Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Fake Online AV Scanner Installs Fake AV

20 Sep 2009   #1
Barman58

Windows 10 Pro x64 x2 Windows 10 Enterprise x64, Ubuntu
 
 
Fake Online AV Scanner Installs Fake AV

Fake Online AV Scanner Installs Fake AV

Today, SophosLabs witnessed a bogus website with a fake online AntiAdware scanner. When the website is accessed, it executes embedded javascript within the webpage. This script will cause the victim’s computer to display a fake progress bar pretending to scan the victim’s computer. After some time, a warning popup message appears and alerts the victim’s computer that it was infected by several spyware and viruses. It subsequently provides a link for the victim which when clicked will initiate a file download named Setup.exe. This file is malicious and is detected by SophosLabs as Troj/FakeAV-ABD. Access to the website has also been blocked in the Sophos Web Appliance.

More ...


My System SpecsSystem Spec
.
20 Sep 2009   #2
Dinesh

Windows® 8 Pro (64-bit)
 
 

I never trust online scanners. Thanks for the heads up though.
My System SpecsSystem Spec
20 Sep 2009   #3
gamepro127

Windows 7 Enterprise x64
 
 

Quote   Quote: Originally Posted by Dinesh View Post
I never trust online scanners. Thanks for the heads up though.
Not unless if its one of the official brands like ESET, Kaspersky, Norton exc.
Ive used ESETs official online scanner before on another pc and it found and removed the infections. PC worked great after that.
My System SpecsSystem Spec
.

20 Sep 2009   #4
Dinesh

Windows® 8 Pro (64-bit)
 
 

What i believe is that even an online scanner uses an internet browser and what if your browser itself is hijacked or infected?
My System SpecsSystem Spec
20 Sep 2009   #5
Barman58

Windows 10 Pro x64 x2 Windows 10 Enterprise x64, Ubuntu
 
 

Valid points Dinesh

I have used on line scanners in the past, as an emergency measure and will not have issues using them in the future - but as stated above only from the known AV experts and with valid security certificates.

The issue highlighted in the news post is more as a warning of a change in method of malware to catch out less experienced users that the vast majority of SevenForums users. The old adage "know your enemy" is important in the IT security field
My System SpecsSystem Spec
20 Sep 2009   #6
Dinesh

Windows® 8 Pro (64-bit)
 
 

Quote   Quote: Originally Posted by Barman58 View Post
Valid points Dinesh

I have used on line scanners in the past, as an emergency measure and will not have issues using them in the future - but as stated above only from the known AV experts and with valid security certificates.

The issue highlighted in the news post is more as a warning of a change in method of malware to catch out less experienced users that the vast majority of SevenForums users. The old adage "know your enemy" is important in the IT security field
Btw, what AV do you use? Avast?
My System SpecsSystem Spec
20 Sep 2009   #7
Barman58

Windows 10 Pro x64 x2 Windows 10 Enterprise x64, Ubuntu
 
 

Avast 4.8 AV with Comodo F/W behind a decent Hardware router firewall Regular manual Spybot and malwarebytes.

And the most important security measure of all - careful surfing

Leak tests and such from Internet test sites report my systems here as not existing! - even my browser reports that it's something it's not to the net
My System SpecsSystem Spec
20 Sep 2009   #8
Dinesh

Windows® 8 Pro (64-bit)
 
 

Quote   Quote: Originally Posted by Barman58 View Post
Avast 4.8 AV with Comodo F/W behind a decent Hardware router firewall Regular manual Spybot and malwarebytes.

And the most important security measure of all - careful surfing

Leak tests and such from Internet test sites report my systems here as not existing! - even my browser reports that it's something it's not to the net
This is what is called as Tight Security.
My System SpecsSystem Spec
20 Sep 2009   #9
Lanthus20

Windows 7 Ultimate 32 bit
 
 

would this particular scanner look like xp when you open it?

Running windows 7 my mom (who's clueless to anything about computers except facebook) was on her facebook. A message popped up telling her the computer had 6 virus's and that she needed to do this scan. So not knowing any better she clicked ok and a webpage came up, I came into the room in time to stop it. The page looked like the windows xp my computer folder with a progress bar "window" infront of it. It was downloading something and after I cancelled the download I scanned the computer with AVG and a .exe came up called "XP Virus Infection Software Scanner" came up in the search. I dealt with it and the computer was safe but a few days later it happened to me. I deleted everything in my cookies folder and it hasn't happened since.
My System SpecsSystem Spec
21 Sep 2009   #10
Mercurial

Windows 7 32bit RTM
 
 

can someone link me to the actual fake site ;P?
My System SpecsSystem Spec
Reply

 Fake Online AV Scanner Installs Fake AV




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Fake AV infection??
Hi! I was lead to this forum after googling my problem with this virus, which hid all my startup programs and destop icons... after looking at other threads and downloading malware and unhide I got my files to come back but like most people not the user file folders on my startup. Also, when I ran...
System Security
7265 fake or not? - Fake
Saw this and i see a source is trying to get his hands on it (if it's real) What do you guys think?
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 12:59.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App