Web2Secure: Web Security Blog

We are non-funded group of security enthusiast who contributes and updates to community with latest security treats. Use and handle whatever links shared within website could be harmful to your systems with own risks. Feel free to use the contents for commercial or non-commercial purposes. We're very appreciating if using our useful information’s to your website by referring back to this original website. Donation or clicking on ads is most welcome to continue maintains costs for this website.

Tuesday, March 23, 2010

Blackhat SEO with BitDefender Trojan.FakeAlert.5, CleanUp Antivirus

BitDefender's False Alarm signature that released on last week, causing several Windows and BitDefender self files as infected as "Trojan.FakeAlert.5". Unfortunately, bad guys use this events to spread their malicious code by SEO-ing keywords related to "Trojan.FakeAlert.5".Without suprise, this SEO successfully gain first link of first page once user key-in the keyword from Google Search.

Screen shot showing the rogue antivirus.

The installer file (hash:a25c5edccb402b9f9421279b93b6229a) gain low detection according to VT

User need to pay if want to cleanup the malicious that displayed in rouge antivirus.

Related malicious link:

hxxp://whatchusay.com/presentation/trojan.fakealert.5.html

hxxp://www1.hir-tosafemypcnow.in/?uid=290&pid=3&ttl=4164d639601

hxxp://www1.nemo-cureforthispc.in/?p=p52dcWptaF%2FCj8bYbnOCdVik12qYVp%2FZatrau4FdlJ%2FJnsWYe3lvWqyopHaVXpqalWZgbWholVPVpJHaotahlFeob1zZytell3FfmqGgnXaHo83LqG1TnaJ1ll6aXmGXXpGamV9oY2iL08ifb5ytqKhuZ2jYpNuUmJ%2Bcm56dkpDRnV7TppLXyJKplZ6kyc92l6JflaWkc6zQotbJlm2VpFiZ0Z2doW26n9LOxJ9leJfQxqSll6atYm1amabRaNHLpZFqWpOl1GjDoW3MU8TR02yYo5%2BiyJRpWJWmpHOVqaWeU8XToWucpW9exZrSa5fZjNXKxJp0WKrYnpRraG1rZm5obW%2BHodeYbmFfamtqlmOWZWaMkMahsIo%3D

0 comments:

Subscribe to: Post Comments (Atom)