IT Consulting and Tech Support Blog

New rogue spyware: AV Security Essentials

What this infection does:

AV Security Essentials is a rogue anti-spyware program from the VirusDoctor family. It is designed to look almost exactly like Microsoft Security Essentials to try and fool users. This infection is promoted through web sites that show advertisements that pretend to be online anti-malware scanners. These scanners will then pretend to scan your computer, and when finished, will state that your computer is infected and that you need to download and install AV Security Essentials to protect yourself. The truth is that these online scanners are all fake and are only an advertisement. They have no way of knowing what is running on your computer.

Once AV Security Essentials is installed on your computer it will be configured to start automatically. It will also create numerous files that will be detected by the program as malware, but these will all be fake.

When the program scans your computer it will detect the files it created and state that they are infections. It will then prompt you to remove the files, but will not allow you to do so until you first purchase the program. This is a scam as the files are all harmless and are created by the AV Security Essentials program in the first place. Please ignore any of the scan results this program displays.

While AV Security Essentials is running it will also display fake security warnings that are designed to make you think that your computer has a severe security problem. The text of some of the alerts you will see are:

System Alert
malicious applications, which may contain Trojans, were found on your computer and are able to be removed immediately. Click here to remove these potentially harmful items using AV Security Essentials.

Warning! Access conflict detected!
An unidentified program is trying to access system process address space.
Process Name: AllowedForm
Location: C:\Windows\…\taskmgr.exe

Warning! Identity theft attempt detected

Warning! Virus detected
Threat Detected: Trojan-PSW.VBS.Half
Description: This is a VBScript-virus. It steals user’s passwords.

As all of these security alerts are false, they should be ignored.

AV Security Essentials was created to scare you into thinking your computer was severely infected so that you would then purchase it. It goes without saying that you should definitely not purchase this program, and if you already have, please contact your credit card company and dispute the charge. Lastly, it would be wise to have your machine professionally cleaned and checked out to make sure it is malware free and safe for online use.

This entry was posted in Exploits, Virus Outbreak Alerts, Vulnerabilities, Web Security and tagged , , . Bookmark the permalink. Follow any comments here with the RSS feed for this post. Post a comment or leave a trackback: Trackback URL.

Post a Comment

Your email is never published nor shared. Required fields are marked *


You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>