Page 26 of 34
Security Defender working sample?
PostPosted:Sun Oct 30, 2011 12:00 pm
by BachMinuetInG
Can I have Security Defender working sample? The sample I received is not working, doesn't run.
MD5: 62a79924bc89ec580716fc988b805467
Thread maintenance
PostPosted:Mon Oct 31, 2011 7:40 am
by EP_X0FF
Some post were edited:
- added titles for each unique rouge;
- huge images were replaced with small icons (not everybody happy download numerous 800x600 pictures of fakeav while browsing this thread);
- flood and offtopic from several banned members removed;
- capslocked text removed;
- some pictures moved to imageshack for better view.
Re: Security Defender working sample?
PostPosted:Mon Oct 31, 2011 8:02 am
by Xylitol
xwxproductions wrote:Can I have Security Defender working sample? The sample I received is not working, doesn't run.
MD5: 62a79924bc89ec580716fc988b805467
Sample i've posted work fine, just load the dll with rundll32.exe and the arg start
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 11:43 am
by Maxstar
Antispyware
http://www.virustotal.com/file-scan/rep ... 1320053734
Multipart archive.
EDIT::
Correction image link
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 11:57 am
by rkhunter
@Maxstar
Image no clickable.
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 1:41 pm
by Grinler
Wouldn't recommend them, but not sure I would classify Returnil products as rogues. This is the company web site:
http://www.returnilvirtualsystem.com/
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 1:49 pm
by EP_X0FF
Grinler wrote:Wouldn't recommend them
out of curiosity why?
return nil, well from marketing point of view, maybe not a best name for commercial company.
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 2:29 pm
by Grinler
Yeah, definitely not the best name, especially when they emphasize the N in Nil on their logo.
As for why I wouldn't recommend, my opinion is that their defs are lacking and there are better programs for the same $$, if not for free.
Been a while since I played with their product and just loaded up some rogues and malware released over the past 3 weeks. Detections were very very spotty, if not Nil (no pun intended), when scanning with their product.
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 3:47 pm
by Maxstar
Grinler wrote:Wouldn't recommend them, but not sure I would classify Returnil products as rogues. This is the company web site:
http://www.returnilvirtualsystem.com/
Hi,
Antispyware is not a product of the Returnil company, I use a system with Returnil the logo of that program is unintentional become with te screendump I Made.
New screendumps.
For a better view see the following links.
http://www.imgdumper.nl/uploads4/4eaec3 ... -42-46.png
http://www.imgdumper.nl/uploads4/4eaec3 ... -46-11.png
Re: Rogue antimalware (FakeAV, FakeAlert)
PostPosted:Mon Oct 31, 2011 4:35 pm
by Grinler
Ahh..that makes more sense. That first image really makes it looks like its a product by returnil. Sorry for the confusion for not looking more closely.
After looking at it more, I remember this prog from a while back. It's created by a company called AntiSpyware LLC. The company site can be found here:
http://www.antispyware.com/
I would definitely not describe this company's behavior as "clean" as they have had a history of rebranding their products under multiple names, includes using the names of other legitimate high profile security programs such as SmitFraudFix and MalwareBytes. I wrote something up about them back in 2009.
http://www.bleepingcomputer.com/forums/topic205151.html
