Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Fake Online AV Scanner Installs Fake AV


20 Sep 2009   #1

Windows 8.1 x64 x3 + Windows 10 Preview
 
 
Fake Online AV Scanner Installs Fake AV

Fake Online AV Scanner Installs Fake AV

Today, SophosLabs witnessed a bogus website with a fake online AntiAdware scanner. When the website is accessed, it executes embedded javascript within the webpage. This script will cause the victim’s computer to display a fake progress bar pretending to scan the victim’s computer. After some time, a warning popup message appears and alerts the victim’s computer that it was infected by several spyware and viruses. It subsequently provides a link for the victim which when clicked will initiate a file download named Setup.exe. This file is malicious and is detected by SophosLabs as Troj/FakeAV-ABD. Access to the website has also been blocked in the Sophos Web Appliance.

More ...


My System SpecsSystem Spec
.

20 Sep 2009   #2

Windows® 8 Pro (64-bit)
 
 

I never trust online scanners. Thanks for the heads up though.
My System SpecsSystem Spec
20 Sep 2009   #3

Windows 7 Enterprise x64
 
 

Quote   Quote: Originally Posted by Dinesh View Post
I never trust online scanners. Thanks for the heads up though.
Not unless if its one of the official brands like ESET, Kaspersky, Norton exc.
Ive used ESETs official online scanner before on another pc and it found and removed the infections. PC worked great after that.
My System SpecsSystem Spec
.


20 Sep 2009   #4

Windows® 8 Pro (64-bit)
 
 

What i believe is that even an online scanner uses an internet browser and what if your browser itself is hijacked or infected?
My System SpecsSystem Spec
20 Sep 2009   #5

Windows 8.1 x64 x3 + Windows 10 Preview
 
 

Valid points Dinesh

I have used on line scanners in the past, as an emergency measure and will not have issues using them in the future - but as stated above only from the known AV experts and with valid security certificates.

The issue highlighted in the news post is more as a warning of a change in method of malware to catch out less experienced users that the vast majority of SevenForums users. The old adage "know your enemy" is important in the IT security field
My System SpecsSystem Spec
20 Sep 2009   #6

Windows® 8 Pro (64-bit)
 
 

Quote   Quote: Originally Posted by Barman58 View Post
Valid points Dinesh

I have used on line scanners in the past, as an emergency measure and will not have issues using them in the future - but as stated above only from the known AV experts and with valid security certificates.

The issue highlighted in the news post is more as a warning of a change in method of malware to catch out less experienced users that the vast majority of SevenForums users. The old adage "know your enemy" is important in the IT security field
Btw, what AV do you use? Avast?
My System SpecsSystem Spec
20 Sep 2009   #7

Windows 8.1 x64 x3 + Windows 10 Preview
 
 

Avast 4.8 AV with Comodo F/W behind a decent Hardware router firewall Regular manual Spybot and malwarebytes.

And the most important security measure of all - careful surfing

Leak tests and such from Internet test sites report my systems here as not existing! - even my browser reports that it's something it's not to the net
My System SpecsSystem Spec
20 Sep 2009   #8

Windows® 8 Pro (64-bit)
 
 

Quote   Quote: Originally Posted by Barman58 View Post
Avast 4.8 AV with Comodo F/W behind a decent Hardware router firewall Regular manual Spybot and malwarebytes.

And the most important security measure of all - careful surfing

Leak tests and such from Internet test sites report my systems here as not existing! - even my browser reports that it's something it's not to the net
This is what is called as Tight Security.
My System SpecsSystem Spec
20 Sep 2009   #9

Windows 7 Ultimate 32 bit
 
 

would this particular scanner look like xp when you open it?

Running windows 7 my mom (who's clueless to anything about computers except facebook) was on her facebook. A message popped up telling her the computer had 6 virus's and that she needed to do this scan. So not knowing any better she clicked ok and a webpage came up, I came into the room in time to stop it. The page looked like the windows xp my computer folder with a progress bar "window" infront of it. It was downloading something and after I cancelled the download I scanned the computer with AVG and a .exe came up called "XP Virus Infection Software Scanner" came up in the search. I dealt with it and the computer was safe but a few days later it happened to me. I deleted everything in my cookies folder and it hasn't happened since.
My System SpecsSystem Spec
21 Sep 2009   #10

Windows 7 32bit RTM
 
 

can someone link me to the actual fake site ;P?
My System SpecsSystem Spec
Reply

 Fake Online AV Scanner Installs Fake AV




Thread Tools



Similar help and support threads for2: Fake Online AV Scanner Installs Fake AV
Thread Forum
real or fake? System Security
Fake copy General Discussion
Malware Watch: Fake Patch Tuesday emails, fake MSRT tool System Security
fake or real help System Security
Fake Microsoft Outlook Update Installs Trojan. Microsoft Office
7265 fake or not? - Fake General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 10:06 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33