General Antivirus and Win Enterprise Defender – Panda Security Takes a Look

Courtesy of Panda Security – This week’s PandaLabs report looks at a worm, a Trojan and two new fake antiviruses.

The two fake antiviruses are General Antivirus:

image

and Win Enterprise Defender:

image

Both are rogueware programs that scan the hard disk and mark normal non-infected files in different folders as malware. They ask the user to purchase a license (of a fake antivirus), at a very attractive price to resolve this issue.

Unaware users (even those who have an antivirus), on seeing that these rogueware programs detect more alleged malware, could be tempted into purchasing.

image

image

Users can purchase the fake antivirus’ with Visa or MasterCard. Additionally, they are asked for their credit card details which may then be used fraudulently.

Removal help for these nasties is further on in this article.

SpyAutorun.A is a worm with keylogger features which is able to steal users’ confidential data. All the information is collected in a text file which is sent to hackers’ email addresses.

Being a worm, it spreads through the network via previously infected removable drives, hard disks, memory cards, portable hard disks, etc.

Gymizi.A is a Trojan that displays annoying messages and restarts the infected computer. As soon as it infects a user and on opening the browser, it displays a small animation of a progress bar and inserts a message in the browser’s title bar.

image

Every so often it displays an error pop-up with the message “fuck musang berapi!!!” and restarts the computer. Once the system is restarted, it displays a screen with offensive texts. It also alters the registry to ensure it is run on every system startup.

image

More information about these and other malicious codes is available in the Panda Security Encyclopedia. You can also follow Panda Security’s online activity on its Twitter and PandaLabs blog.

General Antivirus and WinEnterpriseDefender Removal:

If you have become infected by General Antivirus, WinEnterpriseDefender, or other scareware (rogue software), have your PC worked on by a certified computer technician, who will have the tools, and the competency, to determine if the infection can be removed without causing system damage. Computer technicians do not provide services at no cost, so be prepared for the costs involved.

If you feel you have the necessary skills, and you want to try your hand at removal, then by all means do so.

The following free resources can provide tools and the advice you will need to attempt removal.

Malwarebytes, a very reliable anti-malware company, offers a free version of Malwarebytes’ Anti-Malware, a highly rated anti-malware application which is capable of removing many newer rogue applications.

411 Spyware – a site that specializes in malware removal. I highly recommend this site.

Bleeping Computer – a web site where help is available for many computer related problems, including the removal of rogue software. This is another site I highly recommend.

SmitFraudFix, available for download at Geekstogo is a free tool that is continuously updated to assist victims of rogue security applications.

What you can do to reduce the chances of infecting your system with rogue software.

Be careful in downloading freeware or shareware programs. Spyware is occasionally concealed in these programs. Download this type of program only through reputable web sites such as Download.com, or sites that you know to be safe.

Consider carefully the inherent risks attached to peer-to-peer (P2P), or file sharing applications.

Install an Internet Browser add-on that provides protection against questionable or unsafe websites. My personal favorite is Web of Trust, an Internet Explorer/FireFox add-on, that offers substantial protection against questionable or unsafe websites.

Do not click on unsolicited invitations to download software of any kind.

If you enjoyed this article, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

About these ads

6 Comments

Filed under Anti-Malware Tools, Don't Get Scammed, Don't Get Hacked, downloads, Free Anti-malware Software, Freeware, internet scams, Malware Advisories, Malware Reports, Manual Malware Removal, Online Safety, Panda Security, PandaLabs, Rogue Software, Rogue Software Removal Tips, Software, System Security, trojans, Viruses, Windows Tips and Tools

6 responses to “General Antivirus and Win Enterprise Defender – Panda Security Takes a Look

  1. Dave Brooks

    Ya know Bill, I think you could have a blog about nothing but rogue AV apps, and you’d be able to post a new one every day, these thing multiply faster than rabbits!

    • Bill Mullins

      Hey Dave,

      I read recently that there are 1,000′s of these blasted programs floating on the Internet, so I have no problem with your assessment. Actually, I got tired of writing about this stuff earlier this year, despite the enormous number of hits this type of article can produce. For example, I wrote an article last year on Antivirus 360 (as a professional Tech, one I’m sure you’re familiar with), that has had over 128,000 reads. As you said “these thing multiply faster than rabbits” and I find it impossible to keep up.

      Bill

  2. Pingback: General Antivirus and Win Enterprise Defender – Panda Security … | Newbie Lagi Ngeblog dan belajar mencari uang di internet

  3. Pingback: ajf7688 Blog - General Antivirus and Win Enterprise Defender – Panda Security …

  4. Pingback: General Antivirus and Win Enterprise Defender – Panda Security … CXO ceo cfo cto coo cio

  5. טכנאי מחשבים

    great and useful article,keep it up!