Researchers at GFI Labs have come across a new breed of rogue AV that takes a less direct route to the victim s wallet. Attack is related to the FakeVimes family of scareware that Google recently began warning users about. Most scareware programs rely on Web-based pop-ups that appear when a victim visits a site that has been compromised. The goal, of course, is to get the unwitting victim to click on the dialog box and install whatever rogue AV tool they re pushing and then get him to pony up for the license fee.
Source: https://threatpost.com/get-your-new-video-codecs-and-scareware-072511/75467/