Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Latest rogue anitvirus


  • Please log in to reply
4 replies to this topic

#1 rsdunker

rsdunker

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:43 AM

Posted 26 May 2011 - 11:53 PM

Does anyone have any info on the latest rogue antivirus that hides all files on the C: drive as well as the usual popup messages? We have had 30+ machines come through the shop this week and I am surprised that there is not a post on it. Maybe it is just my area but it is one of the most destructive and widespread outbreaks we have seen.

Edited by Budapest, 26 May 2011 - 11:55 PM.
Moved from Breaking Virus & Security News ~Budapest


BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:43 AM

Posted 26 May 2011 - 11:57 PM

These "rouges" go under many different names. This is one type:

http://www.bleepingcomputer.com/virus-removal/remove-smart-defragmenter
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 jdbaker82

jdbaker82

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:12:43 PM

Posted 27 May 2011 - 12:05 AM

Its called Windows Recovery its about the only one I have seen in the past 3 weeks.... I am now starting to see destructive versions that cause BSODs in Normal and Safe mode so far it has been the System32/Drivers/Volsnap.Sys file.

#4 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:43 AM

Posted 27 May 2011 - 12:18 AM

Something like this:

http://www.bleepingcomputer.com/virus-removal/remove-windows-recovery

Problems with System32/Drivers/Volsnap.Sys may be related to the TDSS infection.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#5 jdbaker82

jdbaker82

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:12:43 PM

Posted 27 May 2011 - 12:23 AM

All I know is the past two weeks I have been seeing a lot of Black Screens of Death some with Hourglass some just cursor and Ctrl+Alt+Del does nothing and then the BSODs and the customers all had a rogue virus on their computer. Maybe its just bad luck with other issues but I have found myself reinstalling a few OS recently and some of these rogues/rootkits I have been seeing recently are starting to get nasty.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users