Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
Home > News > Security

September 3rd, 2009, 11:52 GMT · By

Rogue Antivirus Targets Environmentalists

SHARE:

Adjust text size:


Green AV scareware preying on people's interest in environmental problems
Enlarge picture
Security researchers warn of a new piece of rogueware, called "Green AV," which is making victims. The fake antivirus software preys on people's concerns about environmental issues by promising to donate part of the license costs to a green cause.

The distribution of scareware, also known as rogueware, still represents one of the most successful business models in the underground economy. It involves tricking people into buying a useless computer program by advertising it as an antivirus and scaring them into believing that their computers are at risk. But this approach is not as profitable as it used to be.

In the beginning, pulling off such a scheme wasn't something that everyone could easily do, as it requires substantial effort and skill to make it believable. However, in time, the market segment grew and more cybercrooks got involved. Eventually, it got too crowded, leading to a substantial decrease in profits, which now had to be split amongst everyone.

This has pushed scareware developers to find new ways that could help them top the competition. Some have taken more drastic approaches, converting their applications to ransomware, which holds computers and data "hostage" until the user pays to release it. Others have stepped up the social engineering and added additional lures.

Green AV distribution website
Enlarge picture
Such is the case with a new rogueware known as GreenAV, Green AV, Green Antivirus 2009 or GreenAntivirus2009. "The latest scheme states that, for every fake AV you buy, a donation will be made to an environmental care program. It’s very simple and direct – buy the software and save the planet," security researchers from Websense explain.

The software doesn't offer a trial version, unlike most scareware, but its developers claim that "$2 from every sale we make will be sent on saving the green forests in Amazonia." The donation amount is very low considering the hefty $99 price of the product, but it seems that people are buying it nevertheless. Searching Google for green av will return a lot of reports and removal instructions regarding this threat.

TELL US WHAT YOU THINK:

2,651 hits · 4 comments · Link to this article · Print article · Send to friend · Subscribe to news

MUST-READ RELATED ARTICLES:


New Koobface Variant Drops Scareware and Click Fraud Malware
Ransomware Attacks Browsers
ByteHosting Settles with the FTC in Scareware Advertising Lawsuit
FakeAV Variant Imitates Malicious Software Removal Tool
Twitter's First Ever Scareware Distribution Attack

READER COMMENTS:


Comment #1 by: Eric on 03 Sep 2009, 22:07 UTC reply to this comment

Since they obviously aren't actually donating, I wonder why they didn't say half their revenue would go to green causes...

I guess even when they are lying cyber-crooks are greedy?


Comment #2 by: Arkady on 21 Sep 2009, 01:56 UTC reply to this comment

This hit my computer last night. I'm not much of a computer person so a had to spend about three hours manually deleting it through regedit.exe and command prompt. I need Tylenol...


Comment #3 by: Krissy on 02 Nov 2009, 00:04 UTC reply to this comment

I got this on my computer and when it told me to buy something I knew instantly it was a scam. What can I do to get it off my computer? Will it hold my computer and data hostage until I pay like with "ransomware"? I'm glad that I now know it really is a scam. Thanks guys! :)

Comment #3.1 by: Lucian Constantin on 02 Nov 2009, 10:00 GMT

Hello Krissy,

We are glad that our article confirmed your suspicions that Green AV is actually a malicious program.

If you do not have trouble opening files or accessing stuff on your computer, it is likely not keeping your data hostage. But even if it would display ransomware behavior, paying the cybercrooks should NEVER EVER be considered as an option as it will probably lead to your banking details being compromised. There are always better alternatives.

There are probably many antivirus solutions that are able to detect and remove this threat by now. However, many reports point to Malwarebytes' Anti-Malware program as being a good and free solution to this problem.

You can download the free version of Malwarebytes' Anti-Malware from here: http://www.softpedia.com/get/Antivirus/Malwarebytes-Anti-Malware.shtml (click the blue Download button and choose a download server). Install it, update it and run a system scan, preferably in Safe Mode.

Please note that this is not a full-fledged antivirus solution and the free version does not have a real-time protection component. It is good only for removing infections and performing periodical scans manually.

Therefore, after you clean your computer, you should consider a full antivirus program. If you do not want to pay for a commercial version, there are several free good ones, which you can also find on our website, such as: Microsoft Security Essentials, Avira AntiVir Personal, Panda Cloud Antivirus, AVG Free Edition, Avast! Home Edition.

Copyright © 2001-2012 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2012 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use