I've encountered Bullshit rouge anti-Viruses in my past with my Windows 7 laptop (both) and its starting to piss me off.
But now, I've soon discovered that they are recurring events that keeps happening with them- they install on themselves.
To make clear: Rouge anti-viruses WILL STEAL YOUR INFORMATION if you interact with it besides closing it.
Heres a list of Rouge anti-virus provided by Wikipedia.
http://en.wikipedia.org/wiki/List_of_rogue_security_softwareNow lets start the process of removing Rouge anti-virus...
Phase one:
1. Open Task manager. Switch to the tab "processes" and scroll down for any file that is in random quotes. Take note of the file's name, in this case, this is the program where the antivirus is located.
2. Open Regedit via Run or Search (windows 7). Find the folder run from
HKEY_Current_user\Software\microsoft\windows\currentversion\run.
3. Check for a string file that the data defines a file that leads to the Temp file.
Some viruses can become smart be hidden somewhere else, but there is one thing: They are named in random letters.
Make note of the path, since we're going there.
4. Keep Regedit open and locate the folder where the data's path define. If the file isn 't showing, on Folder and search options, click on show Hidden files on the view tab.
5. Found the file yet? If you found it, delete it and empty the recycle bin. If you cant find it somehow, skip to step 7.
6. Go back to regedit and delete the registry key for the rouge antivirus.
7. if you haven't found the rouge virus, its harmless unless you actually interact with it. Just make a search for the Filename if Windows task manager still shows it in the process log. After finding it, Delete it as usual.
<Images of the process coming soon>
Note: There is still more strings that I haven't found that leads to certain rouges that I didnt catch. let me find them if I can.
I have read somewhere that Some rouge anti-viruses completely not let you make task manager open. In this case, go immediately to the Temp folder. Delete folders of
very random text if necessary.
Anti-viruses that are recurring to me, Super douchebags who made them, more than the ones who scams to "get rich" from online Avatar sites. XD
UPDATE: AS of 2/16/11 (or 2/17/11)
I have discovered another place where a Rogue antivirus/ Virus lies in.
As always, theres is always error messages... With my luck, I was able to find it from Task manager...
Still, The EXE still have a random lettering... but in a weird twist... It has a description... DOM Module.
unfortunately, I wasnt able to find the Registry string for it so It may take me a while...
I will be Listing sites that I have encountered when I was on...
--------------
Facebook (Uncommon) <-- Downloading a file...wtf
Mangafox (Very Common, more like 99%) <--Sister is catching the viruses and the Fucking rogues here...
Piratebay (Uncommon) <-- Caught twice here and the last of Piratebay DLs made me made this topic.
