Whois record for oksave9.co.cc
Registrant Contact:
Name: Jong Sung, Kim
Address: 864-2, Janghangdong, Ilsan
City: Goyang, Gyeonggi-do
Country: South Korea
packupdate107_195.exe
Result: 7/41 (17.07%)
MD5: 08a2ad37c6920b640615d7a1d6c3bbec
VirusTotal
Anubis Report
ThreatExpert Report
Rogueware Page: hxxp://www1.oksave9.co.cc
Result: 2/17 (12 %)
Domain Hash: 9b83d635ed7bf5be568e9cbae3b97935
URLVoid
Note: this rogueware page triggers a “scan” of your computer if redirected by a search engine.
This rogue is called Security Master AV.
Screenshot examples:
Security Master AV fake notification
Security Master AV fake scan page
When executing the file ( packupdate107_195.exe ):
Security Master AV Setup
View full post on Malware Database
Related Posts
- new rogue domain: adware-2010.com
Whois record for adware-2010.com
Registrant Contact:
Name: Domains by Proxy, Inc.
Address: 15111 N. Hayden Rd., Ste 160, PMB 353
City: Scottsdale, Arizona 85260
Country: United States
hxxp://adware-20... - new rogue domain: antisywire.com
Whois record for antisywire.com
Registrant Contact:
Name: Amora Delaco
Address: Sun street 12-45/2
City: Los Angeles
Country: United States
hxxp://antisywire.com
Result: 0/17 (0 %)
Domain Hash: 1afd7... - new rogue domain: antivirwall.com
Whois record for antivirwall.com.com
Registrant Contact:
Name: Mikle Sinders
Address: 19 avenue 876
City: Los Angele
Country: United States
hxxp://antivirwall.com
Result: 1/17 (6 %)
Domain Hash: 512... - new rogue domain: desktopsecuritysoft2010.com
Whois record for desktopsecuritysoft2010.com
Registrant Contact:
Name: Proxy Private Registration
Address: 27 Old Gloucester street
City: London WC1N 3AX
Country: United Kingdom
hxxp://desktopsecurit... - new rogue domain: makeptotect73.co.cc
If you’re looking for the latest news about Honda, you might get surprised by finding a rogueware called MySecuritySield popping up.
Some of the affected search terms:
honda recall 2010 list
hon... - new rogue domain: pcsecurityshield.com
Whois record for pcsecurityshield.com
Registrant Contact:
Name: Frischman, Arthur
Address: 601 N Congress Avenue
City: Delray Beach, Florida 33445
Country: United States
hxxp://pcsecurityshield.com
Re... - new rogue domain: antivirmore.com
Whois record for antivirmore.com
Registrant Contact:
Name: Youriy Lens
Address: 15 avenue 45-13
City: New York,NY
Country: United States
hxxp://antivirmore.com
Result: 1/17 (6 %)
Domain Hash: 361a40e6... - new rogue domain: antivirus-elite.com
Whois record for antivirus-elite.com
Registrant Contact:
Name: Domains by Proxy, Inc.
Address: 15111 N. Hayden Rd., Ste 160, PMB 353
City: Scottsdale, Arizona 85260
Country: United States
setup.exe
Re... - new rogue domain: fastcleancure47pd.co.cc
Whois record for fastcleancure47pd.co.cc
Registrant Contact:
Name: Jong Sung, Kim
Address: 864-2
City:janghangdong, Ilsan, Goyang, Gyeounggi
Country: South-Korea
setup.exe
Result: 4/41 (20.00%)
MD5: d... - new rogue domain: rise-soft.info
Whois record for rise-soft.info
Registrant Contact:
Name: Domain Admin
Address: P.O. Box 97
City: Moergestel
Country: NL (The Netherlands)
hxxp://rise-soft.info
Result: 2/19 (11 %)
Domain Hash: 89cbd9...
Posted on 07 July 2010. Tags: domain, oksave9.co.cc, rogue
