A friend of mine on one of the popular social networks advised me of a malicious site that is prompting users to download the Adobe Flash Plug-in. This fake plug-in will fool many people, because it looks and interacts just like the real Adobe Player prompts. First, it serves up a professionally designed spicy website that prompts the user that they’re missing the latest Adobe Player Plug-in.

Fake Adobe Player Plug-in

The website is adult-video-club.co.cc/co.php?v=Sex. Instead of updating the Adobe Player from Adobe, the user is actually downloading the update from flash-video.co.tv/om/ms.php. The file is infected with Malware Zheng/Heur. What’s scary about this malicious file is that Microsoft Security Essentials thinks it’s clean.

The website that’s hosting this Malware was just created. The only information I obtained is that the host is in Italy and the IP is (94.23.68.138).

If you are prompted to update Adobe Flash Player, please go to the source at http://get.adobe.com/flashplayer/?promoid=BUIGP