Sponsor for PC Pals Forum

Author Topic: New 'rogueware' variants spotted  (Read 1173 times)

Offline Clive

  • Administrator
  • *****
  • Posts: 75153
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
New 'rogueware' variants spotted
« on: August 27, 2009, 23:44 »
Security researchers have warned of three new variants of fake anti-virus programs, also known as 'rogueware', in circulation.

The malware attempts to convince anyone unwise enough to install it on their system that they should hand over money in order to wipe non-existent viruses from their system.

The three programs use different names but look very similar.

"Three of the new families we've seen this week, called SaveKeep, SaveSoldier and TrustNinja are at the end the same rogueware but rebranded, which is one of the common strategies they use," said Luis Corrons of PandaLabs.

Using programs that claim to be legitimate anti-virus software has become a common tactic among cybercriminals.

AntiVirus XP and VirusRemover 2008 both emerged last year, aiming to con surfers into paying money to have non-existent infections removed.

Offline Simon

  • Administrator
  • *****
  • Posts: 77923
  • First to score 7/7 in Quiz of The Week's News 2017
Re: New 'rogueware' variants spotted
« Reply #1 on: August 27, 2009, 23:46 »
Thanks for the heads up, Clive.  :)
Many thanks to all our members, who have made PC Pals such an outstanding success!   :thumb:

Offline chorleydave

  • Forum Fanatic
  • ******
  • Posts: 5035
Re: New 'rogueware' variants spotted
« Reply #2 on: August 28, 2009, 01:06 »
I've spent most of the day cleaning a friend's computer from one of these programs called "Personal Antivirus".  I had to remove it manually as none of the usual anti-malware programs could remove it (i.e. Malwarebytes, AVG, Superantispyware etc.).  In fact, these programs wouldn't even install until I changed the name of them and then they found it but couldn't cure it.

Offline sam

  • Administrator
  • *****
  • Posts: 19977
Re: New 'rogueware' variants spotted
« Reply #3 on: August 28, 2009, 02:48 »
Thanks for the heads up, Clive.  :)

more doom and gloom eh Clive?  :woot:
- sam | @starrydude --

Offline Clive

  • Administrator
  • *****
  • Posts: 75153
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
Re: New 'rogueware' variants spotted
« Reply #4 on: August 28, 2009, 09:14 »
Beware the Ides of March.   :laugh:

Offline davy51

  • Loyal Member
  • *****
  • Posts: 1690
Re: New 'rogueware' variants spotted
« Reply #5 on: August 28, 2009, 13:48 »
I got one of these last week in a drive by
It didnt ask for permission to download
It disabled my firewall and all antivirus and spyware hunters

Anytime i  went online to run a anti virus or spyware scan it would reboot the computer

Almost impossible to get rid of it locked the program so I couldnt delete it had to use an unlocker before I could delete it

Mine was TSSD!IK
Dave

Don't walk behind me, I may not lead. Don't walk in front of me, I may not follow. Just walk beside me and be my friend

Albert Camus

Offline GillE

  • Forum Fanatic
  • ******
  • Posts: 6349
  • Never totally serious
    • Gill's East Lindsey Camera
Re: New 'rogueware' variants spotted
« Reply #6 on: August 28, 2009, 14:32 »
Politicians are rogueware.  Every few years they keep coming back and asking for your vote.  If nobody fed them, perhaps they would go away.
There is no opinion, however absurd, which men will not readily embrace as soon as they can be brought to the conviction that it is readily adopted.

(Schopenhauer, Die Kunst Recht zu Behalten)

Offline Clive

  • Administrator
  • *****
  • Posts: 75153
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
Re: New 'rogueware' variants spotted
« Reply #7 on: August 28, 2009, 17:41 »

Almost impossible to get rid of it locked the program so I couldnt delete it had to use an unlocker before I could delete it

Mine was TSSD!IK


That must have been very scary davy.  Where did you manage to get the unlocker?   :dunno:

Offline davy51

  • Loyal Member
  • *****
  • Posts: 1690
Re: New 'rogueware' variants spotted
« Reply #8 on: August 28, 2009, 18:17 »
That must have been very scary davy.  Where did you manage to get the unlocker?   :dunno:



I got it here Clive it will unlock most programs unless they are protected by some brands of firewalls
http://ccollomb.free.fr/unlocker/
Dave

Don't walk behind me, I may not lead. Don't walk in front of me, I may not follow. Just walk beside me and be my friend

Albert Camus

Offline Clive

  • Administrator
  • *****
  • Posts: 75153
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
Re: New 'rogueware' variants spotted
« Reply #9 on: August 28, 2009, 19:29 »
Thanks very much davy.  That might prove very useful!   8-)

Offline davy51

  • Loyal Member
  • *****
  • Posts: 1690
Re: New 'rogueware' variants spotted
« Reply #10 on: August 29, 2009, 01:29 »
Your welcome Clive
I have others if you ever need them
Dave

Don't walk behind me, I may not lead. Don't walk in front of me, I may not follow. Just walk beside me and be my friend

Albert Camus


Show unread posts since last visit.
Sponsor for PC Pals Forum