An immense blackhat SEO campaign dedicated to promoting the rogue security product called Personal Antivirus (aka PAV) has been playing ultimate havoc with the cyber-world for the last few months. Let's take a closer look at the scareware tactics employed by the hackers who released Personal Antivirus fraud and keep on distributing their renegade “offspring” with great rapidity.
The apparent conclusions drawn from the analysis of Personal Antivirus scareware testify to its being actively propagated via browser-hijacking trickery. It means Personal Antivirus tends to exploit the trojan-based techniques to infect numerous workstations and get integrated with probably the most vulnerable piece of software installed – the web browser, Internet Explorer being most easily affected.
Next, Personal Antivirus hijackers will drive traffic to insecure domains that pimp the badware through the use of deceptive methods. The distinctive feature of all the domains involved in Personal Antivirus promotion campaign is the URL structure which pre-supposes the use of …v[random number].com extensions. Instances of such websites are as follows: Livefolderscannerv6.com, Antivirusbestscannerv5.com, Antiviruspcscannerv7.com, Antimalwarecheckv6.com, Fast-antimalware-scanv3.com etc. As you can see from the URLs above, all of these hijackers imply some sort of “scanning” or “checking” element – it’s because these domains actually resemble online security scanners allegedly performed by Personal Antivirus. Eventually, on seeing those fake malware detection reports, the most trustful computer users will probably get inclined to install the recommended software, thus unknowingly jeopardizing their PCs and the networks they refer to.
On a number of occasions, Personal Antivirus is known to have shamelessly taken advantage of the search engine results for popular searches like Swine Flu or Jakarta Bombing Incident. PAV rogue domains were among the top search items, which evidently means the traffic rates were high.
Once the unregistered version of Personal Antivirus breaks into the potential victim’s machine, it embeds itself with some of the critical system processes and configures the compromised system to run the PAV executables every single time the PC is started. Consequently, after Personal Antivirus trespasses on one’s computer, it will do its best to drill its way to the user’s credulity and appeal to the natural aspiration for a healthy cyber-environment. The endless phony security scanners and multiple fake alerts mentioning imaginary threats like Trojan.win32.agent.azsy (the most frequently displayed bogus detection) will keep disturbing your computer routine until you either purchase PAV license or remove the pest.
Make the choice at your own discretion but remember - Personal Antivirus license costs around $50 and…one’s common sense, which is a way too high price to pay. All because Personal Antivirus does not belong on any PC since it ruins and distorts the arranged system it infiltrates. Do not surrender to online fraudsters and take adequate and timely measures to get rid of Personal Antivirus scam.
(Huliq)
Total Members: 14197
Topic: Personal Antivirus: Another Malicious Program to Avoid (Trojan.win32.agent.azsy) (Read 7048 times)
