| Users Online Now: 1,820 (Who's On?) | Visitors Today: 551,403 | |
| Pageviews Today: 918,919 | Threads Today: 329 | Posts Today: 5,990 |
| 10:46 AM | ||
| Users Online Now: 1,820 (Who's On?) | Visitors Today: 551,403 | |
| Pageviews Today: 918,919 | Threads Today: 329 | Posts Today: 5,990 |
| 10:46 AM | ||
Trojan calling itself Vista Antivirus 2012 defence. | |
| Whalin Rift Offer Upgrade  User ID: 1483232  United States12/22/2011 12:20 PM Report Abusive Post Report Copyright Violation | In the past few days I have noticed some of the websites we use to get the real news are under attack by the adspace they sell. This is the same fake antivirus program with no uninstall we have seen before but its easy to defeat if you know what to do before hand. Its calling itself "Vista Antivirus 2012" there is no such thing. First, be ready to kill your pc instantly if you notice your antivirus program detects a trojan or if Adobe reader launches for no reason. When that happens I simply pull the power and crash the computer. Restart in safe mode. "Run as Administrator" System Recovery and choose your restore point. Wait for the system recovery screen sometimes it takes a few to open. Let recovery do its thing and when it reboots you will be clean. Remember to choose Run as Administrator or it launches the fake antivirus. Make sure you have Malwarebytes installed and update it frequently so if you are truely hozed and lose internet you can still run that. You are welcome in advance, and MERRY CHRISTMAS!  |
| Whalin Rift (OP) User ID: 1483232 United States12/22/2011 12:25 PM Report Abusive Post Report Copyright Violation | |
| Anonymous Coward User ID: 1065356 United States12/22/2011 12:33 PM Report Abusive Post Report Copyright Violation |  you're not likely to notice anything until it's too late you need RKILL to stop it when it's running malwarebytes to remove the exe-s and startup entries and combofix to remove the rootkit which inserts itself into tcpip stack to redirect your google searches etc  |
| Whalin Rift (OP) User ID: 1483232 United States12/22/2011 12:36 PM Report Abusive Post Report Copyright Violation | |
| dikkie User ID: 1328988  Netherlands12/22/2011 12:40 PM Report Abusive Post Report Copyright Violation | |
| Anonymous Coward User ID: 1262998 United States12/22/2011 12:43 PM Report Abusive Post Report Copyright Violation | In the past few days I have noticed some of the websites we use to get the real news are under attack by the adspace they sell. Quoting: Whalin Rift This is the same fake antivirus program with no uninstall we have seen before but its easy to defeat if you know what to do before hand. Its calling itself "Vista Antivirus 2012" there is no such thing. First, be ready to kill your pc instantly if you notice your antivirus program detects a trojan or if Adobe reader launches for no reason. When that happens I simply pull the power and crash the computer. Restart in safe mode. "Run as Administrator" System Recovery and choose your restore point. Wait for the system recovery screen sometimes it takes a few to open. Let recovery do its thing and when it reboots you will be clean. Remember to choose Run as Administrator or it launches the fake antivirus. Make sure you have Malwarebytes installed and update it frequently so if you are truely hozed and lose internet you can still run that. You are welcome in advance, and MERRY CHRISTMAS! OP I do lots of PC Repairs and I gotta say this virus you speak of is a really nasty one for many ppl who do not know much about computers. True, it is an easy fix if the user knows what to do. By all means your post will help a lot of ppl if they run across this issue. I have come across this virus in many different names seems like a new one about every 6 months. Basically just keeping your system secure and updated should prevent this attack as you clearly stated. Thanks again OP I will log in to give you Karma and 5 Stars. Much deserved! Merry Christmas!  |
