Hi, I just want to help avast! in the detection of Rogues. This is a undetected Rogue by avast! called Spyware Cease. At the moment avast! is not detecting it.
This is my shared account from MediaFire where I uploaded it (and upcoming threats relate to this topic), because it size is about 27MB. All my reports will take place here.
Information and password are included in the archive (only the executable has password).
You can also upload it to ftp.avast.com/incoming . Name the compressed file as fakeav or something similar to that. Put a readme in that stating this topic, password and your name(userrname).
Do not put live links to possible malcode out here, make them non-click-through by putting hxtp or wXw.
finjan says malicious behavior detected, the file you requested contains malicious code…
Status “suspicious” here as well: http://wepawet.iseclab.org/view.php?hash=1470bb9af7b084c93e17c4963db2fed5&t=1277556752&type=js
and consider this: htxp://jsunpack.jeek.org/dec/go?report=d7271afcf77b40d8f9fce316a1e5565511fc4f1e
Dont worry about it. The exe. file is compressed with password. So to execute the FakeAV need to be decrypted with the password provided.
Note: This link is from my MediaFire Account. So, It not malicious. The link is provided to download the zip-folder. Also, this part of my account is private and not for sharing purpose. Thanks
You are malware fighter? help this topic and me. Report all Fake antimalware here please. Thanks
Ummm! I was searching for a book online that I need for Spanish class (I am college student) and found this sites that allegedly they are selling the book that I am looking for. But the site is a FAKE AV.
Note: The problem here is only with Internet Explorer, because Crhome and Firefox is blocking the site. Also with Chrome the first site that I posted, is working fine. This is the ISBN of the book that I am searching: 1-56328-243-7
The second and third site are hosting the malware. Google the ISBN and you can see the sites.
