NewsLet's proceed with the further analysis on PcSecureNet, the rogue application from the Winisoft family. This time I will take a closer look at the site of the fake software, as well as the installation file. As is common to most of the roguewares of this kind, one of the ways to install PcSecureNet on your computer is to visit its website. According to whois.com, p-c-s-e-c-u-r-e-n-e-t-d-o-t-c-o-m is registered in a well-known city of Bahamas, Nassau. However, this was an unsuccessful effort to hide the tracks. The site IP - 95.143.192.203 - indicates that these hackers are lurking in Sweden rather than in Bahamas. Take a look at the screenshot of the site:
Image 2. PcSecureNet Website I would never advice you to enter this domain. Don't make you lives more complicated. Besides, keep in mind that PcSecureNet might also get into your PC through other sources. In some cases, PcSecureNet pretends to be an update for your flash player, or even a video codec. So beware what you are trying to install and download. Now I'd like to continue my analysis on PcSecureNet itself. The rogueware is associated with several distinct files that need to be deleted in order to remove the threat from an infected system. Don't forget that there are four PcSecureNet components associated with the rogueware. File names, files sizes, as well as MD5 signatures are listed in the table below:
Table 1. File information I hope all the information was really useful for you. Do not ever trust these cyber criminals. They only aim to take your money. Besides, keep an eye for my further analysis of PcSecureNet. I will try to show you which antivirus vendors detect this software as malicious and which ones are incapable of doing that. |
Software Downloads
User Comments