Sponsor for PC Pals Forum

Author Topic: New rogueware variant installs malware  (Read 776 times)

Offline Clive

  • Administrator
  • *****
  • Posts: 75153
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
New rogueware variant installs malware
« on: September 07, 2009, 19:10 »
A new breed of fake anti-virus program has been spotted in circulation and actually installs malware on your PC rather than simply informing you of infections.

Traditionally, fake anti-virus programs misreport genuine files to be malware in the hope of persuading you to fork out to clean your PC of the 'infection'.

However, researchers at Sophos have spotted a fake anti-virus program - also known as rogueware - which actually installs malware files on your PC in an attempt to convince you that it is genuine.

Sophos' Chee Hui said: "Instead of blatantly and randomly misreporting files as malware, what this Trojan has done is to deliberately spawn/create new junk files on the infected computer, with random names and random file extensions and proceeded to detect them."

Rogueware programs are nothing new, with several new variants being spotted in recent weeks.

However, these cheeky new tactics are likely to rile surfers and security firms further.

"To top it all off, like all other FakeAVs, this Trojan also periodically pesters you with annoying pop-up messages asking you to buy their product. And I thought such applications can’t get more annoying, was I wrong indeed!" Hui said.

Offline davy51

  • Loyal Member
  • *****
  • Posts: 1690
Re: New rogueware variant installs malware
« Reply #1 on: September 07, 2009, 21:47 »
I got one of those it disabled all my firewalls ,anti spyware and browsers
The only way I could even get online was with Google Chrome and when I went to online anti virus it would reboot my computer

The only program that even reported it was A-Squared and it couldnt quarantine nor delete it

I had to do a complete install to get rid of it
Dave

Don't walk behind me, I may not lead. Don't walk in front of me, I may not follow. Just walk beside me and be my friend

Albert Camus

Offline Simon

  • Administrator
  • *****
  • Posts: 77923
  • First to score 7/7 in Quiz of The Week's News 2017
Re: New rogueware variant installs malware
« Reply #2 on: September 07, 2009, 23:16 »
Some of them are very nasty, but they can often be removed in safe mode with Malwarebytes, or SuperAntiSApyware.
Many thanks to all our members, who have made PC Pals such an outstanding success!   :thumb:

Offline davy51

  • Loyal Member
  • *****
  • Posts: 1690
Re: New rogueware variant installs malware
« Reply #3 on: September 08, 2009, 13:28 »
It completely disabled both of those even in safe mode Simon
Neither of those would even see it

That was one nasty piece of work
Dave

Don't walk behind me, I may not lead. Don't walk in front of me, I may not follow. Just walk beside me and be my friend

Albert Camus


Show unread posts since last visit.
Sponsor for PC Pals Forum