Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AntiVirus 2009


  • Please log in to reply
9 replies to this topic

#1 samuel3

samuel3

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:36 AM

Posted 31 October 2008 - 03:45 PM

What do you type in google for it to come up or the link?
So i can try to avoid it

Cheers,
Samuel3.

BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:07:36 AM

Posted 31 October 2008 - 05:23 PM

Er....
Posted Image
m0le is a proud member of UNITE

#3 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:36 AM

Posted 31 October 2008 - 05:48 PM

If i clicked that would i get that antivirus 2009?

#4 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:02:36 AM

Posted 31 October 2008 - 06:57 PM

The link posted above is what came up on Google after typing in antivirus 2009.
You will not be infected by clicking on the link.

m0le is in training for malware removal-he would not post anything that would infect or harm your computer.

Edited by Queen-Evie, 31 October 2008 - 06:59 PM.


#5 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:36 AM

Posted 31 October 2008 - 07:21 PM

When i type antivirus 2009, nothing popped up.

#6 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:07:36 AM

Posted 31 October 2008 - 08:27 PM

Samuel,

You won't be able to search for the virus by typing it into Google. It is disguised so it is difficult to find or track down and will wait for unsuspecting people to click on safe-looking links on sites that sell rogue antivirus software or plug-ins to watch videos or whatever.

You can usually avoid these types of sites if you surf responsibly and don't hit certain areas of the web.

Anyway, you don't WANT to find it. It's a malicious program which can cause you a lot for problems.

This is part of an all-clean speech which helpers, in some form, will post for use after they have cleaned a user's machine. Have a read.

Practice Safe Internet

One of the main reasons people get infected in the first place is that they are not practicing Safe Internet. You practice Safe Internet when you educate yourself on how to properly use the Internet through the use of security tools and good practice. Knowing how you can get infected and what types of files and sites to avoid will be the most crucial step in keeping your computer malware free. The reality is that the majority of people who are infected with malware are ones who click on things they shouldn't be clicking on. Whether these things are files or sites it doesn't really matter. If something is out to get you, and you click on it, it most likely will. Below are a list of simple precautions to take to keep your computer clean and running securely:
  • If you receive an attachment from someone you do not know, DO NOT OPEN IT! Simple as that. Opening attachments from people you do not know is a very common method for viruses or worms to infect your computer.

  • If you receive an attachment and it ends with a .exe, .com, .bat, or .pif do not open the attachment unless you know for a fact that it is clean. For the casual computer user, you will almost never receive a valid attachment of this type.

  • If you receive an attachment from someone you know, and it looks suspicious, then it probably is. The email could be from someone you know infected with a malware that is trying to infect everyone in their address book.

  • If you are browsing the Internet and a popup appears saying that you are infected, ignore it!. These are, as far as I am concerned, scams that are being used to scare you into purchasing a piece of software. For an example of these types of popups, or Foistware, you should read this article: Foistware, And how to avoid it.

    There are also programs that disguise themselves as Anti-Spyware or security products but are instead scams. For a list of these types of programs we recommend you visit this link: Rogue/Suspect Anti-Spyware Products & Web Sites

  • Another tactic to fool you on the web is when a site displays a popup that looks like a normal Windows message or alert. When you click on them, though, they instead bring you to another site that is trying to push a product on you. We suggest that you close these windows by clicking on the X instead of the OK button. Alternatively, you can check to see if it's a real alert by right-clicking on the window. If there is a menu that comes up saying Add to Favorites... you know it's a fake.

  • Do not go to adult sites. I know this may bother some of you, but the fact is that a large amount of malware is pushed through these types of sites. I am not saying all adult sites do this, but a lot do.

  • When using an Instant Messaging program be cautious about clicking on links people send to you. It is not uncommon for infections to send a message to everyone in the infected person's contact list that contains a link to an infection. Instead when you receive a message that contains a link, message back to the person asking if it is legit before you click on it.

  • Stay away from Warez and Crack sites! In addition to the obvious copyright issues, the downloads from these sites are typically overrun with infections.

  • Be careful of what you download off of web sites and Peer-2-Peer networks. Some sites disguise malware as legitimate software to trick you into installing them and Peer-2-Peer networks are crawling with it. If you want to download a piece of software a from a site, and are not sure if they are legitimate, you can use McAfee Siteadvisor to look up info on the site.

  • DO NOT INSTALL any software without first reading the End User License Agreement, otherwise known as the EULA. A tactic that some developers use is to offer their software for free, but have spyware and other programs you do not want bundled with it. This is where they make their money. By reading the agreement there is a good chance you can spot this and not install the software.
Visit Microsoft's Windows Update Site Frequently

It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.


Make Internet Explorer 6 and below more secure
  • From within Internet Explorer click on the Tools menu and then click on Options.

  • Click once on the Security tab

  • Click once on the Internet icon so it becomes highlighted.

  • Click once on the Custom Level button.

    • Change the Download signed ActiveX controls to Prompt
    • Change the Download unsigned ActiveX controls to Disable
    • Change the Initialize and script ActiveX controls not marked as safe to Disable
    • Change the Installation of desktop items to Prompt
    • Change the Launching programs and files in an IFRAME to Prompt
    • Change the Navigate sub-frames across different domains to Prompt
    • When all these settings have been made, click on the OK button.
    • If it prompts you as to whether or not you want to save the settings, press the Yes button.
  • Next press the Apply button and then the OK to exit the Internet Properties page.
Use an AntiVirus Software

It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future.

See this link for a listing of some online & their stand-alone antivirus programs:

Virus, Spyware, and Malware Protection and Removal Resources


Update your AntiVirus Software

It is imperative that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. If you use a commercial antivirus program you must make sure you keep renewing your subscription. Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.


Make sure your applications have all of their updates

It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector and Calendar of Updates.


Use a Firewall

I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is susceptible to being hacked and taken over. I am very serious about this and see it happen almost every day with my clients. Simply using a Firewall in its default configuration can lower your risk greatly.

For a tutorial on Firewalls and a listing of some available ones see the link below:

Understanding and Using Firewalls


Install an AntiSpyware Program

A highly recommended AntiSpyware program is SuperAntiSpyware. You can download the free Home Version. or the Pro version for a 15 day trial period.

Other recommended, and free, AntiSpyware programs are Spybot - Search and Destroy and Ad-Aware Personal.

Installing these programs will provide spyware & hijacker protection on your computer alongside your virus protection. You should scan your computer with an AntiSpyware program on a regular basis just as you would an antivirus software.

Tutorials on using these programs can be found below:

Using Spybot - Search & Destroy to remove Spyware , Malware, and Hijackers

Using Ad-aware to remove Spyware, Malware, & Hijackers from Your Computer


Install SpywareBlaster

SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

A tutorial on installing & using this product can be found here:

Using SpywareBlaster to protect your computer from Spyware and Malware


Update all these programs regularly
Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.

Follow this list and your potential for being infected again will reduce dramatically.
Posted Image
m0le is a proud member of UNITE

#7 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:02:36 AM

Posted 31 October 2008 - 11:04 PM

You may not be able to totally avoid Antivirus 2009.
It's possible to become infected by a simple "drive by"-meaning you click on a link that looks like something legitimate, but in reality is a page set up to entice you into downloading Antivirus 2009.
IF you find yourself in that situation, the best thing to do is use task manager to close out the page.
NEVER click on the X to close out the warning-usually it won't work.
Some people are savvy enough to realize this is a dangerous warning, others will panic and actually fall for the trap it has set.
If you want to know more about "scareware" the following article is very informative:

http://www.informationweek.com/blog/main/a...curity_sca.html

Here is another which is an interesting read:
http://www.theregister.co.uk/2008/08/22/an...hack/print.html

While it pertains to links from blogs, there are pictures and descriptions of what XP Antivirus looks like when it pops up on your screen.

It shows and tells HOW to distinguish the the real Windows security center from the fake one.

Particularly interesting to me is the first paragraph under Figure 10-"other sites" (stay away from them) and the warning in the 3rd paragraph under Figure 21. In a perfect world, all computer users would realize the truth of paragraph 3.

#8 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:02:36 AM

Posted 31 October 2008 - 11:19 PM

m0le,

I was cruising through the forums and found A Post Made By Samuel3 Here, which sheds light on why he asked his question here.

#9 Galadriel

Galadriel

    Bleepin Elf


  • Malware Response Team
  • 2,755 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri, USA
  • Local time:01:36 AM

Posted 01 November 2008 - 09:58 AM

Another thing to remember with these drive-by installs is that a lot of the times they come from ads on sites. Some legitimate sites have a revolving randomly generated ad list. Some nasties get inserted in those at times and it's hard for webmasters to know which to deny or block from the list because they get the package, and because the package is administered by the ad company/provider; in other words, the webmasters are not necessarily at fault. For instance, this morning I had one pop up from a legit website I always have open. It was one of the ads that caused the redirect and subsequent AV2009 warning and pop up. I didn't get infected, because of my active protection, but it still tried.

Bottom line is don't click on any ads. Don't close the pop ups with the x. Just use task manager and end task the browser process. If using IE, it's iexplore.exe. That will force close all instances of the browser. If using Firefox, it's firefox.exe.

If you do get a pop up or a warning that looks like it tried to install, make sure you run scans and check.
I cemna prestar aen. Han mathon ne nen. Han mathon ne chae. A han noston ne 'wilith. - Galadriel
'The avatar is changed; I can feel it in the water, I can feel it in the earth, I can smell it in the air.'

Phear teh ceiling cat, for he is roofkittehd! - Basement Cat

I'm a Bleeping Folder, are you? - Join BC in the fight against diseases - Click here
Become a BleepingComputer fan: Facebook

#10 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:36 AM

Posted 01 November 2008 - 05:14 PM

Thanks for this infomation.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users