Results 1 to 9 of 9
  1. #1
    Super Moderator Deadeye81's Avatar
    Join Date
    Dec 2009
    Location
    North Carolina, USA
    Posts
    2,654
    Thanks
    7
    Thanked 113 Times in 97 Posts

    Rogue Antivirus masquerades as AVG Antivirus

    Rogue:Win32/FakeXPA, another of those fake rogue malware critters, has stolen the AVG logo to use on their pop-ups within browsers. It looks alarmingly real. Check out the details here on Softpedia.

    It should be obvious if you see a pop-up and you do not use AVG Antivirus 2011. But for those who do have it installed, it only takes a moment to be caught with your proverbial pants down.
    Deadeye81

    "We make a living by what we get, we make a life by what we give." Sir Winston Churchill

  2. #2
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    When will people ever learn to NEVER NEVER NEVER...click on popups...

  3. #3
    Lounger
    Join Date
    Dec 2009
    Location
    Lubbock, TX
    Posts
    35
    Thanks
    3
    Thanked 0 Times in 0 Posts
    Here is the page explaining about AVG Antivirus 2011 rogue malware. Halfway down are the removal instructions with safe and free removal instructions.
    http://www.bleepingcomputer.com/viru...antivirus-2011

  4. #4
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    12,519
    Thanks
    152
    Thanked 1,398 Times in 1,221 Posts
    I am not even sure that you need to click the darn thing. I was on a page which I cannot even remember what it was, and all of a sudden had a supposed scan being run, which, in less than a second, told me my PC had viruses. Of course, I immediately realized it was one of these rogue apps, so I closed the browser window and the issue was gone. But I must say that I didn't click it, at least not explicitly, I know a bit better.

  5. #5
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts

  6. #6
    Lounger
    Join Date
    Dec 2009
    Location
    Lubbock, TX
    Posts
    35
    Thanks
    3
    Thanked 0 Times in 0 Posts
    The longer the bug is out there, the more fixes become available.

  7. #7
    Super Moderator Deadeye81's Avatar
    Join Date
    Dec 2009
    Location
    North Carolina, USA
    Posts
    2,654
    Thanks
    7
    Thanked 113 Times in 97 Posts
    A good way to send malware like that packing is to close the browser window by right clicking the Taskbar, selecting Task Manager, Processes tab, and right click the browser executable and select End Process. That way there is absolutely no clicking inside the affected browser.
    Deadeye81

    "We make a living by what we get, we make a life by what we give." Sir Winston Churchill

  8. #8
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    Yes, whenever I suspect something I always close my browser using the task manager.

  9. #9
    Lounger
    Join Date
    Dec 2009
    Location
    Lubbock, TX
    Posts
    35
    Thanks
    3
    Thanked 0 Times in 0 Posts
    Interesting, but I came home Friday and my wife had the AVG bug on her laptop. I closed the popup with taskmanager, ran rkill - it found two trojans, then ran malwarebytes and rebooted the laptop. AVAST did a boot up scan and found nothing.

    the trojan prevents malwarebytes, SAS and the antivirus from removing the package.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •