UPDATE 9/10/08:  The saga continues...Watch out for infection by this virus through ads, infected websites, false IE and Google Pages and .pdf files.  This is spread by trying to scare you into downloading it.  It is spread by a Trojan that when downloaded installs the malware.  This Malware downloads other nasty Trojans and fun things.

This malware takes some time to infect your machine.  At first the computer just starts running slow then eventually your machine starts popping up windows telling you that your computer is infected.  It looks real official and very Microsoft like.  It says it runs a scan and finds a bunch of infected files and asks you to click to buy the program and remove the infected files.  Under no circumstances should you click on it.  If you do you will make matters much worse.  If you do get infected.  Call a professional for help with this on it is a real bugger to remove!

Don't be afraid, just stay safe.  If in doubt, don't click on anything and download only from trusted sites.

 

HorrorThere is a particularly nasty email scam afoot...Malware mascarding as a free anti-virus program.

You receive a spam email that offers you a six month trial of a new anti-virus program by the name of "Antivirus XP 2008" and "XP Antivirus 2009".

These rouge anti-virus programs are being spread through spam emial messages  The message contains a link to an automatic download of a phony anti-virus program.  When clicked, the automatic download delvers much more that you expected!

For an example of what the email looks like, the offending url's and the ISP that serves the malware vist the dozleng.com security update site .

 

How do you know what programs are safe?:

I recommend checking any new program at a site called Spyware Warrior.

They have been around since 2004 and keep a list of Rough/Supsect Antispyware products and websites. piranha sign If you have any doubts, check it out here first, before clicking on any link or downloading anything!

They also provide a list of trustworthy adware anti-spyware removal software.

Verizon Business on the ICSA site also provides a list of "certified" anti-spyware products.

If you think you have downloaded a program that might contain malware you can scan the zip files here:

In a previous blog I listed  two site that will scan your downloaded files before you open and  install them here they are again.                                                                             

Jotti (Virus scanning sites on line) and

Virus Total

Safe Places to download programs: The software developers site (provided you know it is safe), or one of the sites listed below , they scan every item before offering it for download.

Cnet's downloads.com

PC World downloads

Tucow's downloads

ZDNet

MajorGeeks

Protect yourself - Practice Safe Surfing:  Watch out for hidden dangers - sites that contain 

  • Hacked pages ( I visited a blog the other day and all the links to the downloads were hacked and pointed to god knows where whatch that address line!)
  • Phishing and fraud scams 
  • Malicious sites
  • Exploits (WMF, VML, CreateText Range to name a few)- These allow hackers to spread rootkits and open your computer ports so that they can they can control your machine remotely (create a Zombi).
Surfs UpJust visiting a bad or hacked Web page can expose your computer to some very nasty things

Here are two programs that will help you practice safe surfing. 

LinkScanner Lite (is FREE) and they also have a Pro version which is not free.  They are programs that integrate into your browser to help you identify bad websites. This program's free version requires you to right clik on a site to get information about it.  The pro version delivers it automatically.

If you are lazy and cheap like me, you want a FREE add on like Finjan Secure Browsing.

I use is Finjan Secure Browsing ( FREE) every day for a long time and love it.  It can be used with either Finjan Safe Surfing WindowFirefox or Internet Explorer.  Just, download and install the program.  When you do a search the program scans and classifies the web addresses and gives you a safety rating of the stie before you visit them.  They place a green check mark next to safe sites, a brown ? mark next to sites they cannot scan and a red X next to sites that are unsafe. This program scans every site in your search every time. 

FREE - Download it for Firefox or Internet Explorer here.

