Previous posts showed spam-based scams attempting to deliver a payload named “pav.exe” onto your system. The scam is continuing with the title “Total Security” for the familiar scareware messages. Be aware that there is a legitimate security suite that includes those words in its name, but this scam is not that legitimate package. You can recognize the fake scan with phony detections here:
Phony scan offering and immediate scan requirement here:
“Warning!!! Your system requires immediate anti viruses scan! Total Security can perform fast and free virus and malicious software scan of your computer .”
Full phony detection message here:
“Harmful and malicious software detected. Such programs may damage your computer and steal your private information. Online Security Scanner requires Total Security components to repair your computer. Please click OK to download and install Total Security tool.”
Today and yesterday’s most active domains/ip addresses included:
88.198.120.177
antispyware-scanner2 .com
antispyware-scanner5 .com
antivirus-online-scan7 .com
best-antivirus9 .com
live-virus-scanner3 .com
online-best-scanv3 .com
premium-antispy-scanv3 .com
premium-antispy-scanv7 .com
professionalcomputerscanv2 .com
safeonlinescannerv4 .com
safeonlinescanv4 .com
secure-spyware-scannerv3 .com
91.212.127.200
antispyware-scanner2 .com
antispyware-scanner5 .com
antivirus-online-scan7 .com
best-antivirus9 .com
live-virus-scanner3 .com
professionalcomputerscanv2 .com
safeonlinescannerv4 .com
safeonlinescanv4 .com
88.198.81.153
antivirus-scannerv17 .com
best-security-scanv8 .com
bestantispywarescanv4 .com
professionalspywarescanv8 .com
professionalvirusscanv3 .com
78.46.251.43
antivirus-online-scan5 .com
antivirus-scannerv12 .com
antivirus-scannerv15 .com
getyourantivirusv3 .com
83.133.126.201
antivirus-scannerv17.com
bestantispywarescanv4.com
professionalspywarescanv8.com
professionalvirusscanv3.com
protectedsecurityaudit.cn
ThreatFire preventions for this scareware/rogueware payload continue to be on the rise. Before installing any software, be sure to inform yourself by looking into opinions and reviews of legitimate products.
