Archive for October, 2008

Google exposes ClickBank as malicious

ClickBank is a 3rd Party Affiliate Program that is home to many, many Rogue/Suspect Anti-Spyware Products, so it come as no surprise that the Google Safebrowser Diagnostic produces the following report … Yikes … I’ve mentioned before about their “lack of policing their affiliates” and this report sure bears this out …

How is Google going to explain this?

I’ve been running a few sites thru Google’s Safebrowsing Diagnostic … oh look what I found … Seems their advertising branch DoubleClick may have been a little shady lately? Then I ran “” also and found similar results … ouch! ” What happened when Google visited this site? Of the 2922 pages we tested on the site over […]

Another bogus Adobe Flash codec

Landing on the following adult site … once a visitor clicks any of the links they are presented with the following bogus pop-up “Error #37” … I’ll say one thing they sure are inventive … Clicking on the embedded link above redirects to the below site … VirusTotal results here Both of these sites are […]

Another Exploit opens Windows Contacts

The other day I mentioned I found an exploit that tries to infect Windows and also attempts to open Windows Contacts (Address Book) … well it looks like I found another one … yikes! Same attempt but from a different source this time … I previously contacted Microsoft about this, however when they went to […]

Is Security overwhelmed by Malware?

Lately it sure seems so … almost weekly we see reports of the amount of sites infected, or the amount of malware samples submitted that just boggles the mind. I know in my own little part of the world … the amount of malicious sites that come and go is stagering to say the least. […]

MVPS HOSTS File Update October-23-2008

The MVPS HOSTS file was recently updated [October-23-2008] Download: (142 kb) How To: Download and Extract the HOSTS file HOSTS File – Frequently Asked Questions Note: the “text” version makes a great resource for determining possible culprits … (603 kb) Sign up for HOSTS file update notices

Another bogus Streaming Video Playback Error

Landing on the following site the visitor is presented with the following bogus error … The actual download (Trojan.Zlob/Codec) comes from “vidsdevices(dot)com” which is hosted at Internet Service Provider UATelecom][ –] which is a safe-haven for a whole host of nasties. Norton Safe Web reports Viruses   Severity: High  95 instances found. … gee only […]

Exploit opens Windows Contacts

Landing on “google-stats(dot)cn” (courtesy of MalwareDomainList) redirects to the following site … which pops-up the generic Microsoft warning (Remote Data Services Data Control) … however this time and this is a first for me is a prompt to open Vista’s Windows Contacts … Naturally any time you see the “Remote Data Services Data Control“ prompt […]

Google/DoubleClick shuts down Falk eSolutions

This was Doubleclick’s European (Germany) division which it purchased in early 2006. I could find no news on this … however no longer returns a valid DNS … [Whois info] Other News: I wonder how long it will be before we start seeing other 3rd party advertisers failing due to the financial crisis? It sure […]

Innovative Marketing dies a slow death

I reported on Sep 8, 2008 that the sites “” and “” were no longer resolving … I’ve been watching the other associated domains and they are now no longer reachable … it looks like the WinFixer Gang has decided to let their older domains die a slow death. The list of sites is too […]