Could it be the same as what best4less posted about.
HELP HELP any members got an answer to get rid of windows antivirus 2008 as all my computers have been infected big time ,,do run AVAST on all of them
please please help this poor old pom out
Look Here -> |
Could it be the same as what best4less posted about.
Its doing the rounds at the moment , I have had to remove it from a couple of computers.
I am pretty sure this is where the program sends you. The site looks exactly like the program screens.
You then have to pay them.
* DONT CLICK ANYTHING ON THAT SITE !!!
It's a ppi (pay per install). Black hatters upload torrents of useful programs with this insidious rubbish "wrapped" around them, and then suckers (me included) download the programs, install it and spend the best part of a day figuring out how to get rid of it.
Meanwhile the black hatter gets a % of every dollar each poor sucker who buys this rubbish (supposedly to get rid of what caused the problem in the first place).
Edit: Geez Sanity, that site looks legit doesn't it, they are getting very clever!!
Yeah , its one friggin annoying program. You can pick it up anywhere , both computers I removed it from dont surf " dubious " sites so I am not sure how they got it.
I had it jump up on my screen the other week , but I didnt take the bait and click anything. I tried to close the windown but couldnt , so I had to close it via task manager. You can imagine how many non tech type people must be getting caught up with this one.
$30 to remove something that isnt here in the first place.
I heard that malwarebytes download program should find and remove this program. May need to restore your registry as it attaches it self to security centre. Hope this helps
I've heard that this sh1t can also creep in via an attack on old versions of Sun Java. Apparently, there is an exploit that can drive-by-install this on your PC if you use MSIE and have an older version of Java.
So, just to be sure, head to
sneaky buggers change files and MalwareBytes not picking up on it ...
had manually remove like below link refers to:
Trust thyself only, and another shall not betray thee.
http://s18.postimage.org/h9xu3rrhx/fb_sevapers.jpg
My neighbour had the Antivirus 2009 the other day.
A couple of things I found were:
1. It sent you to a site called something like ht tp : // microsoft.antivirus2009.com/buy or similar.
It looked like it was run by microsoft if you were to just look at the url briefly and not know how a url is structured.
2. It did NOT attach to the security centre, a quick look thru the task monitor showed me that it was an almost identical clone of it. The giveaway was a spelling error in the cloned version.
3. It hijacked the browser. Google would load, but when you search you get redirected to a very legitimate looking microsoft.antivirus2009.com type of url telling you your antivirus is not working and to buy the antivirus 2009 version from them for $49.95
4. It also loaded in some google like toolbars and a few other things into IE's Manage Add-ons list. One was called "Research". If that one is in there you got problems...
Anyhow, to kill it I stopped all Add-ons in internet explorer. Then I killed the tasks in task manager that were related to the google toolbars and the fake security centre.
Then I updated Ad-Aware, and did a scan with it, picked it all up and cleaned it all out.
GONE!!!!!!!
You think the 2008 one is nasty, the 2009 one is slightly cleverer. It almost had me fooled except that I am the dude who always fixes the neighbours computer so I know that it had an antivirus program in it and it wasnt called "antivirus 2009". And the spelling error.
If anyone wants to really track down these buggers the way to do it is to pay the ransom and trace the money. The money always ends up in the REAL hacker's hands somehow. They don't do it for sport.
For the layperson thats impossible.
So the next best thing is to use a number generator to buy their software and have some fun with them.
I can randomly generate you a number if you PM me.
Bookmarks