bsmart newsletter
Bsmart Newsletter
New Name New Version
New Name! New & Improved
AV2009 Testimonials
Antivirus 2009 Alert Customer Testimonials
archives faq's
Archives FAQ's
Spring 2009
bsafehome
Subject: Virus 2009 Alert

Antivirus 2009 is a new rogue anti-spyware program family like Antivirus 2008 and Doctor Antivirus. Antivirus 2009 is installed and advertised through the use of misleading web sites that attempt to make you think your computer is infected with malware. Once installed, Antivirus 2009 will scan your computer and list a variety of fake infections that can't be removed unless you first purchase the software. These "infections" are fake, though, and only being shown to scare you into purchasing the software.

Antivirus 2009 is usually promoted via a ZLOB/MediaAccess Codec installer found on adult and chat i.e. facebook, Myspace and Torrent download websites. Zlob has been the trojan of choice to infect users with pop ups disguised as system notifications that lead to websites with rogue anti-spyware programs. You can also be led to install Antivirus 2009 manually on the rogue website antivirus-scanner.com.

Do not click on any link provided by Antivirus 2009. Once you click on the link provided, you'll be redirected to Antivirus 2009's website (antivirus2009.com) to download and purchase Antivirus 2009's rogue anti-spyware program. Antivirus 2009 has the ability to recreate itself after reboot and its "System scan" messages may continue to pop up on your task manager. Fake messages range from a line at the top of the browser stating an infection was found to adding a box to the Google homepage stating Google detected that your computer was infected. These tactics are just two more methods where Antivirus 2009 uses false information to scare you into purchasing their software.

Symptoms of an Anti-virus 2008/2009 infection:
  • Any program identifying itself as "XP AV 2009", "Anti-virus 2009", "XP Anti-virus 2009" or "Anti-virus 2009" being present on your PC
  • Popups indicating that your computer is infected, usually followed with a "Click here to remove" or "Click here to upgrade to remove" the trojan or virus listed
  • A program listing dozens of viruses that your current anti-virus cannot find or does not list
  • "Windows Security Center" popping up after starting your computer, indicating the need to upgrade to a full version of XP Anti-virus 2009
  • Slower than normal PC performance and stability
  • Numerous undesirable and annoying pop-ups
  • Changed or new icons

What the Hijack Google Page Looks Like: The following screenshot is of Google's main search page. It looks completely normal EXCEPT the box immediately below the Google Search field. A box named Google Tips indicates that Google has detected an unregistered copy of Antivirus 2009 on your computer. By clicking on the box you will then initiate the hack.


Clicking on the box will take you to:


The program looks like this:


STEPS TO TAKE IF YOU SEE THE ANTIVIRUS 2009 Message:
  • Close your browser and/or power down your computer immediately.
  • Do not click on the program to close it.
  • Do not click on anything EXCEPT the browser.
  • If you are infected removal tools can help, but often you must reload your Operating System after reformatting your hard drive.
Prevention:
  • Keep your antivirus software and definitions up to date.
  • Be aware of this program in general and be cautious in your web activity.
  • Do not click on any link provided by Antivirus 2009.
  • Ignore any alert that Antivirus 2009 has “detected” any virus on your computer.
    • Do not attempt to click on the program to close it. This WILL generate more activity and insure infection.
    • Simply shut down all other programs and then shut down your computer completely.
  • If you are infected removal tools can help but often you must reload your Operating System after reformatting your hard drive.