Here we go again, or should it be – here we go still!
Add Perfect Defender 2009 to the massive number of rogue security applications currently circulating on the Internet, seeking out unaware users in order to steal their money.
Like all rogue security applications, Perfect Defender 2009 is a master at using Trojans, and fake advertising, to convince unaware Internet users to install this rogue application.
Looking at the website that advertises this parasitic application, it’s difficult not to be impressed. The site appears to be legitimate, and the product appears to be recommended by select members of the computer industry.
(Click pic for larger)
Unfortunately, Perfect Defender 2009 can be installed on a computer system without any action on the part of the user. Delivery methods used by this parasite include dropping a Trojan, in this case the infamous Zlob Trojan, and Internet Browser security holes. It can also be downloaded voluntarily, from rogue security software websites including defender2009.com, the website described earlier, or from “adult” websites.
In the case of the Zlob Trojan being dropped on a system, typically a false security center alert is displayed such as:
To help protect your computer, Windows Firewall has blocked activity of harmful software.
Do you want to block this suspicious software?
Risk Level: High
Description: iSpynow is a Spyware program that records keystrokes and takes screen shots of the computer, stealing personal financial information.
Clicking on “enable protection” begins the process of infecting the system by downloading Perfect Defender 2009.
The objective of Perfect Defender 2009, which is the objective of all Rogue Security Software, is to convince the victim to pay for the “full” version of the application in order to remove what are, in fact, false positives that this program is designed to display on the infected computer in various ways, including fake scan results, pop-ups and system tray notifications.
Rogue Security Software unfortunately, is generally very sophisticated and can write itself into multiple parts of the operating system, and in many cases, it can hide its files, registry entries, running process and services, making the infection difficult to find, and extremely difficult to remove.
If you are a victim of Perfect Defender 2009, or other Rogue Security Software, the following removal solutions will be invaluable.
Malwarebytes, a very reliable anti-malware company, has created a free application to help keep you safe and secure. RogueRemover will safely remove a number of rogue security applications. You will also have the option of downloading the free version of Malwarebytes’ Anti-Malware, a highly rated anti-malware application which is capable of removing many newer rogue applications, including Perfect Defender 2009.
411 Spyware, is a great site that specalizes in malware removal. I highly recommend this site.
Bleeping Computer is a web site where help is available for many computer related problems, including the removal of this particular rogue software.
SmitFraudFix, available for download at Geekstogo is a free tool that is continuously updated to assist victims of rogue security applications including the removal of Perfect Defender 2009.