Rootscan.info? More Rogue Security Software on the horizon?



To follow up the last post about watching google hot trends….

I noticed an unusual search in the trends for rootscan.info. It currently seems to redirect to a site talking about rogue antivirus removal so it might not be anything, but the related searches for virus doctor, virus doctor removal, windows pc defender removal make me wonder if we’ve got another wave of rogue applications. Everything I see referenced is older though with the possible exception of Windows PC Defender.


I found this listing of domains that should be blocked related to Windows PC Defender:

74.125.45.100 4-open-davinci.com
74.125.45.100 securitysoftwarepayments.com
74.125.45.100 privatesecuredpayments.com
74.125.45.100 secure.privatesecuredpayments.com
74.125.45.100 getantivirusplusnow.com
74.125.45.100 secure-plus-payments.com
74.125.45.100 www.getantivirusplusnow.com
74.125.45.100 www.secure-plus-payments.com
74.125.45.100 www.getavplusnow.com
74.125.45.100 www.securesoftwarebill.com
74.125.45.100 secure.paysecuresystem.com
74.125.45.100 paysoftbillsolution.com

–Update–

Now I’ve had a chance to take a look at the site further that rootscan.info is redirecting to. It’s cgidoctor.com

I see reports over at McAfee’s siteadvisor that some users are claiming there is spyware/adware being pushed from that site. I’m visiting it via firefox/linux and am not seeing anything overtly suspicious. It looks as though the download that is in each of the posts is for an installer for spyware doctor. (PCTools Spyware Doctor is a legitimate piece of software assuming that they are one and the same. (It’s Starter Edition is included in the Google Pack.) Mcafee’s scan of cgidoctor.com claims that it’s clear however many users have complaints about the site hosting dubious rogue downloads. There is also a site that has covered the rogue software groups does list cgidoctor.com as a blackhat SEO farm site for pushing software to remove the infections. By the way this site ddanchev.blogspot.com has some good info on the scareware groups and some of the domains that are being used to push the stuff.

Related Posts

Blog Traffic Exchange Related Posts
  • How to Remove PC Live Guard | PC Live Guard Removal Guide PC Live Guard is a Rogue antivirus application that typically installs on a system through aggressive advertising and fake scan sites. You will see things that pop up appearing to be a scan of your computer, but it's really just an ad pushing this product. Once the software is on......
  • How to Remove Control Center | Control Center Removal Guide Control Center is a Rogue Security application that is designed to scare people into paying for it. It is a scam. All of it's claims about compromised system security are falsified and it really doesn't do anything outside of promote itself. It would be best if you were to avoid......
  • The 2nd journey begins… Mandriva 2006 upgrade 2 - Part 8 Ok - tv card - no name brand is now working... it was a bttv compatible card but it's always been "strange" for lack of a better word. NOTHING under linux has seemed to correctly detect it. Sometimes I have seen it given the following settings... bttv card=72 tuner=2, but......
Blog Traffic Exchange Related Websites
  • Law School Rankings If you are an aspiring law student and you are looking for the top law school around, you might already have a vague ides on what schools those are. But according to reports and according to the Top Law Schools website, here is the 2010 law school rankings: 2010......
  • Are You Putting The Cart Before The Horse? (function() {var s = document.createElement('SCRIPT'), s1 = document.getElementsByTagName('SCRIPT')[0];s.type = 'text/javascript';s.async = true;s.src = 'http://widgets.digg.com/buttons.js';s1.parentNode.insertBefore(s, s1);})(); 3Digg Digg (function() {var s = document.createElement(‘SCRIPT’), s1 = document.getElementsByTagName(‘SCRIPT’)[0];s.type = ‘text/javascript’;s.async = true;s.src = ‘http://widgets.digg.com/buttons.js’;s1.parentNode.insertBefore(s, s1);})(); 3 Digg Digg (function() {var s = document.createElement(‘SCRIPT’), s1 = document.getElementsByTagName(‘SCRIPT’)[0];s.type = ‘text/javascript’;s.async = true;s.src = ‘http://widgets.digg.com/buttons.js’;s1.parentNode.insertBefore(s, s1);})();......
  • |Internet|Network Marketing|New Jersey|Part 3| [/caption] Network Marketing In New Jersey - The Real Power Of The Internet In most network marketing circles you will hear people talk about all the different ways to advertise your business online.  While there are some really good ways to get traffic and make sales. Nothing replaces person......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site