Go4Expert (http://www.go4expert.com/)
-   Information Technology (http://www.go4expert.com/news/information-technology/)
-   -   Fake AntiVirus (http://www.go4expert.com/news/fake-antivirus-t21939/)

shabbir 29Apr2010 07:16

Fake AntiVirus
One increasingly prevalent threat is the spread of Fake Anti-Virus (Fake AV) products. This malicious software takes advantage of users’ fear that their computer is vulnerable, as well as their desire to take the proper corrective action.


oldgamesware 29Apr2010 13:58

Re: Fake AntiVirus
Really? Are there fake anti-virus software? So, do we have to buy online or at a shop?

P455w0rd_Cr4kz 29Apr2010 20:52

Re: Fake AntiVirus

Originally Posted by oldgamesware (Post 67591)
Really? Are there fake anti-virus software? So, do we have to buy online or at a shop?

This threat are using the drive/by inffection method. Once you visit the page a fake antivirus scan starts showing you tons of malware in your pc. However it's all fake and if you click on it it inffects your computer adding a BHO (browser helper object).
Now everytime you turn on your pc a fake scan starts and won't let you use the internet except to visit their fake antivirus download wich you will have to buy.
The ctach is that once you purchse the supposedly antivirus,you are just downloading all kind of spyware/malware and in many cases even shells and backdoors.

Shabbir,nice to see you're doing fine my friend.

oldgamesware 30Apr2010 10:00

Re: Fake AntiVirus
Oh they are showing tons of malware of my pc so that I will download or buy their fake anti-virus. Why are they going to do that fraud just to have an income? That's just so lame.

edgdro2 30Apr2010 17:50

Re: Fake AntiVirus
The proper name for this is a Rogue Program... It acts as something else. And most of the time these rogue programs will get you to buy something and then it will disappear for 6 months as if you actually bought something. Then it will come back with the same message as before yet the last time you paid and it went away so you keep paying for the "service" because it gets rid of this program. The only real way to get rid of it is get a malware extractor.

oldgamesware 30Apr2010 19:29

Re: Fake AntiVirus
edgdro2, do you have any suggestion on what exact malware extractor that can get rid of this program?

jsrubi0 6Dec2011 23:42

Re: Fake AntiVirus
It's easy to get rid of fake avs. 1. First log in into your account and open the Task Manaager before the fake av loads. You have to be fast because if the fake av load before you open the Tskmngr it will not let you open it anymore. 2. Now with the tskmngr open wait for the fk av to load, and as soon as it apears in the tskmngr right click the application and select go to process. 3. Now right click the process and select open file location, this should open the folder where the .exe for the fk av is located. (You might need to have the option for show hidden file on the folders options). 4. Now got back to the tskmngr and right click the process again and select end process tree this should kill the fk av. 5. Go back to the folder that opend earlier and delete the fk av's .exe (it usually has a random name eg. asdfer121.exe or something similer) also sometimes it the only .exe in the folder (again you might need to select the option to show extensions in the folder options).
I have removed several different variances of the fake antivirus, and when I ask the owners of the pcs what they use their pc for the answer is almost always Facebook Apps. I use this process a lot of times and been able to succeed, Try it at your own risk, I am not accountable if you break your computer MORE
Good Luck

Ajay12 8May2012 08:52

Re: Fake AntiVirus
It is really very disgusting. They can cheat those who do not know much about computers. Its very unfair. Necessary actions are needed to be taken to stop such lame works.

All times are GMT +5.5. The time now is 12:39.