Anitivirus 360 Virus - GoFuckYourself.com

Compdoctor · 02-28-2009, 04:57 PM

My daughter has been doing some on line college stuff, and has been hit with this virus alot. Just passing the news, its a bugger to get out.

Antivirus 360 is a rogue anti-spyware program that uses false scan results and aggressive advertising in order to promote itself. This rogue is advertised by the Vundo Trojan and is replacing the Antivirus 2009 rogue program that Vundo has been aggressively advertising. If you are infected with the Vundo Trojan you will see a large amount of pop-ups stating that your computer is infected and that you should install Antivirus 360 in order to protect yourself. If you click on the ad, Antivirus 360 will be downloaded to your computer and you will be prompted to install it.

Once installed, Antivirus 360 will be configured to start automatically when you start Windows. Once started, the program will perform a scan, and when done, will list a variety of legitimate or nonexistent files as infections that cannot be removed unless you first purchase the program. What is so dangerous about these scan results is that the files that Antivirus 360 states are infections are actually legitimate Microsoft files, that if deleted, will cause Windows to become unusable. Therefore, if someone believes the results from this program they may manually delete the files thinking they are infections and cause their computer to no longer function. Some files that it states are infections are:

C:\Windows\System32\svchost.exe
C:\Windows\System32\alg.exe

While running you will also see a constant barrage of false security alerts stating that your computer has a variety of security risks. These risks range from files being modified to private data being sent to a remote host. These alerts, though, are false and are only being shown to further scare you into thinking your infected, when in fact the Antivirus 360 program is the actual infection. Unfortunately, these alerts coupled with the Vundo Trojan will affect your computer's performance and you will notice that it begins to operate slower.

Angry Jew Cat - Banned for Life · 02-28-2009, 04:59 PM

I just finished cleaning this off a friends computer the other day. Was a serious pain in the fucking ass. I don't know how she got it, but FUCK. It's an aggravating one alright. It literally had her cooling fans screaming. Every time I thought it was cleaned there was more shit to deal with. Finally I just backe dup her shit and formatted/reinstalled...

Machete_ · 02-28-2009, 05:28 PM

Download http://download.bleepingcomputer.com...mbam-setup.exe
Disable Systemrestore
REboot in Failsafe with network
Run mbam-setup.exe
Reboot in normal mode
Remove your curent antivirus protection
Install TrendMicro or Kaspersky

Keep your PC updated

PornAddict · 02-28-2009, 05:31 PM

Yeah... I had this. It was a monster to get rid of, too. I used like 3 different programs to remove it.

If I remember, I rebooted in safe mode.
Ran spybot search and destroy
Ran Malware bytes
Ran AVG Free version

That cleaned out my system.

- PornAddict

polish_aristocrat · 02-28-2009, 05:40 PM

Quote:

Originally Posted by ebus_dk

Download http://download.bleepingcomputer.com...mbam-setup.exe
Disable Systemrestore
REboot in Failsafe with network
Run mbam-setup.exe
Reboot in normal mode
Remove your curent antivirus protection
Install TrendMicro or Kaspersky

Keep your PC updated

I need to agree with ebus_dk

malwarebytes is the leading malware removal tool nowadays

tony286 · 02-28-2009, 05:58 PM

im going to try that malware one

02-28-2009, 04:57 PM	#1
Compdoctor Confirmed User Join Date: Aug 2001 Location: True 3D Content Posts: 1,937	Anitivirus 360 Virus My daughter has been doing some on line college stuff, and has been hit with this virus alot. Just passing the news, its a bugger to get out. Antivirus 360 is a rogue anti-spyware program that uses false scan results and aggressive advertising in order to promote itself. This rogue is advertised by the Vundo Trojan and is replacing the Antivirus 2009 rogue program that Vundo has been aggressively advertising. If you are infected with the Vundo Trojan you will see a large amount of pop-ups stating that your computer is infected and that you should install Antivirus 360 in order to protect yourself. If you click on the ad, Antivirus 360 will be downloaded to your computer and you will be prompted to install it. Once installed, Antivirus 360 will be configured to start automatically when you start Windows. Once started, the program will perform a scan, and when done, will list a variety of legitimate or nonexistent files as infections that cannot be removed unless you first purchase the program. What is so dangerous about these scan results is that the files that Antivirus 360 states are infections are actually legitimate Microsoft files, that if deleted, will cause Windows to become unusable. Therefore, if someone believes the results from this program they may manually delete the files thinking they are infections and cause their computer to no longer function. Some files that it states are infections are: C:\Windows\System32\svchost.exe C:\Windows\System32\alg.exe While running you will also see a constant barrage of false security alerts stating that your computer has a variety of security risks. These risks range from files being modified to private data being sent to a remote host. These alerts, though, are false and are only being shown to further scare you into thinking your infected, when in fact the Antivirus 360 program is the actual infection. Unfortunately, these alerts coupled with the Vundo Trojan will affect your computer's performance and you will notice that it begins to operate slower. __________________ Content By Compdoctor- Original 3D Cartoon Work 3D Comics Anime Resource Accepting Toon/Hentai Links

02-28-2009, 04:59 PM	#2
Angry Jew Cat - Banned for Life (felis madjewicus) Industry Role: Join Date: Jul 2006 Location: In Mom & Dad's Basement Posts: 20,368	I just finished cleaning this off a friends computer the other day. Was a serious pain in the fucking ass. I don't know how she got it, but FUCK. It's an aggravating one alright. It literally had her cooling fans screaming. Every time I thought it was cleaned there was more shit to deal with. Finally I just backe dup her shit and formatted/reinstalled... Last edited by Angry Jew Cat - Banned for Life; 02-28-2009 at 05:01 PM..

02-28-2009, 05:28 PM	#3
Machete_ WINNING! Industry Role: Join Date: Oct 2002 Posts: 14,579	Download http://download.bleepingcomputer.com...mbam-setup.exe Disable Systemrestore REboot in Failsafe with network Run mbam-setup.exe Reboot in normal mode Remove your curent antivirus protection Install TrendMicro or Kaspersky Keep your PC updated

02-28-2009, 05:31 PM	#4
PornAddict Confirmed User Join Date: Feb 2002 Location: New Jersey Posts: 1,401	Yeah... I had this. It was a monster to get rid of, too. I used like 3 different programs to remove it. If I remember, I rebooted in safe mode. Ran spybot search and destroy Ran Malware bytes Ran AVG Free version That cleaned out my system. - PornAddict

02-28-2009, 05:58 PM	#6
tony286 lurker Industry Role: Join Date: Aug 2002 Location: atlanta Posts: 57,021	im going to try that malware one