Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rogue Av Tactics Continue To Threaten: Fake Bsod


  • Please log in to reply
3 replies to this topic

#1 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,582 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:49 AM

Posted 03 October 2008 - 08:33 AM

...Trend Micro threat researchers keep seeing more and more slightly different, but yet increasingly more annoying variations to the set of rogue AV infection signals we have been documenting on this blog...Fake BSOD (actually a screensaver) now sports a specific mention of the problem an unregistered version of a certain AV product...

blog.trendmicro.com screenshots included
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

BC AdBot (Login to Remove)

 


m

#2 harrywaldron

harrywaldron

    Security Reporter


  • Members
  • 509 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Roanoke, Virginia
  • Local time:04:49 AM

Posted 03 October 2008 - 09:58 AM

^ Thanks for sharing ... More links below, including how to safely EXIT any pop-ups presented ...

AntiVirus 2009 - Fake BSODs and Reboots continue in new variants

Trend Micro is continuing to see more variants of Antivirus 2009 in the wild using these tactics to frighten users (i.e., new term of "scareware" was been introduced). Unfortunately, inexperienced users may feel it's their true AV system that's creating these messages. They may become infected by following "the yellow brick road" of prompts that eventually load these malicious agents.

Keeping AV protection updated is important. However, the malware agent is constantly changing with new variant to avoid AV detection (e.g., Packing algorithms, MD5 hash total changes, HTML changes, etc).

Please be careful with all email and websites.

AntiVirus 2009 - Fake BSODs and Reboots continue in new variants
http://blog.trendmicro.com/rogue-av-tactic...ue-to-threaten/

October has just begun and Trend Micro threat researchers keep seeing more and more slightly different, but yet increasingly more annoying variations to the set of rogue AV infection signals we have been documenting on this blog.

This variant is an ongoing iteration of the Antivirus 2009 campaign and is detected as TROJ_FAKEAV.SV. It is nice to see Microsoft and the State of Washington going after scareware purveyors. We completely support efforts to bring these criminals to justice.


Some Past references
http://blog.trendmicro.com/rogue-av-theatr...n-extended-run/
http://blog.trendmicro.com/a-million-searc...o-get-infected/

Use of Task Manager to close pop-up messages more safely
http://msmvps.com/blogs/harrywaldron/archi...afely-exit.aspx

#3 quietman7

quietman7

    Bleepin' Janitor

  • Topic Starter

  • Global Moderator
  • 50,582 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:49 AM

Posted 10 October 2008 - 08:18 AM

New rogue: Antivirus 2010

Antivirus 2010 is a new rogue security product. This rogue is a clone evolved from IEdefender that begat XP Antivirus, that begat Antivirus 2008, that then begat Antispyware 2009...The rogue application uses the same old tricks to lure users into purchasing their worthless application...Fake BSOD...


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 jgweed

jgweed

  • Staff Emeritus
  • 28,473 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago, Il.
  • Local time:03:49 AM

Posted 10 October 2008 - 08:38 AM

They are begatting like the proverbial rabbits; but so are the ways to prevent or get rid of them.
John
Whereof one cannot speak, thereof one should be silent.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users