Saturday, 9 April 2011

Spoof Antivirus back again.

Be Warned! It's back! And lurking out there ready to screw your browsing enjoyment.

Fast Windows Antivirus 2011 is a rogue security software that will be introduced by a fake virus scanner. This scanner will mimic Windows explorer in order to deceive users that the scan was processed locally. In fact the Fast Windows Antivirus 2011 virus scan is running on the server of the malicious web sites where visitors are redirected by a Trojan infection.
At the end of the scan, it will provide Windows Security Alert and state that several infections were detected on the computer. (There aren't actually any infections... it's merely a frightener.) An advise to download an unregistered version of Fast Windows Antivirus 2011 is then displayed. When clicked, this will automatically download and install Fast Windows Antivirus 2011 on local hard drive. A modification will be carried out on the system, adding files and registry entries that will make the fake anti-virus to run each time Windows.

Installing Fast Windows Antivirus 2011 is the worst decision one can ever make when faced with this situation. The best thing to do is ignore every link, prompt and web site. Disconnect the computer from the Internet to avoid infection. Immediately run a full scan of the system using anti-malware and anti-virus application. It is best to install an anti-malware program that can provide a real-time scan to block harmful files and unwanted Internet traffic.
First sign you've been hit, is when this suddenly appears:

If this appears do absolutely nothing. Do not click "OK" Do not try to shut it down. If you do, you will be flooded with pop-ups faster than you can close them.
The only way out is to press ALT-CTRL-DEL to bring up the task manager...

Locate the entry: "Fast Windows Antivirus 2011." Select it, and  press "End Task."
Now, it gets sneaky. This will pop up...

Hit "End Now." Do not hit "Cancel"... (It will just start up with the first warning once again.) You will lose your browsing pages that are open, but this is the only safe way not to get inundated with this little swine. When your browser (Especially Firefox) starts up again, it is likely to ask if you want your pages recovered. Under no circumstances click YES... or you're back to square one, and will get the first pop-up all over again.
If you've clicked anything at all, go to:

to get detailed instructions on how to clean your machine.  Surf wisely... surf safely!

No comments:

Post a Comment