Are you Guys Familiar with ANTIVIRUS2009 that found in the Web anywhere?

[Guest]

[LEWIS HAMILTON]

Is there any one encounters a BINARY FILE like AV2009INSTALL_77013605.EXE?

Hope to hear from you guys!

Thank you",)

[Commodus]

I think it's a rogue antivirus program. Avoid it like hell, cos I heard it's very difficult to remove 

[DarkButterfly]

Yes, it is a rogue antivirus.

The makers of such crap and alike crap ought to see apple trees grow out off their asses!! 

[Rednose]

Malwarebytes' Anti-Malware should be capable to remove this piece of junk :

http://www.malwarebytes.org/forums/index.php?showtopic=5178

Greetz, Red.

[duke1959]

But can BOClean detect it?  Or CPF?

[eXPerience]

CFP will alert you to it's install, BoClean is unsure.

Xan

[Rednose]

But can BOClean detect it?

Hi duke1959

Yes, BOClean should detect it :

42508. RSK-ANTIVIRUS2009

Fom here : http://www.comodo.com/boclean/trolist.html

Greetz, Red.

[LEWIS HAMILTON]

Guys

BoCLEAN and CFP3 did not detect while ANTIVIRUS2009 or that crap is Scanning Automatically my System. this Malware program is designed to elude Firewalls, Anti-Malware or even Antivirus. I monitor my AVAST! WEB SHIELD while scanning does files from ANTIVIRUS2009, how sad.... no Malware trace were found... COMODO should take Action Against this kind of BANG.... TREAT.

[CGPMaster]

Superantispyware takes care of this Virus/Malware
also Avira (After scanned with SAS in Safe Mode) will pick up the rest

[eXPerience]

Comodo does have protection against it and it's called Defense+, it will block it if you ask it.

You see, this is the problem with detection. The products are updated every moment just to evoide the detection. They aren't stupid the malware makers... (sadly)

Xan

[CGPMaster]

That's true too Defense Will block If you know what to do when it comes up..
but if you don't then you are pretty much toast

that's one flaw with prevention,
unless it becomes automated

CG

[LEWIS HAMILTON]

my PC is infiltrated with ANTIVIRUS2009 "EVEN" I closed immediately my Browser. my CFP3, BoCLEAN did do nothing... even alerts, CFP3 did not show up! how could you explain this?

(im a Vista user. since you don't have a Anti-virus yet for vista, i decide not to get any anti-virus because I'm a solid supporter of Comodo. I'm using Comodo FIREWALL PRO 3 and BoClean  but to cut it short, my Pc infiltrated with at SYSTEM 32 ROOTKITS while surfing the net... why is this happen? i set my Firewall to a maximum strength but its useless... i Scan my Pc using Firewall Pro 3 Defense Plus but suddenly it appears clean! thats why i downloaded an AVAST HOME FREE ANTI-VIRUS because my Pc is becoming unstable and all my Programs is not working properly. when Avast finally Scan my System, Avast deleted 4-Rootkits that harm my System 32. Thanks to avast....  can you imagine Avast outperforms Firewall Pro 3? I tought BoClean is design for Rootkit as well as Firewall Pro 3 But, they do nothing to protect my Pc. i trust comodo but I'm so dissaponted with what happend last time. AVAST HOME ANTI-VIRUS saves my Pc and Repair my Damage system 32 without slowing my PC. I uninstall Comodo MEMORY FIREWALL last day because i makes my PC Slow and it takes a lot of CPU usage. Avast is Lighter Program than Comodo Memory Firewall and (Comodo Antivirus 2.0 "Base on my XP Pc"). i do hope, your Comodo Antivirus 3 will be more effective, LESS CPU USAGE than any other solution out there specially here in philippines.)

[mr_unreal3]

Did you checked the health of Comodo Firewall Pro?

Go to Miscellaneous tab -> Diagnostics. After comodo  repairs the problems, reboot the pc.

I once checked the strength of comodo firewall pro 3 with some leak tests, and the weren't detected bij cpf 3 because there was something wrong with the config of cpf 3, after repairing cpf 3, the leaktest were detected.


Good luck

[Ronny]

007,

can you run a report with this tool, maybe your "settings" are not optimal.

I've analyzed this malware before and with CFP i got some popup's don't think BOClean will alarm on this.
It first shows you a browser window with an animation as if the scanner is already running, and of course your heavily infected according to this animation, after that i got a prompt for an executable to "solve" the problems.

I ran this in a controlled environment and CFP went loud as hell...

you could try to clean up manually, here is a little help.

[eXPerience]

Do you have any pop-ups of the virus like : you're computer has been infected, please download ...  Or was it just in the browser ? I had it once in the browser and it was no infection...

Xan

[Tags:]