Posts Tagged: LSP chain

Rogue AV Payload Blocks Popular Websites


A payload file installed along with some variants of the rogue Internet Security 2010 “antivirus” program modifies victims’ networking settings within Windows, inserting itself into the network stack and preventing victims from visiting some of the Web’s most popular Web sites. More than 40┬ásites have been targeted, including: Microsoft’s and Bing search engine; social networking giants Facebook, Twitter, MySpace, Bebo, LinkedIn, and YouTube; news organizations including Fox News, The New York Times, the Washington Post, and the UK’s Guardian and BBC news sites; and blogs hosted by,, and The payload modifies the Layered Service Provider (LSP) […]

Continue Reading »