Friday, September 28, 2007

Safetysettings? Are you system settings safe enough???

Safetysettings.com

A new malicious site that on the loose. If the system infected by Trojan.Win32.Puper trojan then the system homepage will be redirected to safetysettings.com

Screenshot of Safetysettings.com website

The website usually promotes four new scam software applications. All the applications advertised on this system is flagged as rogue security applications. The Trojan.Win32.Puper trojan also installs a Toolbar(Security Toolbar 7.1 which is visible in the screenshot) which has two buttons. These buttons redirect you to another malicious website apowerbar.com.

The apowerbar.com website further advertises more rogue security applications.

Avoid this phony website at all cost......


Bharath M N

Wednesday, September 19, 2007

MalwareMonitor.com

MalwareMonitor.com/SpywareLocker.com

Two cloned websites that are busy in distributing clones of SpySheriff application. SpySheriff is a well known Rogue security application.

Screenshot MalwareMonitor application




MalwareMonitor.com registration details:

Registrar: ESTDOMAINS, INC.

Whois Server: whois.estdomains.com

Referral URL: http://www.estdomains.com/


Expiration Date: 2008-08-13

Creation Date: 2007-08-13

Last Update Date: 2007-08-23




Screenshot Spywarelocker application


spywarelocker.com registration details:


Registrar: ESTDOMAINS, INC.

Whois Server: whois.estdomains.com

Referral URL: http://www.estdomains.com/

Expiration Date: 2008-08-13

Creation Date: 2007-08-13

Last Update Date: 2007-08-23



Avoid both the applications at all cost............


Bharath M N

Tuesday, September 18, 2007

Thecleanersystem.com

The installer available on the site is a suspicious looking security applciation...rogue in my list....but have to see how it distributes in future...

The site is also connected with malwarealarm.com and spy-shredder.com.

Site Registration Details:

Registrar: ESTDOMAINS, INC.
Whois Server: whois.estdomains.com
Referral URL: http://www.estdomains.com/

Expiration Date: 2008-08-07
Creation Date: 2007-08-07
Last Update Date: 2007-08-24

ScreenShot of the System Cleaner and Hardware Doctor





VirusTotal scan Result: 4/32 (12.5%)


eSafe 7.0.15.0 2007.09.17 -1891492438
Ikarus T3.1.1.12 2007.09.18 Virus.Win32.Alman.a
Sunbelt 2.2.907.0 2007.09.15 VIPRE.Suspicious
Webwasher-Gateway 6.0.1 2007.09.18 Win32.Malware.gen (suspicious)

Think before installing choice is your's......but avoid it at all cost


Bharath M N