Page 1 of 2 12 LastLast
Results 1 to 15 of 22

Thread: Fake Av

  1. #1
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts

    Fake Av

    Yesterday I was on the New York Daily news website and clicked on a story and got redirected to a fake AV scan page.
    It really happened fast but MSE blocked it so I didn't get any infection..

    Here's a screen shot..
    Attached Images Attached Images
    "If You Are Reading This In English, Thank A VET"

  2. #2
    5 Star Lounger
    Join Date
    Dec 2009
    Location
    Slough, Berkshire UK
    Posts
    928
    Thanks
    61
    Thanked 52 Times in 50 Posts
    Another thumbs up for MSE
    Clive

    All typing errors are my own work and subject to patents pending. Except errors by the spell checker. And that has its own patients.

  3. #3
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    Well, what gets me is you don't even have to click on anything to get this crap.
    Of course, as long as you don't click on anything after you get sent to the site you are O.K. I guess...

    It actually did a fake scan even though the virus was blocked.
    "If You Are Reading This In English, Thank A VET"

  4. #4
    Gold Lounger Roderunner's Avatar
    Join Date
    Dec 2009
    Location
    Scotland.
    Posts
    3,462
    Thanks
    16
    Thanked 216 Times in 183 Posts
    Quote Originally Posted by curiousclive View Post
    Another thumbs up for MSE
    Check your signature
    And that has its own patients.
    O wad some Power the giftie gie us, to see oursels as ithers see us!

  5. #5
    Lounge VIP
    Join Date
    Apr 2011
    Location
    Scotland
    Posts
    1,168
    Thanks
    44
    Thanked 134 Times in 115 Posts
    Sounds like Malvertising.

    The most likely route for malvertising are scripts that exploit vulnerabilities in Adobe Flash. Recommend you verify that you have the latest version of Adobe Flash Player.

    If it "ran a fake scan", it might still be active and MSE may not have picked up everything: run system restore to before it happened from Safe Mode and execute an MBAM scan just in case.
    In God we trust; all others must bring data.

    - William Edwards Deming. 1900 - 1993

  6. #6
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    Tinto, I do have the latest flash version and I did run scans afterwards but not in safe mode.
    I'll do that later, thanks for the tip..
    "If You Are Reading This In English, Thank A VET"

  7. #7
    Lounge VIP
    Join Date
    Apr 2011
    Location
    Scotland
    Posts
    1,168
    Thanks
    44
    Thanked 134 Times in 115 Posts
    Quote Originally Posted by Banyarola View Post
    Tinto, I do have the latest flash version ........
    Yikes! Quite scary that it got its claws into a fully patched system.

    Good hunting!
    In God we trust; all others must bring data.

    - William Edwards Deming. 1900 - 1993

  8. #8
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    It really didn't get in.
    MSE blocked the Trojan but not the site..

    I didn't click on anything on the site and exited using Task Manager.
    "If You Are Reading This In English, Thank A VET"

  9. #9
    Lounge VIP
    Join Date
    Apr 2011
    Location
    Scotland
    Posts
    1,168
    Thanks
    44
    Thanked 134 Times in 115 Posts
    Sorry, poor wording on my part.

    The vulnerability (whatever it was) was exploited even on a fully patched system, but could not deliver the payload successfully as that appears to have been contained by MSE.

    Really good that you closed using Task Manager. Less experienced users may have interacted with the site which is never a good idea in these cases.
    In God we trust; all others must bring data.

    - William Edwards Deming. 1900 - 1993

  10. #10
    4 Star Lounger
    Join Date
    May 2012
    Posts
    404
    Thanks
    0
    Thanked 49 Times in 39 Posts

    Thumbs up

    Prevention is better than a cure as they say, so I'd recommend you install this add-on which allows you to scan links before you visit a site: VTZilla

    It supports Firefox, Google Chrome and Internet Explorer (click the button top left).

    After you install it, you'll also get the option to scan a file prior to downloading it to check it for malware, and to scan the site you're currently looking at.

