

anti-virus-removal.info

2009-edition.org

itunes-8.com

2009-anti-virus-download.com

wire2009.com

share-free.info

pdf-platinum.info

org-eng.info

muzic-share.com

get-flash-player-10.com

full-edition.info

free-antivirus2009.com

anti-virus-solution.org

anti-virus-1.org

antivirus-center.org

8-anti-virus-download.com

2009-version.info

freedownloadzone.com

free-antivirus-software.org

As you can see this is a long list but all these are using Domainsbyproxy.com and we don't know who it is in reality. It is always best to download through the vender of the product you are looking for then to download from some server you don't know anything about.
[ad#SUPERAntiSpyware]

Post a Comment | in

Free,

fraud,

pay,

Wednesday

Aug262009

List of Fake Antivirus Sites for Aug 27, 2009

Author:

Paul Sylvester | Date:

Wednesday, August 26, 2009 at 10:25PM |

[ad#Google Adlinks]

It seems they are not doing alot today but I will update when necessary.

[intlink id="3607" type="post"]Personal Antivirus Scareware Sites[/intlink]:

check-my-pc-antivirus.com

[intlink id="4217" type="post"]Internet Antivirus Pro Scareware[/intlink]

cuplift.info

[intlink id="3977" type="post"]Rogue Antivirus scareware sites[/intlink]:

safetyscanner.net

winprotectionsuite.com

winprotection-suite.com

myprotectionshield.com

[ad#Scarewaresitesrecommend]

[rating:4/5]

[ad#Scarewaresitesrecommend1]

[ad#SUPERAntiSpyware]

Post a Comment | in

Internet Antivir,

Internet Antivirus Pro,

Personal Antivirus,

Scareware,

fraud,

Tuesday

Aug042009

List of Rogue Antivirus sites August 4, 2009

Author:

Paul Sylvester | Date:

Tuesday, August 4, 2009 at 2:36PM |

Looks like they have more Fake Antivirus sites up and running so I thought I would pass them along:

basicsystemscanner.com ([intlink id="3607" type="post"]Personal Antivirus Scareware[/intlink])

checkmypcantivirus.com ([intlink id="3607" type="post"]Personal Antivirus Scareware[/intlink])

onlineproantivirusscanner.com ([intlink id="3607" type="post"]Personal Antivirus Scareware[/intlink])

online-pro-antivirus-scan.com ([intlink id="3607" type="post"]Personal Antivirus Scareware[/intlink])

secure-pro.cn (Fake Windows Security Messages)

bodyscanguide.com (Fake Windows Security Messages)

bestsecuredpcs.com (Fake Windows Security Messages)

somesecuritypc.com (Rogue Exploit Antivirus Scanner)

scanwebtech.com (Rogue Exploit Antivirus Scanner)

bisquva.cn (Rogue Antivirus)

pc-anti-spyware-20-10.com (Like [intlink id="3977" type="post"]Home Antivirus 2010[/intlink])

pcantispyware2010.com(Like [intlink id="3977" type="post"]Home Antivirus 2010[/intlink])

spywaredisplay.com (Rogue AntiSpyware)

spywaremonitoring.com (Rogue AntiSpyware)

spywareremovalhelp.net (Rogue AntiSpyware)

antispywarefile.com (Rogue AntiSpyware)

These sites try to get you to install software or get you to buy pay for some fake software. If you keep getting popups from these guys then you have some kind Trojan acting like it is a real Antivirus or Antispyware. I recommend getting rid of those annoying little warnings and redirects. Some of these are actually Web Browser redirects, others try to scare you into downloading or buying their product. You should never download or buy anything from a site you don't know anything about.

Some common tricks are Popups, warnings, Toolbar shield, and also a fake web page scanning screen.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

Scareware,

popups,

Friday

Jul312009

Scareware List for July 31, 2009

Author:

Paul Sylvester | Date:

Friday, July 31, 2009 at 10:26AM |

Looks like they went out and made a quite a few domains lately so Here they are:

antivirus-live-pro.org ([intlink id="1837" type="post"]Antivirus Pro Scareware[/intlink])

internetantivirusplus.com (Fake Antivirus)

mybestantivirusplus.com

securesoftwarebill.com (Rogue System Security Antivirus)

yourantimalware.com

totalsurfguard.com

systemsecuritysupport.com

stabilitysuite.com

powersystemstability.com

onlinecentersupport.net

identitysecuritysuite.com

etotalsecurity.com

defenseinteractive.com

defenseinteractive.com

antispyinteractive.com

antispyavailable.com

protectionsystem.org(Like [intlink id="1837" type="post"]Antivirus Pro Scareware[/intlink])

realbestantivirusplus.com

Remember these sites are active and are scaring people into buying or installing there product, you should not go to these sites. As you can see the Scareware Writers and domains have been busy this week and have made these to use in this weekend I can bet on that. These sites are trying to [intlink id="3607" type="post"]scare you into buying there product or installing there fake antivirus software[/intlink]. If you are constantly inundated with pop up windows warning you have a virus or trojan and showing you a load of viruses or trojans on your screen. They will probably ask you to install software or buy the product that would be a big waste of time and could possibly install even more malware and also could loose money. You should never download any software from sites you don't know or buy from sites that you've never heard from.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

