Rogueware - fake antivirus scams, red flags, and how to remove them

Rogueware

What it is

Rogueware (aka scareware or rogue security software) is a fake antivirus/optimizer that pretends your PC is infected, then pushes you to pay for a “full version” to fix invented problems. It uses alarming pop-ups, fake scans, and urgent timers to pressure quick clicks. Once installed, it may block real security tools, alter browser settings, and pester you with more purchase prompts.

Why it matters

You can lose money, install more malware, and disable real protection while thinking you’re safer.

How it works - quick tour

  • Flashy ads or pop-unders claim instant infection.

  • A trial “scanner” always finds dozens of fake threats.

  • Paywall pop-ups demand a license to clean them.

  • Some variants add adware or steal card details.

Red flags

  • Security alerts that look off-brand or full of typos.

  • Tools demanding payment before removing “threats.”

  • Blocked access to Task Manager or your real antivirus.

  • Browser homepage/search suddenly replaced.

Prevent it

  • Download software only from vendor sites or trusted stores.

  • Keep Windows and your AV updated; ignore web pop-up “virus alerts.”

  • If installed, disconnect, uninstall the rogue, run a reputable scanner, and reset browsers.

    Glossary (A–Z)

    All A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

      • Related Articles

      • Phishing

        What it is Phishing is a scam where someone pretends to be a trusted person or service to trick you into giving up passwords, card numbers, or other sensitive data. It shows up in email, texts, social DMs, and look-alike websites. For a quick ...

      • Data Execution Prevention

        What it is Data Execution Prevention (DEP) is a Windows safety net that stops code from running in places it shouldn’t—like the stack or heap. If malware tries to execute from those memory areas, Windows blocks it and shuts the app down instead of ...

      • Malware

        What it is Malware is any software made to harm your device or data. It can steal passwords, lock your files, spy on activity, or hijack your browser. For a quick primer and examples, see our malware explainer. How it spreads Phishing emails and fake ...

      • XMRig Malware

        What it is XMRig malware is a cryptominer that sneaks onto your PC and secretly mines the Monero (XMR) cryptocurrency using your CPU/GPU. You’ll notice slower performance, hot fans, and higher power bills while attackers collect the coins. It often ...

      • Nemucod (JS.Nemucod)

        What it is Nemucod is a trojan downloader/dropper that arrives as JavaScript or PHP and then pulls in ransomware or other malware. It’s commonly spread by email attachments and malicious links. Technical details and IOCs are in our Nemucod overview ...