List of Rogue Antivirus sites August 4, 2009

personalantivirus3

Looks like they have more Fake Antivirus sites up and running so I thought I would pass them along:

  • basicsystemscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])
  • checkmypcantivirus.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])
  • onlineproantivirusscanner.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])
  • online-pro-antivirus-scan.com ([intlink id=”3607″ type=”post”]Personal Antivirus Scareware[/intlink])
  • secure-pro.cn (Fake Windows Security Messages)
  • bodyscanguide.com (Fake Windows Security Messages)
  • bestsecuredpcs.com (Fake Windows Security Messages)
  • somesecuritypc.com (Rogue Exploit Antivirus Scanner)
  • scanwebtech.com (Rogue Exploit Antivirus Scanner)
  • bisquva.cn (Rogue Antivirus)
  • pc-anti-spyware-20-10.com (Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])
  • pcantispyware2010.com(Like [intlink id=”3977″ type=”post”]Home Antivirus 2010[/intlink])
  • spywaredisplay.com (Rogue AntiSpyware)
  • spywaremonitoring.com (Rogue AntiSpyware)
  • spywareremovalhelp.net (Rogue AntiSpyware)
  • antispywarefile.com (Rogue AntiSpyware)

These sites try to get you to install software or get you to buy pay for some fake software.   If you keep getting popups from these guys then you have some kind Trojan acting like it is a real Antivirus or Antispyware.  I recommend getting rid of those annoying little warnings and redirects.   Some of these are actually Web Browser redirects, others try to scare you into downloading or buying their product.   You should never download or buy anything from a site you don’t know anything about.

Some common tricks are Popups, warnings, Toolbar shield, and also a fake web page scanning screen.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Microsoft kills a fake antivirus tool from 994,061 computers!

According to Arstechnica and I’ll quote:

[ad#ad2-left]Win32/FakeSecSen has gone by various names, including Micro Antivirus 2009, MS Antivirus, Spyware Preventer, Vista Antivirus 2008, Advanced Antivirus, System Antivirus 2008, Ultimate Antivirus 2008, Windows Antivirus, XPert Antivirus, Power Antivirus, and Ultra Antivirus 2009. Furthermore, it is skinnable, so each of these variants has a different GUI, although the basic functionality is the same: bother users with warnings of malware until they pay up.

The Microsoft Malware Protection Center recently released some data on how the removal tool performed this month: FakeSecSen was removed from 994,061 machines. That number isn’t the highest Microsoft has recorded before, and the number of removals depends on which malware Microsoft adds each month and how widespread it is.

[via Arstechnica]

This seemed to of happened this month with the usual Windows update.  If you haven’t updated your system just yet you should.   This troublesome fake virus seems to have been killed  from several systems.  This could effectively make it harder for these guys who ever designed this program to make money.  I hope microsoft does even more virus removals in next month.  If you still want to try to get rid of these viruses don’t forget to check out my tips on Virus removal.

AVG Detected a False Positive

[ad#ad2-left]According to Security and The Net:

An update for the AVG virus scanner released yesterday contained an incorrect virus signature, which led it to think user32.dll contained the Trojan Horses PSW.Banker4.APSA or Generic9TBN. AVG then recommended deleting this file; this causes the affected systems to either stop booting or go into a continuous reboot cycle. So far, the problem only appears to affect Windows XP, but there is no guarantee that other versions of Windows don’t have the same issue.

[Via Security and The Net]


[ad#ad2-right]I bring this up because this is a false positive according to AVG. AVG since sent out another update to there Database and you can go and update the database to get rid of this problem. If you need to restore that DLL check out the article Security and The Net, they got some excellent suggestions on fixing the problem.

If you’ve not been affected by this yet, you probably won’t be. It is yet unknown how many people have been affected. I’m blogging about this to tell people about this and to warn people that not all of warnings from AVG are true and that is why you should always ask before you delete or do anything to your system. I always USE google when it comes to these types of questions

Two Possible Mac Data Loss Issues Still Unadressed by Apple

leopardbsodicon2.jpgAlthough no official word has been released by Apple, there appears to be two serious data loss issues that could affect MacBook owners and users of Mac OS X Leopard. According to blogger Tom Karpik, Leopard’s Finder has a bug in its directory-moving code that can result in massive data loss when transferring large files—regardless of the type of destination drive. Apparently, this flaw has been around since the days of Mac OS X 10.3 Panther, so it could represent an ongoing problem that Apple has failed to address.

The other issue involves a flaw in certain 2.5-inch Segate SATA drives with a firmware version 7.01. As mentioned last week on Giz, the flaw causes read/write heads to fail and scratch up the drive. Again, these issues are not official, but you may want to take steps to back up your data just to be on the safe side. [TomKarpik via AppleInsider]

I guess they still have problems with the mac OSX just like Windows. I do hope they fix the problems!!