Antivirus 2009 Security Alert

Posted on July 30, 2008. Filed under: Service Alert | Tags: , , , , , , , , , , , , , , , , |

 

Reliant PC Consulting Service Alert

 

Date: July 30, 2008

 

Subject: Antivirus 2009

 

Purpose

 

This alert has been generated due to an issue that affects my clients’ computer security. A new malware program masquerading as a legitimate anti virus software has emerged. Of particular note are the following:

 

  1. The program looks legitimate.
  2. There are several sites that promote this malware as legitimate.
  3. The distribution and customer awareness of this program used a web based attack on Google.
  4. The software, and others like it, requires payment before the software is “installed” and activated to “protect” you. This is a typical ploy for malware.

 

Background

 

During a service call to optimize a computer it became apparent that it was infected with a program called Antivirus 2009. The program is a threat to the security and functionality of your computer. During research to remove this threat the following information came to light.

 

This threat is in its initial stages. It is an emerging threat and an awareness of this issue will help prevent being a victim of this type of attack.

 

What the Hijack Google Page Looks Like

 

On the next page you will note a screen shot of a Google Main Search page. It looks completely normal EXCEPT the box immediately below the Google Search field. A box named Google Tips indicates that Google has deselected an unregistered copy of Antivirus 2009 on your computer. By clicking on the box you will then initiate the hack.

 

 

 

Clicking on the box will take you to:

 

 

The program looks like this:

 

 


Resolution

 

  1. Keep your anti virus software up to date. As this is an emerging issue several service providers DO NOT detect this threat at this time.
  2. Be aware of this program in general and do not initiate any web activity that directs you to a site that promotes this software.
  3. Ignore any alert that Antivirus 2009 has “detected” any virus on your computer.
    1. Do not attempt to click on the program to close it. This WILL generate more activity and insure infection.
    2. Simply shut down all other programs and then shut down your computer completely.
  4. If you are infected contact me ASAP and I will assist you on the removal of this software.

 

References

 

http://www.bleepingcomputer.com/forums/topic154973.html

http://www.malwarebytes.org/forums/index.php?showtopic=5178

 

 

Conclusion

 

This Service Alert addresses a new and emerging threat. There is a good chance you may not be affected by this particular threat but an awareness of it existence will make it less likely to affect you.

 

If you have any questions or concerns please contact me.

Advertisements

Make a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

4 Responses to “Antivirus 2009 Security Alert”

RSS Feed for Reliant PC Consulting Comments RSS Feed

Hi, I actually gave them a credit card # thinking it was legitimate. But, when I tried to cancel, there were people that helped me cancel it. I was never charged, though. But, I think I should close the credit card account just to make sure.

A gentlemen from the UK was kind enough to email me his solution to this problem:

“Just to let you know, I got the above into my computer, got rid of it, by using system restore and going back a week, that was 4 days ago, it has not come back”

That solution is simple but I have to note that in this particular case the restore points on the laptop I was working on had viruses in them so there was no way of accurately knowing how far back I needed to go to insure no virus was there and even if it was the Antivirus 2009 as this computer had multiple viruses.

Hi, I need to know the way to uninstall that
program in my PC. Kindly help me

Duraimurugan,

I recommend using Malwarebytes malware detection and removal program available free here: http://www.malwarebytes.org/index.php

I would also recommend an anti virus software program such as Avast or AVG.


Where's The Comment Form?

Liked it here?
Why not try sites on the blogroll...

%d bloggers like this: