[BachMinuetInG]

Can I have Security Defender working sample? The sample I received is not working, doesn't run.
MD5: 62a79924bc89ec580716fc988b805467

[EP_X0FF]

Some post were edited:

- added titles for each unique rouge;
- huge images were replaced with small icons (not everybody happy download numerous 800x600 pictures of fakeav while browsing this thread);
- flood and offtopic from several banned members removed;
- capslocked text removed;
- some pictures moved to imageshack for better view.

[Xylitol]

Can I have Security Defender working sample? The sample I received is not working, doesn't run.
MD5: 62a79924bc89ec580716fc988b805467

Sample i've posted work fine, just load the dll with rundll32.exe and the arg start

[Maxstar]

Antispyware

http://www.virustotal.com/file-scan/rep ... 1320053734



Multipart archive.

EDIT::
Correction image link

[rkhunter]

@Maxstar
Image no clickable.

[Grinler]

Wouldn't recommend them, but not sure I would classify Returnil products as rogues. This is the company web site:

http://www.returnilvirtualsystem.com/

[EP_X0FF]

Wouldn't recommend them

out of curiosity why?

return nil, well from marketing point of view, maybe not a best name for commercial company.

[Grinler]

Yeah, definitely not the best name, especially when they emphasize the N in Nil on their logo.

As for why I wouldn't recommend, my opinion is that their defs are lacking and there are better programs for the same $$, if not for free.

Been a while since I played with their product and just loaded up some rogues and malware released over the past 3 weeks. Detections were very very spotty, if not Nil (no pun intended), when scanning with their product.

[Maxstar]

Wouldn't recommend them, but not sure I would classify Returnil products as rogues. This is the company web site:
http://www.returnilvirtualsystem.com/

Hi,

Antispyware is not a product of the Returnil company, I use a system with Returnil the logo of that program is unintentional become with te screendump I Made.

New screendumps.





For a better view see the following links.
http://www.imgdumper.nl/uploads4/4eaec3 ... -42-46.png
http://www.imgdumper.nl/uploads4/4eaec3 ... -46-11.png

[Grinler]

Ahh..that makes more sense. That first image really makes it looks like its a product by returnil. Sorry for the confusion for not looking more closely.

After looking at it more, I remember this prog from a while back. It's created by a company called AntiSpyware LLC. The company site can be found here:

http://www.antispyware.com/

I would definitely not describe this company's behavior as "clean" as they have had a history of rebranding their products under multiple names, includes using the names of other legitimate high profile security programs such as SmitFraudFix and MalwareBytes. I wrote something up about them back in 2009.

http://www.bleepingcomputer.com/forums/topic205151.html