2008,

Pro,

Wednesday

Jul292009

Some more Malware Sites July 29, 2009

Author:

Paul Sylvester | Date:

Wednesday, July 29, 2009 at 11:34AM |

I've done my usual looking around and found some Rogue Antivirus sites that I call scareware:

tb2car.com

rundaqimao.com

shuncheng2car.com

dakbesy.cn

befynru.cn

scanworldwideweb.com

All these sites are scaring users into installing software that does nothing but bothers the users into registering this software. You should not visit these sites are active right now and are spreading the malware and getting people to install malware. If you have installed this scareware software, I would recommend removing with really Antimalware software and not pay for these fake products.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don't have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Post a Comment | in

How-to,

Malware,

Remove,

Scareware,

Sites,

rogue,

them

Saturday

Dec062008

trojan.zlob removal tricks!!

Author:

Paul Sylvester | Date:

Saturday, December 6, 2008 at 8:20AM |

[ad#ad2-right]

Aliases:
Trojan-Downloader.Win32.Zlob.qyl (Kaspersky)
Trojan-Downloader.Win32.Zlob.qzs (Kaspersky)
Trojan-Downloader.Win32.Zlob.qzn (Kaspersky)
Trojan.Zlob.CPP (BitDefender)
Puper (McAfee)
SystemDefender (Symantec)

Trojan:Win32/Zlob.G is a component of Win32/Zlob that downloads rogue security programs, adware, and additional Win32/Zlob components.

[Via Windows Live OneCare]

[ad#ad2-left]This one just popped up today on my radar it seems to be a very low threat on everyone's radar according to my sources say "Trojan.Zlob.G is a Trojan horse that may download and execute remote files and redirect the Internet Explorer home page and search page." So to remove this little Trojan you would want to download one an Anti-virus and firewall. Once you install the software the program should fix the problem for you. This one seems to be really easy to fix. So Please read my post on how to better protect your self if you want to prevent this in the future.

Post a Comment | in

2008,

Aliases,

Anti,

Anti-Virus,

Better,

Bitdefender,

Direct,

Down,

Downloader,

Downloads,

EA,

Easy,

Event,

GE,

KY,

Left,

Radar,

Read,

Real,

Red,

The,

Trojan,

Via,

internet explorer home page,

WIndows,

Wal,

Win,

Window,

Windows,

Windows Live,

Windows Vista,

Zlob,

ad2,

adware,

bit,

com,

component,

cpp,

day,

download,

end,

everyone,

file,

future,

home,

internet explorer,

man,

mcafee,

net,

page,

post,

problem,

program,

puper,

removal,

right,

rogue,

say,

search,

search page,

security programs,

self,

source,

threat,

today,

tricks,

troj,

trojan downloader win32,

trojan downloader win32 zlob,

trojan horse,

trojan win32,

virus removal,

war,

wind

Friday

Nov282008

Not so, Antivirus2008

Author:

Paul Sylvester | Date:

Friday, November 28, 2008 at 8:18AM |

[ad#ad2-left]On F-secure blog they talk about this rogue antispyware.

OK, so let's say the user (by some stroke of luckless chance, or courtesy of a trojan downloader) ends up with the demo installer of Rogue:W32/VirusRemover2008.C on their hands and it runs
[via F-Secure]

According to them, they have many different version of this rogue antispyware. They have de, dk, es, fr, it, no, nl, and no, which are all attempting for you to buy this no so Virusremover2008 software. They talk about how it tells you have a 9 infected viruses and that you need to remove them, but in truth, they use a text file to create this lie. Check out all the details for further information.

Post a Comment | in

2008,

AT&T,

ATI,

Anti,

Antivirusremover2008,

Blog,

Court,

Demo,

F-Secure,

Hands,

IE,

Info,

Install,

Left,

Run,

Runs,

Software,

Spy,

Trojan,

US,

Use,

Via,

VirusRemover,

ad2,

antispyware,

antivirus,

buy,

chance,

check,

demo installer,

download,

file,

form,

infect,

information,

installer,

lie,

luck,

man,

need,

rogue,

ru,

say,

stroke,

talk,

text,

troj,

trojan downloader,

truth,

user,

version,

viruses,

w32,

war

Thursday

Nov062008

Fake Wordpress update 2.6.4 steals data!

Author:

Paul Sylvester | Date:

Thursday, November 6, 2008 at 2:02PM |