Rogue AV

Discussion in 'malware problems & news' started by Dregg Heda, Mar 4, 2010.

Thread Status:
Not open for further replies.
  1. Dregg Heda

    Dregg Heda Registered Member

    Joined:
    Dec 13, 2008
    Posts:
    830
    So I went to this website when I was highjacked and this rogue av popped-up asking to be installed. I couldnt close the page manually so I used the task manager to close it. This should have been enough to prevent infection right? My browser was sandboxed via sbie. Thanks.
     
  2. FiOS Dan

    FiOS Dan Registered Member

    Joined:
    May 24, 2006
    Posts:
    86
    Location:
    Redondo Beach, CA
    Believe me you would know by now if your system had been compromised. Based upon my own sad experiences, I bet that of the two defenses you employed Sandboxie is the one that saved your tail.
     
  3. Biscuit

    Biscuit Registered Member

    Joined:
    May 26, 2006
    Posts:
    978
    Location:
    Isle of Man
    Using Task Manager to close the window was quick thinking & saved your bacon. Never trust a "cancel" button from a fraudster! :cool:
     
  4. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    You could also right click Sandboxie's tray icon and selected terminate programs then delete contents as well.
     
  5. Dregg Heda

    Dregg Heda Registered Member

    Joined:
    Dec 13, 2008
    Posts:
    830
    Yea it was my fear that the "cancel" button would authorise the install as well. Thankfully the task manager came through for me!
     
  6. Dregg Heda

    Dregg Heda Registered Member

    Joined:
    Dec 13, 2008
    Posts:
    830
    Thats a great idea Franklin, thanks!
     
  7. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    If your interested in seeing an analysis of fake av's, then..
    http://blog.damballa.com/?p=578
    Aslo...
    http://www.damballa.com/research/aurora/
     
  8. andyman35

    andyman35 Registered Member

    Joined:
    Nov 2, 2007
    Posts:
    2,336
    Very interesting read there Searching.:thumb: :thumb:
     
Loading...
Thread Status:
Not open for further replies.