Posts Tagged ‘spy sherriff’

Transformation from Virus to Malware

Monday, May 10th, 2010

The most familiar type of infection known as a virus has now changed into an even more dangerous form of infection, Malware. ‘Mal’, as the name suggests, describes a program with malicious intent. These programs are from the dark side. What are they called? Some of the most popular names include: Spy Sherriff, Winantivirus, Antivirus 2008 Pro, Antivirus 2009, Internet Security 2010, Advanced Virus Remover, etc. Aside from just being annoying, these programs can bring in and install even more malicious programs that can steal passwords, private documents, and even allow the bad guys to control your computer. One customer in Virginia Beach even had funds withdrawn from a bank account to a Russian criminal due to an advanced computer infection. Fortunately, it was caught in time to stop the transaction. Most programs of this type we see can be traced to either Chinese or Russian origins. Are you protected? Most antivirus programs cannot protect against this new threat, because it appears to be a legitimate program. If / when it is detected, the infection has already installed itself into your computer.

Our approach is threefold:

  1. Determine the type of infection and trace it’s origin (most come from facebook, myspace, email, banners, etc). We can usually tell when the infection occurred, to the minute.
  2. Carefully remove the malware to ensure it is clean. Current infections will reload themselves if just one piece is left intact.
  3. Prevent re-infection

In practice, many of these ‘bad’ programs appear to be ‘free’ antivirus or security programs, which always cause more problems than they solve.  Some are even so bold as to ask the user for credit card information to ‘pay’ for the fake software. Never provide any financial information to any program you are not familiar with, even if it is on your computer. The best suggestion is to shut the power off and call your computer tech. Unlike some other problems, this cannot be safely resolved over the phone or remotely. Attempting this may lead to privacy issues and more. Once infected, the machine must be thoroughly processed in- shop to ensure a complete disinfection. To make things worse, most antivirus programs scan right over these newest infections, not even detecting them! The only way to resolve some of these latest infections is to know what you’re looking for and remove it yourself. That’s where we come in. Our combination of filesystem tools in addition to our years of disinfection experience gives us an advantage in successfully identifying and removing infections from your desktop laptop or server. While surfing the world wide web, be careful where you go and what you click on!