Sources for this Blog:  Donna's Security Flash - Windows Secrets (paid version) and dozeling.com security updates

 Photo Credits:  "Horror" by Dawn Allayn, "Piranha sign"  by Viktors Kozersp and "Surfs Up" by Dan Shirley

Photos downloaded from: Stock.Xchng.com

 

 

 

 

 

 
Post is included in group: Addicted to Active Rain
Post is included in group: Almost Anything Goes
Post is included in group: e-PRO Internet Technology
Post is included in group: Marketing for Cheapskates
Post is included in group: SHARE YOUR FREEBIES

10 Comments on Bogus Offer - Malware Mascarades as a Free Anti-virus Program. - Update 9/10/08

SEP
04
2008
259,431 Points 30 Featured Posts Outside Blog

I think I will go over and check out the scanning site.....thanks again for this info.  We all need our computers to work, and sure don't want them hijacked .
8:45pm • #1
SEP
05
2008
354,195 Points 16 Featured Posts Outside Blog

Excellent information as always Caryn. Thanks. ~Rita
12:04am • #2
123,511 Points

Thanks for your post.  It's amazing to what lengths originators of these virus programs will go to in order to "reel" us in.  Best advice:  Go directly to a trusted vendor to get your anti-virus program!
6:31am • #3
SEP
07
2008

Kathy:  I hope you found the site useful and download things from the site I mentionsd.

Rita:  Thanks as always for your comments.

Jon:  I am always astounded by the creativity of the bad guys and gals.  If only they would use their talents to better the world!  I agree that a trusted source for any kind of antivirus software is the way to go.  Nothing wrong with Free there are lots of wonderful things for Free on the internet.  Just know who you can and cannot trust.
2:54pm • #4
SEP
08
2008

Hi Caryn, Thanks again for all the great tips & tools, you are a lifesaver....well a C-Drive saver in this case! Love the man's face in the photo, it says it all.
7:33am • #5
SEP
09
2008

Cynthia:

As always, thanks for your comments.  I hope it helps.  I know I would get cranky if my computer got a bug! I love that photo.  I love that photo when I went looking for one that worked I thought is was perfect.  Thanks

 
11:50pm • #6
NOV
12
2008
209,959 Points 12 Featured Posts Localism Sponsor Outside Blog

I highly suggest majorgeeks. It's a great site and on par with the digitalcomando.
10:08am • #7
NOV
17
2008

A fellow office mate got infected with this malware.  It kept wanting him to purchase the program to remove the infection that it caused.  What a racket!  I managed to get most of it removed but I am still having problems with the machine.  It seems that most links, especially those from say Yahoo or Google redirect you to some random site.  It is very frustrating when you search in an engine for Lavasoft and end up at some unrelated site.  I have tried the following spyware; HiJackThis, CCleaner, RRAB, ADDSpy, MsConfig-Cleanup and nothinig seems to work.  I tried AdAware but it cannot uptae the DEFs, same with SPyBot Search and Destroy, it's like to ports are blocked for these program.  It also prevents me from going directly to lavasoft.com and ANY other valid antispyware site, it simply gives me a 404 type page. 

I uninstalled IE 7 and reinstalled it but that did not work either.  This thing even redirects when I run IE 7 in "safe mode".  I have spent two days with this machinie and I have a really bad headache.  Can you help me?  I downloaded your guide but I cannot get any of those links to work.  I downloaded the programs in your guide to an external drive but when I try to install them, they don't run properly on the infected machine.

PLease help!!

Thanks, John
11:00pm • #8
NOV
21
2008

I have successfully re-formatted the hard drive C:\ and have successfully re-loaded Windows XP Home on the machine.  I am now in the process of updating Windows to service pack 3 and at the same time running AVF Free to make sure that I got the bug.  After which I will reload his software.  Thank you for the help.

John
1:20pm • #9
OCT
12

great post
7:52am • #10

Leave a response…

(optional)
What does the graphic say?
 
Digitial_coach_ar Rainmaker_large

Caryn Webb Digital Coaching by an e-PRO

Hillsborough, NJ

More about me…

Address: 75 Devonshire Court, Hillsborough, NJ, 08844

Office Phone: (908) 568-8786

Email Me


My clients call me the Queen of FREE. Meaning, open source, free ware and free marketing, design and computer advice. That is the purpose of this blog. To provide you with free tools, ideas, design tips, tricks, fun and plenty of free advice! Pull up a chair...Let's get started.

View Caryn Webb's profile on LinkedIn


Links

Archives

RSS 2.0 Feed for this blog

Find NJ real estate agents and Hillsborough real estate on ActiveRain.