Security software firm PC Tools is reporting that 'surprisingly high numbers' of users have been duped by a dodgy codec named: "multycodecupgr.7.<20xxx>.exe". The codec proports to be a free malware scanner, but instead plants fake malware warnings on PCs, in order to extort money for a product named AntiVirus 2008.
Once downloaded the file dumps a couple of malicious .exe files on to the infected system, often named with a single character. The malware quietly positions 'sav.exe' in a directory it creates called: 'program files\AntiVirus 2008'. Then these files send multiple 'warning' messages to the unsuspecting user that their PC is infected with nasties such as Blaster.Sasser. It isn't, but those warnings keep on coming.
At this point, tech-savvy users will probably smell a rat. Those taken in by the 'warnings' are directed to hxxp://www.s-av2008.com to 'clean up' the problem. Don't go to this site. Definitely don't pay the $40 it asks you to shell out for AntiVirus 2008. It's a scam.
Comments
fdgs said: Friend of mine got stung with this one It is nasty Made mince meat of their system Hours in the registry trying to clean it upremove it They hadnt even got as far as intalling the bogus AV
john@microcola.com said: This free tool after lots of research gets rid of it wwwmalwarebytesorg
Matt Egan said: Aw Thanks Nev Got to agree on some of the postings Criticisms all good incessant point scoring gets a tad dull
Nev said: It must be so good to be in the exalted positions of knowing it all ref the illuminating postings from Tubes and No Go The former cannot read and understand simple English when it says that versions of this malware seem to be able to evade prior detection by leading anti-malware programs and in my case appear to need no positive interaction from the user to infectThe latter pompously assumes that every other person who posts a question or tries to be helpful here is naiveHave you guys ever actually helped anyone in the past or have you such sad shallow personalities that you have to try to boost your egos by such infantile and derogatory postings Why not add your vast knowledge to assist people rather than trying to belittle them With such comments you only belittle yourselves
No Go said: You could stay out of the trafficOr do you want to ban the car just for your sakeMany parents warn their kids about the horror scenario of Hello my dear your mother is un-well so she has asked me to bring you home from schoolNo doubt your answer would be O thank you very muchGrow up and learn to Google
prady said: This is all very well but how best to rid the pest from a PC searching the Net puts you in touch with other anti virus providers who want your cash My Avast did not pick it up ideas please
Nocash350 said: All sorts of free online antivirus software does this it ask you to scan your pc and then gives you fake reults about viruses founds then request that you download a program register for it meaning you pay ridicolous money and then when you use it then nothing comes up
Tubes said: I guess you guys and friends just jump onto the first bus which looks like its going your wayOne Big Issue pleaseSorry guv Just sold the whole lot to that bus load of brain dead surfers
Nev said: Thanks for the info MattThis sounds very similar to the Antivirus2009 malware which is also doing the roundsIt totalled a friends system and tried twice to infect my system whilst surfing non-controversial supposedly safe Websites without any obvious interaction from me and without being picked up by any of my link scanner or anti-malware safeguards
The watcher said: nice warning thanks
Matt Egan said: Theyre all Poor - no worse a scam I suggest that if I put uninvited software on your PC in order to extort money from you youd be justifiably outraged Whatever you think about legitimate software vendors you can always choose not to purchase their products I hope youre right and Google can solve these problems I rather think however that where theres commerce there will be crime I am glad to see that you see advertising as honourable however Its what keeps PCAdvisorcouk free
They're all Poor said: Its no worse a scam after reviewing many other products on the market when compared to the likes of Vista or Kaspersky the - no such thing as 100 secure softwareConclusion whether the corporate thinking is criminal or not the users still end up with not fit for purpose spying softwareIn the end Google will easily solve these problems due to their massive honourable profits from advertising Albeit losing future monies from the failed villains mentioned above