1. You want that $100.00 in your pocket or an Amazon Fire TV don't you? Well here's the deal. With our new updated look we are in desperate need of an updated logo. The 'old' one has certainly served us well, but it's time. Find all the details here: bit.ly/1q0k6Wa
  2. DroidForums.net is currently undergoing a major software upgrade. If you are experiencing any problems logging in please: Contact Us

WARNING- AndroLib.com infected with Rogue AntiVirus

Discussion in 'Android General Discussions' started by Erich_F, Mar 13, 2010.

  1. Erich_F
    Offline

    Erich_F New Member

    Joined:
    Nov 13, 2009
    Messages:
    329
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Odessa, FL
    DO NOT navigate to the AndroLib website for the time being. The site is infected with the rogue anti-virus called Anti-Virus 2010. You do not need to click on anything specific there to activate and install the rogue. I have had it happen on two separate occasions, now. Rogues are quite annoying and difficult to remove. My Norton Internet Security Suite didn't detect the intrusion, nor the infection afterwards. I used MalwareByte's Anti-Malware software to remove the first infection. I manually removed this most recent second infection. For more info on this rogue, Google "Antivirus 2010".
  2. adrynalyne
    Offline

    adrynalyne Premium Member Premium Member Developer

    Joined:
    Dec 21, 2009
    Messages:
    2,896
    Likes Received:
    4
    Trophy Points:
    0
    Been visiting it. Still clean.


    *shrug*
  3. Mojo
    Offline

    Mojo New Member

    Joined:
    Nov 25, 2009
    Messages:
    1,358
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    S.W Missouri
    Was just there before I saw this post and I have not noticed anything malicious but thanks for the heads up
  4. Erich_F
    Offline

    Erich_F New Member

    Joined:
    Nov 13, 2009
    Messages:
    329
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Odessa, FL
    I went there last week and got tagged by the rogue. It took me an hour to get my computer cleaned of it. I just went there again tonight, thinking surely it was a fluke...I didn't even click on anything there, and got slammed again.

    If you get tagged by the rogue, it's quite obvious. You will get a fake window pop up that starts "scanning" your computer and finding dozens of "infections" right away.

    I may have been particularly vulnerable since I haven't done a Windows Update since last September, but my Norton is up to date and didn't detect it.

    Who knows how it selects victims, but it's definately on that site.
  5. adrynalyne
    Offline

    adrynalyne Premium Member Premium Member Developer

    Joined:
    Dec 21, 2009
    Messages:
    2,896
    Likes Received:
    4
    Trophy Points:
    0
    Norton is garbage.
  6. Ricocht77
    Offline

    Ricocht77 Member

    Joined:
    Feb 20, 2010
    Messages:
    46
    Likes Received:
    3
    Trophy Points:
    8
    i was on there this afternoon and i was "attacked" by something but my Norton did block it (it was recently updated so that might have been your issue) but there is definitely something still going on that site
  7. ldimick
    Offline

    ldimick New Member

    Joined:
    Nov 28, 2009
    Messages:
    632
    Likes Received:
    0
    Trophy Points:
    0
    Avast has prrotected me a couple of times from that site over the past few weeks. Of course, using a non-Microcrap browser doesn't hurt either.
  8. baniels
    Offline

    baniels New Member

    Joined:
    Dec 19, 2009
    Messages:
    577
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    52556
    Norton is the virus.
  9. christim
    Offline

    christim Super Moderator

    Joined:
    Jan 23, 2010
    Messages:
    5,112
    Likes Received:
    1
    Trophy Points:
    0
    Location:
    New England

    The only safe thing to do when this occurs is to use task manager to shut down your browser. If someone can program the [ok] button of a popup to install something they also can program the [cancel] button to do the same thing. For that matter they also can program the X button to install instead of canceling the pop up. Alt-f4 to close the window but then when you try and leave the bigger main-page the pop-up comes back. Task manager (right click on the task bar at the bottom of the screen) lets you just kill the process or task.
  10. nighthawk700
    Offline

    nighthawk700 New Member

    Joined:
    Jan 28, 2010
    Messages:
    67
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Northern VA
    I got it this past Thursday as well. Found a site that told me how to kill it. I went on AndroLib again today, without anything jumping out on me, but I'm keeping a close eye out...
  11. Rouge
    Offline

    Rouge New Member

    Joined:
    Jan 8, 2010
    Messages:
    51
    Likes Received:
    0
    Trophy Points:
    0
    Ive had this twice in the past week and it is a pain in the a** to get rid of. Now i know where i caught it thanks for the heads up.
  12. seang
    Offline

    seang New Member

    Joined:
    Jan 23, 2010
    Messages:
    312
    Likes Received:
    0
    Trophy Points:
    0
    i was on androlib today, and came out without issue. i only use firefox to browse the web.
  13. KevinJ
    Offline

    KevinJ Member

    Joined:
    Dec 24, 2009
    Messages:
    363
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Earth
    I've been on that site a few times today, and probably every day fora while, and have had nothing untoward happen. No pop-ups, no viruses, nothing.

    Of course I'm fully up-to-date with my OS & anti-virus (I agree Norton sucks), and haven't used IE in years.
  14. seang
    Offline

    seang New Member

    Joined:
    Jan 23, 2010
    Messages:
    312
    Likes Received:
    0
    Trophy Points:
    0
    i was just there again, only using AVG, and firefox. no issues, not even a warning from AVG.
  15. qwiksilver711
    Offline

    qwiksilver711 New Member

    Joined:
    Jan 17, 2010
    Messages:
    324
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Backwoods Montana
  16. JonKyu
    Offline

    JonKyu New Member

    Joined:
    Nov 16, 2009
    Messages:
    2,398
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Provo, UT
    Really great website, it has a nice syncing app (too bad you still have to install it one by one). I've noticed that it doesn't have all the apps available though. Thanks for the heads up! (don't know if it pertain for me though since I'm on a Mac) AndroLib's website is so messy, they need to clean it up a bit.
  17. sneaky_zekey
    Offline

    sneaky_zekey New Member

    Joined:
    Dec 12, 2009
    Messages:
    843
    Likes Received:
    0
    Trophy Points:
    0
    i also have had this happen to me but not from that site but i didnt know hw to get it to go away,so i reinstalled my OS,lol
  18. zenman77
    Offline

    zenman77 New Member

    Joined:
    Dec 7, 2009
    Messages:
    186
    Likes Received:
    0
    Trophy Points:
    0
    Location:
    Toledo, Ohio
    Thanx for the heads up. I use Avast and have really been impressed with it.
  19. darreno1
    Offline

    darreno1 New Member

    Joined:
    Nov 10, 2009
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    0
    We've been fighting this virus for months and I've found the 2 most effective tools against it are Superantispyware and Malwarebytes anti-malware(both can be found on download.com). I have yet to find an antivirus suite (free or paid) that can effectively block this infection. So it's not a bad idea to download the free versions of those tools and keep them on your PC for a rainy day.

    I've visited that site a couple times and thankfully have not had a problem but now I will problably avoid it till they clean it up.
  20. seang
    Offline

    seang New Member

    Joined:
    Jan 23, 2010
    Messages:
    312
    Likes Received:
    0
    Trophy Points:
    0
    ^the guys that write this malware specifically attack norton, and mcaffee.
Search tags for this page

droid 4 antivirus warning

,

how to detect spyware on android

,

malwarebytes for android