JS/ScanAndRepair
Additional type information.
Date that AVERT discovered this threat.
File size, in bytes, of the threat.
McAfee DAT files contain detection and repair information for threats. The Minimum DAT field specifies the lowest/oldest DAT version that is capable of detecting the first incarnation of a threat, and the release date. The highest/newest DAT version should always be used for the most complete protection and are available on the Anti-Virus Updates page.
Each description displays the minimum, fully tested, DAT version that includes regular detection for a particular threat. These fully tested DATs are released on a daily basis. If necessary, they are also released when a Medium, Medium On Watch, or High risk threat is discovered. An EXTRA.DAT will also be posted for these more prevalent threats, if necessary.
For each description listed, detection is always available. In the event that the DAT version specified is not yet available, an EXTRA.DAT file may be downloaded via the McAfee AVERT Extra.dat Request Page. Alternatively, minimally tested HOURLY BETA DAT files are available for downloading.
McAfee DAT files are constantly being updated to enhance detection capabilities. The Updated DAT field specifies the released DAT version that contains the most up to date detection.
The scan engine uses the DAT files to detect threats. The Minimum Engine field specifies the lowest/oldest engine version that is capable of detecting this threat. The highest/newest engine version should always be used for the most complete protection and are available on the Anti-Virus Updates page.
Date/time this description was published using Pacific Time.
Date/time this description was last modified using Pacific Time.
Tab Navigation
Characteristics
McAfee(R) Avert Labs recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application. If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software. Please contact the software vendor for further information.
See http://vil.nai.com/vil/DATReadme.aspx for a list of Program detections added to the DATs.
See http://vil.nai.com/vil/DATReadme.aspx for information about how to enable, disable, and exclude detection of legitimately installed programs.
This detection covers components of a web page that pretends to be performing an anti-spyware scan on the user's computer. It follows to display a bogus scan results, with detections of spyware that doesn't exist and recommends the user to pay for an anti-spy product.
When the user tries to close the alert window, it warns and remind the user to buy its product to clean "anti-spyware" off the PC.
These website(s) have been known to be spammed through the Skype instant messenging network using a bogus alert message such as the following:
|
WINDOWS REQUIRES IMMEDIATE ATTENTION
=============================
ATTENTION ! Security Center has detected malware on your computer !
Affected Software:
Microsoft Windows NT Workstation
Microsoft Windows NT Server 4.0
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Win98
Microsoft Windows Server 2003 <?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" /><o:p></o:p>
Impact of Vulnerability: Remote Code Execution / Virus Infection /
Unexpected shutdowns <o:p></o:p>
Recommendation: Users running vulnerable version should install a
repair utility immediately <o:p></o:p>
Your system IS affected, download the patch from the address below !
Failure to do so may result in severe computer
malfunction.<o:p></o:p>
http://www.upda{blocked}w.org/?q=scan |
Removal
-
