Anti-virus 2008 scanonline

Discussion in 'malware problems & news' started by normishmael, Aug 10, 2008.

Thread Status:
Not open for further replies.
  1. normishmael

    normishmael Guest

    Several times a month I get the Anti-virus 2008 pop-ups while browsing.
    the fake scan comes up with enough hits that I doubt 6months of unprotected surfing on Mongolian snuff porns sites could produce.
    All of the little cute boxs like "hit ok to protect your computer now,or cancel to download program" come up,and the only way to stop it is to kill the Firefox with Task manager.
    Does just having the Hi-jack amount to infection?
    I never download the Exe,and afterward scans with Avira,Malwarebytes anti-malware,
    A-Squared 2,and super anti-spyware come up clean.
    I was told that in order for the Rogue program to seize the browser in this way,
    the system must be infected.
    In fact,I submited to a full malware removal operation at CastleCops without finding
    anything in the past.
    Should I go through the whole cleaning process with a Forum again?
  2. Rmus

    Rmus Exploit Analyst

    Mar 16, 2005
    My experience with all of those sites is that with javascripting turned off, the exploits don't run.

    See the Rogue...Antivirus2009 thread in this forum for more information.

  3. normishmael

    normishmael Guest

    Thanks Rmus,Ok I turned it off in Firefox.
    no great hardship,and certainly worth a try.
  4. Malcontent

    Malcontent Registered Member

    Dec 30, 2005
    Cleveland, Ohio USA

    Try the "noscript" add-on for Firefox. It will increase your protection while browsing.
  5. normishmael

    normishmael Guest

    Yes,Its great.I have used it for awhile. Ad-blocker on the other hand did not help with my problem.
    As soon as I blocked a address for the one of the scans,the same Rogue would show up with another URL.

    The Disable Java script option is resounding success.
    I tried opening a series of tabs to some pretty shady wares sites,and sure enough,
    the Rogue page came up on one of them,but it was unable to run its scam-scan,or take over Firefox.
    It was a easy kill just by closeing the tab.

Thread Status:
Not open for further replies.