Fake antivirus programs

Fake antivirus programs claim 30 million victims

By Jacqui Cheng | Published: October 17, 2008 - 05:56AM CT
More than 30 million Internet users have fallen victim to fake antivirus programs that snatch up people's money and personal information, security research firm PandaLabs has announced. The phenomenon may not be a new one, but it's growing more and more popular as the scammers are getting more crafty. There are now over 7,000 variants of this type of adware, says PandaLabs, and the number of infections caused by it is increasing rapidly.
Users can get infected with this fake antivirus scam in the same manner as any other type of virus or malware—by downloading questionable content from P2P networks, opening e-mail attachments from unknown addresses, or visiting malicious web pages. As most of us already know (probably by servicing the computers of our parents and other less-tech-savvy family members), users are often duped by seeing the software pop up windows that claim the machine is infected, fake bluescreens, or cause other annoyances (PandaLabs notes one where cockroaches crawl all over the desktop).

Many users are motivated to fork
over money to get rid of this ASAP
While many Internet users know not to hand over private information or credit card numbers just because of a few pop-ups, PandaLabs estimates that three percent of them have provided personal details to the purveyors of products that claim to disinfect computers. "Extrapolating from an average European price of €49.95, we can calculate that the creators of these programs are receiving more than €10 million per month," writes PandaLabs.
That is, of course, ignoring the greater financial implications of users handing over their credit card numbers to scammers—the firm notes that, if those numbers are being used fraudulently, then the cost to consumers is obviously quite a bit higher.
Of course, the fact that 30 million users may have fallen for such a scam doesn't surprise us too much. A recent study by the Psychology Department of North Carolina State University revealed that most Internet users don't exercise much caution when presented with fake dialog boxes and pop-up windows with obvious warning signs of malware. Additionally, security software maker AVG found earlier this year that men tend to be much more confident about their online security knowledge than women, but they both end up suffering from identity theft in equal amounts. It just goes to show that even when users talk the talk, they don't always walk the walk when it comes to being safe online.



Report: Fake antivirus programs claim 30 million victims

 

[Bare Foot Kid]

Hello Norm!

It still amazes me that people will 'surf the net' with no protection; seeing that there are great programs such as these available for free; at the links below.

Comodo Firewall Pro

Avast Antivirus Home

Spybot - Search & Destroy








Later Ted

 

[Adamd]

I don't use any active program while surfing the net other than Vista's firewall.

I do however scan with ad-aware, spybot...

I never run into any problems, and I don't waste my money on expensive virus protection because it's not needed for "smart" computer users lol.

 

[mansrm81]

I almost got a fake antivirus program but caught it and ended the window with the task manager. (just got lucky I guess)

 

[boxterduke]

These rogue programs are the worst since they mascaraed as an antivirus and for the normal user, they think that they got a virus and click on yes to install and hello popups galore and other annoying things.

My Aunt got one the other day and nothing could clean it (forgot what is it called, I think XP Antivirus 2008 or so). I had to reformat the drive and reinstall again.

 

[NormCameron]

A friend recently gave me a laptop to look at. It had Antivirus 2008 on it. What a beast it is. I finally removed it, I thought, but then, BSOD every time some component I'd missed tried to run. The upshot was, Reformat. Reinstall. I am convinced you can't remove this vicious little nasty.

 

[mike-cow]

I am convinced you can't remove this vicious little nasty.

It is possible. I've managed to do it on a friends computer. She's happier than ever with her laptop now. Somehow my friends seem to get happier with their computers after I've fiddled around a bit with them than I get by fiddling with my computer... Kind of annoying.

 

[Chappy]

It just goes to show that even when users talk the talk, they don't always walk the walk when it comes to being safe online.

More truthful words have not been uttered recently...

I am convinced you can't remove this vicious little nasty.

It's a Zlob Trojan variant and is easily removed with MalwareBytes AntiMalware (MBAM) program, and other reputable AM programs. It is one of today's easiest to catch malware, it really does nail allot of less savvy users (and even savvy ones too) with it's social engineering techniques, but it can be removed effectively.

I agree BFK, I don't care WHO you are or how well you think you know PC security, if you run around without proper protection, you are going to pay for it sooner or later. I Do know security having worked inside the industry and worked with many well known antimalware developers, and I know how well a properly designed threat can defeat even a seemingly well defended system. So having minimal protection (say...just a firewall..) just won't cut it if you come across some of the REAL threats out there.
I've decompiled and tested well over 1500 malware variants, and some are so well crafted that almost anything you have for defences can be defeated at times. These are not "Skript-kiddie" threats, these are designed by professional engineers and take into account just about everything you may have to protect yourself...and then they defeat them. Any software protections can be defeated because new ways to get around things are discovered daily, so even the best protections can fall if you run across a real 0-day threat designed by a professional at the wrong time. Having quality security products gives you a better chance to avoid infections but they will never guarantee full security, having minimal protection is just asking for trouble...your choice I guess.

Anyone who says that they surf at will with minimal or no protection and NEVER have had a problem, should put another little word in that sentence..."yet".
They simply have to wait for the day they to come (and it will) when they get bitten, or they probably aren't telling the entire truth about never being infected by something before.

 

[NormCameron]

It's a Zlob Trojan variant and is easily removed with MalwareBytes AntiMalware (MBAM) program, and other reputable AM programs. It is one of today's easiest to catch malware, it really does nail allot of less savvy users (and even savvy ones too) with it's social engineering techniques, but it can be removed effectively.

Hi chappie, I used MalwareBytes AntiMalware, as per advice from this forum, I believed I got it all but every now and then something tried to run, giving me a BSOD "No Video Driver?". So I did a reinstall.

 

[pooch]

Its quite easy for us to sit her and discuss this. The trouble is that many average users are just not "savvy" enough, or they just don't care. They are ignorant of the dangers and of how to protect themselves, I have met enough people who believe that the microsoft firewall is all that they need.

The answer here is probably for Microsoft to offer Windows with a Firewall, Antivirus and Anti-spyware out of the box, that could also be uninstalled by anyone who did not want to use it. This would then give a certain amount of protection to the average user.

The problem here though is, as you can imagine The Microsoft bashers would have a field day,

 

[NormCameron]

:sa:You right. Anti-Competative behavior!:sa:

 

[pooch]

Yep a no win solution

until somone finds a way to stop these things in the web making it a safer place this problem is going to be here a long time

 

[AstaLaVista]

These rogue programs are the worst since they mascaraed as an antivirus and for the normal user, they think that they got a virus and click on yes to install and hello popups galore and other annoying things.

My Aunt got one the other day and nothing could clean it (forgot what is it called, I think XP Antivirus 2008 or so). I had to reformat the drive and reinstall again.

Same thing happened to my neighbor's laptop and no matter what I threw at it, it was imposible to get rid off. I did not know of that malaware app at the time so I just went ahead and did a clean install on it since he doesn't have anything worth saving on it.

A friend recently gave me a laptop to look at. It had Antivirus 2008 on it. What a beast it is. I finally removed it, I thought, but then, BSOD every time some component I'd missed tried to run. The upshot was, Reformat. Reinstall. I am convinced you can't remove this vicious little nasty.

My partner got this on his workstation, he says that it came in an e-mail and it all went to hell from there, I asked him if he had opened it and surely he said NO but I know better. Suffice to say, running AVG, Avast or Nod32 on it did nothing and it only caused it to not be able to load to windows. I tried the Repair from the CD and it got it going again but it wasn't able to function correctly after that so we went ahead and did a fresh install.

I don't use any active program while surfing the net other than Vista's firewall.

I do however scan with ad-aware, spybot...

I never run into any problems, and I don't waste my money on expensive virus protection because it's not needed for "smart" computer users lol.

You know, this is something that I have been pondering on for some time now. I do have Windows firewall On and Avast pro on my rig but, everytime I have gotten into a serious problem, no A.V. A.A. or A.S has helped me any because the virus/worm or trojan is just that new so, I am kind of comtenplating to not run anything at all, at the very least, my system will run faster w/o.

On the other hand, that false sense of security having those apps gives you is a refreshing peace of mind... even though it won't help on a 0-day malaware script.

I am torn to say the least!

I agree BFK, I don't care WHO you are or how well you think you know PC security, if you run around without proper protection, you are going to pay for it sooner or later. I Do know security having worked inside the industry and worked with many well known antimalware developers, and I know how well a properly designed threat can defeat even a seemingly well defended system. So having minimal protection (say...just a firewall..) just won't cut it if you come across some of the REAL threats out there.
I've decompiled and tested well over 1500 malware variants, and some are so well crafted that almost anything you have for defences can be defeated at times. These are not "Skript-kiddie" threats, these are designed by professional engineers and take into account just about everything you may have to protect yourself...and then they defeat them. Any software protections can be defeated because new ways to get around things are discovered daily, so even the best protections can fall if you run across a real 0-day threat designed by a professional at the wrong time. Having quality security products gives you a better chance to avoid infections but they will never guarantee full security, having minimal protection is just asking for trouble...your choice I guess.

Anyone who says that they surf at will with minimal or no protection and NEVER have had a problem, should put another little word in that sentence..."yet".
They simply have to wait for the day they to come (and it will) when they get bitten, or they probably aren't telling the entire truth about never being infected by something before.

I also agree but, if none of the apps will help you on a o-day malaware, what good are they really if that virus is the one who will destroy your rig completely? Wouldn't we be better off making sure our backups are up to date and just hope that you will only loose a day or two worth of needed data when they strike?

Again... I'm torn!

 

[NormCameron]

No matter how many precautions we take, Murphy's Law will get us. But, if we take no precautions, who needs Murphy's Law. It becomes just a matter of time. I'd rather reformat once a year than once a week. So I do all the good stuff. Makes me feel better and at least I only have to worry about that damn irishman

​

 

[amd64x2]

I worked on a friend's laptop once, just a routine cleanup because it was slow. He has the infamous Antivirus 2008! I called him and he said it popped up and brought him to a site that told him it was a good program and to buy it for $50! He gave the site his information and card # and bought this virus! Took some persuading to get rid of but its gone! He wasn't able to get in touch with the company (for obvious reasons) but called his credit card company and told them what happened and they credited him.

I always run an adblocker and popupblocker in my browser (FireFox) as well as use an active antivirus program and a hardware firewall in my router to protect myself.

 

[Dwarf]

The main reason why malware writers chiefly target Windows (all variations) is that Microsoft (MS) make up the vast majority of computers in the world. That does not mean to say that the Apple Mac and Linux (and other OSes) are imune - far from it. If one of these manufacturers/operating systems were in the same domineering position as MS then they would be the chief target.

 

[mike-cow]

Oh...it can....he can say whatever he wants, I am not a mod and in no way enforce anyting...it was just a suggestion.

Moderated by myself... While I don't consider my post to have been inapropriate in itself, it was off-topic, and could hpotentially have caused a heated debate on free speech and humanity in general. This is not the time or place for that. My apologies for any inconvenience I have averted.

 

[z3r010]

Back on topic please and maybe remind yourselves of our forum rules-

http://www.vistax64.com/general-discussion/118651-forum-rules.html.

 

[thepizzaman]

The main reason why malware writers chiefly target Windows (all variations) is that Microsoft (MS) make up the vast majority of computers in the world. That does not mean to say that the Apple Mac and Linux (and other OSes) are imune - far from it. If one of these manufacturers/operating systems were in the same domineering position as MS then they would be the chief target.

ok yes that is true.......... the biggest threat to ubuntu users is..... someone giving you bad codes and you inputting them and wipeing your harddrive

 

[thepizzaman]

o has anyone used avari antivi to get rid of any of these viruses?