Content
JS/ScanAndRepair
- Type
- Program
- SubType
- JavaScript
- Discovery Date
- 01/21/2008
- Length
- Minimum DAT
- 5213 (01/22/2008)
- Updated DAT
- 5213 (01/22/2008)
- Minimum Engine
- 5.1.00
- Description Added
- 01/21/2008
- Description Modified
- 01/21/2008 8:36 PM (PT)
Tab Navigation
Characteristics
McAfee(R) Avert Labs recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application. If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software. Please contact the software vendor for further information.
See http://vil.nai.com/vil/DATReadme.aspx for a list of Program detections added to the DATs.
See http://vil.nai.com/vil/DATReadme.aspx for information about how to enable, disable, and exclude detection of legitimately installed programs.
This detection covers components of a web page that pretends to be performing an anti-spyware scan on the user's computer. It follows to display a bogus scan results, with detections of spyware that doesn't exist and recommends the user to pay for an anti-spy product.
When the user tries to close the alert window, it warns and remind the user to buy its product to clean "anti-spyware" off the PC.
These website(s) have been known to be spammed through the Skype instant messenging network using a bogus alert message such as the following:
|
WINDOWS REQUIRES IMMEDIATE ATTENTION Impact of Vulnerability: Remote Code Execution / Virus Infection / Recommendation: Users running vulnerable version should install a Your system IS affected, download the patch from the address below ! http://www.upda{blocked}w.org/?q=scan |
Symptoms
Method of Infection
Removal
-
Variants
Variants
N/A
All Information
Overview -
Characteristics
Characteristics -
McAfee(R) Avert Labs recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application. If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software. Please contact the software vendor for further information.
See http://vil.nai.com/vil/DATReadme.aspx for a list of Program detections added to the DATs.
See http://vil.nai.com/vil/DATReadme.aspx for information about how to enable, disable, and exclude detection of legitimately installed programs.
This detection covers components of a web page that pretends to be performing an anti-spyware scan on the user's computer. It follows to display a bogus scan results, with detections of spyware that doesn't exist and recommends the user to pay for an anti-spy product.
When the user tries to close the alert window, it warns and remind the user to buy its product to clean "anti-spyware" off the PC.
These website(s) have been known to be spammed through the Skype instant messenging network using a bogus alert message such as the following:
|
WINDOWS REQUIRES IMMEDIATE ATTENTION Impact of Vulnerability: Remote Code Execution / Virus Infection / Recommendation: Users running vulnerable version should install a Your system IS affected, download the patch from the address below ! http://www.upda{blocked}w.org/?q=scan |
Symptoms
Symptoms -
Method of Infection
Method of Infection -
Removal -
Removal -
-
Variants
Variants -
N/A