    What I'm going to say next though will obviously upset a lot of people, but the fact remains that MSE has the worst detection rate of any antivirus application currently available. It consistently comes bottom of the class in independent testing and personally, I wouldn't rely on it to protect my system if I was you.

    System security should be left to professionals who devote their entire resources to one product unlike Microsoft who just wants to monopolise the industry rather than protect individuals' machines.

    I would recommend you switch to AVAST free version which offers far better protection than MSE ever will.

  11. #11
    5 Star Lounger RussB's Avatar
    Join Date
    Dec 2009
    Location
    Grand Rapids, Michigan
    Posts
    803
    Thanks
    10
    Thanked 50 Times in 49 Posts
    Quote Originally Posted by curiousclive View Post
    Another thumbs up for MSE
    And a thumbs Down for NYDN.
    Do you "Believe"? Do you vote? Please Read:
    LEARN something today so you can TEACH something tomorrow.
    DETAIL in your question promotes DETAIL in my answer.
    Dominus Vobiscum <))>(

  12. #12
    Silver Lounger Banyarola's Avatar
    Join Date
    Dec 2009
    Location
    Big Indian, New York
    Posts
    1,900
    Thanks
    19
    Thanked 65 Times in 54 Posts
    Xircal, VTzilla is for firefox not IE..

    As I am sure you are aware, no virus program will completely protect you...

    I have never had any problems with MSE.
    I have read good reviews and bad reviews about MSE and, as a matter of fact, Avast also has it's share of pros and cons..

    The version they tested on AVCOMP was version 2.1...MSE is now Version 4..
    And the revision list on their site is dated 4/2012 so if they are testing Ver. 2 in April they seem to be a little behind...

    Everyone has an opinion or some data to share to prove their point..

    Any user practicing safe computing in conjunction with a virus program will stay safe.
    Last edited by Banyarola; 2012-05-23 at 09:38.
    "If You Are Reading This In English, Thank A VET"

  13. #13
    Super Moderator
    Join Date
    Jun 2011
    Location
    New England
    Posts
    4,754
    Thanks
    171
    Thanked 652 Times in 575 Posts
    Quote Originally Posted by Xircal View Post
    What I'm going to say next though will obviously upset a lot of people, but the fact remains that MSE has the worst detection rate of any antivirus application currently available. It consistently comes bottom of the class in independent testing and personally, I wouldn't rely on it to protect my system if I was you.
    The best false positive result though.

    Bruce

  14. #14
    4 Star Lounger
    Join Date
    May 2012
    Posts
    404
    Thanks
    0
    Thanked 49 Times in 39 Posts
    Quote Originally Posted by Banyarola View Post
    Xircal, VTzilla is for firefox not IE..
    Well, yes and no actually. The name is derived from both Virus Total which is the "VT" bit and "zilla" from "Mozilla" as the developer of Firefox.

    So for Google Chrome, it's called "VTchromizer": https://www.virustotal.com/documenta...google-chrome/

    And for IE, as one might expect, it's called "VTexplorer": https://www.virustotal.com/documenta...rnet-explorer/

    But all three are one and the same plugin.

    One of the negative aspects of MSE is the fact that it needs Windows Automatic Updates to be enabled and if you've disabled them, MSE will automatically re-enable them. That's a bit no-no for me since I prefer to decide what I wish to install from Microsoft, not what they want to give me.

  15. #15
    4 Star Lounger
    Join Date
    May 2012
    Posts
    404
    Thanks
    0
    Thanked 49 Times in 39 Posts
    Quote Originally Posted by BruceR View Post
    The best false positive result though.
    Bruce
    Well, I don't say these things lightly and I think you have to examine all the evidence before drawing a conclusion about any one particular product.

    But as I mentioned already, MSE has the worst results where it counts the most i.e when you have a malware on your machine, can MSE see it? Here's another independent test where Microsoft comes bottom of the league table again, detecting only 14 out of a total 80 samples: http://malwareresearchgroup.com/malw...-test-results/ You'll find the methology used further down the page.

    I'm not encouraged by those kind of results I'm afraid.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •