• Rogue Antivirus masquerades as AVG Antivirus

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Rogue Antivirus masquerades as AVG Antivirus

    Author
    Topic
    WSDeadeye81
    AskWoody Lounger
    February 6, 2011 at 3:18 pm #474667

    Rogue:Win32/FakeXPA, another of those fake rogue malware critters, has stolen the AVG logo to use on their pop-ups within browsers. It looks alarmingly real. Check out the details here on Softpedia.

    It should be obvious if you see a pop-up and you do not use AVG Antivirus 2011. But for those who do have it installed, it only takes a moment to be caught with your proverbial pants down. 😉

    Reply | Quote
    Viewing 5 reply threads
    Author
    Replies
    • WSBanyarola
      AskWoody Lounger
      February 7, 2011 at 2:33 am #1266337

      When will people ever learn to NEVER NEVER NEVER…click on popups…

      Reply | Quote
    • WSruirib
      AskWoody Lounger
      February 10, 2011 at 9:31 am #1266927

      I am not even sure that you need to click the darn thing. I was on a page which I cannot even remember what it was, and all of a sudden had a supposed scan being run, which, in less than a second, told me my PC had viruses. Of course, I immediately realized it was one of these rogue apps, so I closed the browser window and the issue was gone. But I must say that I didn’t click it, at least not explicitly, I know a bit better.

      Reply | Quote
    • WSBanyarola
      AskWoody Lounger
      February 10, 2011 at 9:40 am #1266929
      Reply | Quote
    • WSphysician97
      AskWoody Lounger
      February 10, 2011 at 9:44 am #1266932

      The longer the bug is out there, the more fixes become available.

      Reply | Quote
    • WSDeadeye81
      AskWoody Lounger
      February 10, 2011 at 3:28 pm #1267145

      A good way to send malware like that packing is to close the browser window by right clicking the Taskbar, selecting Task Manager, Processes tab, and right click the browser executable and select End Process. That way there is absolutely no clicking inside the affected browser.

      Reply | Quote
    • WSBanyarola
      AskWoody Lounger
      February 10, 2011 at 4:08 pm #1267152

      Yes, whenever I suspect something I always close my browser using the task manager.

      Reply | Quote
      • WSphysician97
        AskWoody Lounger
        February 13, 2011 at 8:48 am #1267550

        Interesting, but I came home Friday and my wife had the AVG bug on her laptop. I closed the popup with taskmanager, ran rkill – it found two trojans, then ran malwarebytes and rebooted the laptop. AVAST did a boot up scan and found nothing.

        the trojan prevents malwarebytes, SAS and the antivirus from removing the package.

        Reply | Quote
    Viewing 5 reply threads
    Reply To: Rogue Antivirus masquerades as AVG Antivirus

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.