It appears there is no depth that Zango will go … following up on a recent story about “Heath Ledger fans get a dose of malware” which leads off with “The death of actor Heath Ledger has prompted cybercriminals to trick unsuspecting fans into downloading malware“ So I thought I’d Google around and see what […]
Comments Off on How low can Zango go?
Filed under: Uncategorized
These people sure are inventive … however there is no such thing as a “Macromedia Video ActiveX Error“ (Image edited for display purposes) Users that fall for this bogus prompt will get infected by “webmovies-b” (Win32/Statik) that I mentioned in a previous post.
Comments Off on Bogus Macromedia Video ActiveX Error
Filed under: Uncategorized
The following site advertises quite a few “Free Celebrities Movies” … but that’s not what you get … (Image edited for display purposes) As you can see there are several culprits involved … porntubq(dot)com detected as: HTML/TrojanClicker.Agent.Fthen “64.28.183.26” loads the ActiveX to “helpticket(dot)net – you can see the VirusTotal results here. helpticket(dot)net is hosted at: […]
Comments Off on More bogus Free Celebrities Movies
Filed under: Uncategorized
It appears that the “Rbusiness Network’ (aka: IFrame Dollars Group) are back in full swing … after a short lull while moving their site to new loocations due to heavy media coverage. Clicking Continue (not recommended) results in the following … Notice the detection is not the typical “codec” Zlob/DNSChanger … below is another example […]
Comments Off on Another set of nasty Trojans
Filed under: Uncategorized
It took a while … but it looks like Limelight finally sent the WinFixer Group packing … Back in December I wrote several posts about Limelight hosting malicious content for the WinFixer Group, after which I contacted them and only received a standard reply – “we are looking into it …”. 208.111.129.28 download.cdn.winsoftware.com208.111.129.28 sec.storageguardsoft.com208.111.129.28 software.protectdownloads.com208.111.129.28 […]
Comments Off on Limelight Networks kicks WinFixer to the curb
Filed under: Uncategorized
The MVPS HOSTS file was recently updated [JAN-20-2008]http://www.mvps.org/winhelp2002/hosts.htm Download: hosts.zip (146 kb)http://www.mvps.org/winhelp2002/hosts.zip How To: Download and Extract the HOSTS filehttp://www.mvps.org/winhelp2002/hosts2.htm HOSTS File – Frequently Asked Questionshttp://www.mvps.org/winhelp2002/hostsfaq.htm Note: the “text” version makes a great resource for determining possible culprits … (640 kb)http://www.mvps.org/winhelp2002/hosts.txt Sign up for HOSTS file update noticeshttp://www.mvps.org/winhelp2002/updates.htm
Comments Off on MVPS HOSTS File Update [JAN-20-2008]
Filed under: Uncategorized
Seems the malware creeps are playing on the popularity of “PornTube” an adult type version of YouTube … Notice the title of the page … and there are quite a few using the same title. Which is also a “Google.Warning” site … Yikes! … accessing this site you not only get a typical (bogus) “you […]
2 Comments »
Filed under: Uncategorized
I’ve uploaded a fresh copy of the HOSTS file due to making a correction to one of the entries … www.interactivebrands.com Corrected entry: 127.0.0.1 www.interactivebrands.com Not really that critical, but I wanted to advise anyone that happened to notice …
4 Comments »
Filed under: Uncategorized
The MVPS HOSTS file was recently updated [01-03-08]http://www.mvps.org/winhelp2002/hosts.htm Download: hosts.zip (146 kb)http://www.mvps.org/winhelp2002/hosts.zip How To: Download and Extract the HOSTS filehttp://www.mvps.org/winhelp2002/hosts2.htm HOSTS File – Frequently Asked Questionshttp://www.mvps.org/winhelp2002/hostsfaq.htm Note: the “text” version makes a great resource for determining possible culprits … (640 kb)http://www.mvps.org/winhelp2002/hosts.txt Sign up for HOSTS file update noticeshttp://www.mvps.org/winhelp2002/updates.htm
2 Comments »
Filed under: Uncategorized