Rogue Antimalware (FakeAV, 2012 year) - Page 44

Topic locked

Re: Rogue antimalware (FakeAV, FakeAlert)

#16470 by Maxstar
Tue Nov 06, 2012 9:35 am

PC Defender Plus

https://www.virustotal.com/file/60829f4 ... /analysis/

Attachments

sample_05-11-2012_1943.zip

PW=infected
(817.03 KiB) Downloaded 130 times

Malware Removal Instructions

Username

Maxstar

Posts

88

Joined

Wed Jan 26, 2011 10:20 am

Re: Rogue antimalware (FakeAV, FakeAlert)

#16477 by Xylitol
Tue Nov 06, 2012 11:55 pm

Hmm PC Defender Plus...

Code: Select all

authenticatesyahoostyle.info - 91.242.217.86
spoilsdecelerators.biz - 91.242.217.85
secure.9billing.com - 91.242.217.24

---
Micorsoft Essential Security Pro 2013
https://www.virustotal.com/file/275952e ... 352246161/

Attachments

MESP.zip

infected
(408.81 KiB) Downloaded 116 times

Registration Problems and FAQ - Rules For Malware Requests

Username

Xylitol

Rank

Global Moderator

Posts

1706

Joined

Sat Apr 10, 2010 5:54 pm

Location

Seireitei, Soul Society

Contact

Re: Rogue antimalware (FakeAV, FakeAlert)

#16540 by rough_spear
Sat Nov 10, 2012 11:58 am

Hi All, :D

Here is Security Shield

File - 333bLnL1H4KaHc.exe

SHA256: c2509fc10445890764f58aa059e116782b7640d51e40ad897789ca7b32b21cba
SHA1: cca76665dffb26b8ad853ba3b439df83fcd0c756
MD5: 00ed599479522b9011426aafc9f1a477

VT link - https://www.virustotal.com/file/c2509fc ... /analysis/

File - 01e04111.exe

SHA256: 0033ba8fa5f9b9b7a836f6d5c80c8ce33f25ea46df13d354faa5363451dde208
SHA1: 8fb2d282a42d6ea1dea62c06f38bbf2917f320a6
MD5: 9bd999f604badc0ae9bc74e26904515d

VT link - https://www.virustotal.com/file/0033ba8 ... 352548486/

Regards,

rough_spear. ;)

Attachments

Fakeav.7z

password - infected.
(631.54 KiB) Downloaded 98 times

Username

rough_spear

Posts

163

Joined

Mon Oct 18, 2010 4:46 pm

Location

India

Re: Rogue antimalware (FakeAV, FakeAlert)

#16596 by Win32:Virut
Tue Nov 13, 2012 5:52 pm

Hello,

another 2 samples of XP/Vista/Win 7 Antispyware/Antivirus Pro 2013

File attached.

FakeRean.7z

Password is "infected" without quotes
(231.6 KiB) Downloaded 78 times

EDIT:

5 another samples

5 samples.7z

Password is "infected" without quotes
(233.87 KiB) Downloaded 83 times

Last edited by Win32:Virut on Tue Nov 13, 2012 8:26 pm, edited 1 time in total.

Username

Win32:Virut

Posts

324

Joined

Sat Jun 02, 2012 2:22 pm

Re: Rogue antimalware (FakeAV, FakeAlert)

#16608 by Win32:Virut
Wed Nov 14, 2012 11:36 am

142 samples of System Progressive Protection

http://www.sendspace.com/file/mfg66b

Username

Win32:Virut

Posts

324

Joined

Sat Jun 02, 2012 2:22 pm

Re: Rogue antimalware (FakeAV, FakeAlert)

#16660 by hx1997
Sat Nov 17, 2012 7:32 am

System Progressive Protection

MD5: 5DE95789F50CBC2AFC3B623F6B215BF4
SHA1: A8B1F287024709BA2C9DDBD078D639A155BCF211

MD5: A88BA19AF6845042D2DEAE95864DACA5
SHA1: C119DB4F57488CE42D787254F5B39E8E0F23EEE1

Attachments

System Progressive Protection.7z

infected
(1.12 MiB) Downloaded 103 times

Username

hx1997

Posts

101

Joined

Sat Apr 07, 2012 12:16 am

Re: Rogue antimalware (FakeAV, FakeAlert)

#16676 by Win32:Virut
Sat Nov 17, 2012 7:16 pm

344 samples of System Progressive Protection

344.7z.001
344.7z.002
344.7z.003
344.7z.004
344.7z.005
344.7z.006
344.7z.007
344.7z.008
344.7z.009

Password is "infected" without quotes.

Username

Win32:Virut

Posts

324

Joined

Sat Jun 02, 2012 2:22 pm

Rogue:Win32/FakeRean

#16752 by Win32:Virut
Wed Nov 21, 2012 4:53 pm

SHA256: 38c014ba6e85caf7bc8be0922dd8f34380a45a964e9fab1c3678a97dbe65afcb
SHA1: 0a1203793e77122e4f208f920a42188f84bf74ed
MD5: 80398049ce39ae416e2f3a14f5022082
File size: 235.8 KB ( 241503 bytes )
File name: nyw.exe
File type: Win32 EXE
Tags: peexe
Detection ratio: 27 / 43
Analysis date: 2012-11-21 13:43:55 UTC ( 3 godziny, 4 minuty ago )
https://www.virustotal.com/file/38c014b ... /analysis/

Thanks in advance.

Username

Win32:Virut

Posts

324

Joined

Sat Jun 02, 2012 2:22 pm