Hallmark Card Virus (Again) and the Evil AntivirusOn.com

Ms. Ducktoes really feels for the readers whose computers have the Hallmark card virus. So many of you are still coming to this blog for a fix. This has been going on for months.

Since so many of you are still getting infected, today I went on-line to do a more research. I was wondering if there were any new variants etc.

What I found troubled me:
This Google search result for

The links lead to a Youtube video which pretends to be a Tutorial but really is an ad for AntispywareOn.com, a rogue anti-virus site that will give you–you guessed it–more spyware and viruses. You can play the video without getting infected but don’t go to AntivirusOn.com. The video’s not much to see; it’s mostly obscured by big letters telling you to go to AntivirusOn.com. Click here to see the video.

Now here’s a video that’s more interesting. The video maker “Video search engine” infects a virtual machine with what you get on AntivirusOn.com and makes a video of the result. And, oh dear, the result looks surprisingly familiar: like another variant of the Windows XP Antivirus 2008/2009!

Ms. Ducktoes wants to stamp her (web) foot, she’s so sick of the Hallmark card virus and the Windows XP Anti-virus!!!

If you have the Hallmark virus, don’t go to AntivirusOn.com and even get more spyware and viruses. I’m sure some of you have already.

If you need to remove the Hallmark Card virus, the Windows Xp Anti-virus 2008/2009 or any other spyware, try this first.

If you already have bad spyware problems and can’t download the anti-spyware abovego here for a fix.

Good luck and as always your comments are most welcome.

Facebooktwittergoogle_plusredditpinterestlinkedinmailFacebooktwittergoogle_plusredditpinterestlinkedinmailby feather

Worst Spyware of 2008

The worst spyware of 2008 (in my experience) is certainly Windows XP Antivirus 2008/2009 or one of its many variations. This malware invades a computer in one of many ways, usually bundled with a video codec, or freeware or shareware, or sometimes when you accidentally go to (drive by) a bad website.

Infected computers display warnings and scans that look like Window alerts. They lead you–the besieged users–to buy the rogue product for $40. If you buy the rogue software then the fraudsters now have access to your credit card. (Call your credit card company immediately if this is the case.) And the purchase of the rogue anti-spyware does nothing to relieve the infection, in fact it takes over your computer to make it part of its botnet. This is the part I don’t understand. From my experience the infection makes the computer so totally crippled it can’t function, and for this reason I question how well it would serve even a botnet. But that according to this article is the intention.

And here’s another article about it.
http://www.nytimes.com/2008/10/30/technology/internet/30virus.html?th&emc=th

I find Windows XP Antivirus 2008/2009 extremely difficult to remove. Sometimes it comes back even after a Windows Repair from the cd.

Here’s a post that tells how to remove it.

The spyware that seems to have affected the most readers of this blog, is the Hallmark Card virus. So it is the 2nd Worst Spyware of 2008. Here’s how to remove it.

And here’s a great slideshow by Channel Web showing the top ten malware in the news.

Facebooktwittergoogle_plusredditpinterestlinkedinmailFacebooktwittergoogle_plusredditpinterestlinkedinmailby feather

How to Remove Windows XP Antivirus 2008/2009

If you are one of the millions of people whose computers are infested with the nasty malware Windows Antivirus XP 2008/2009, don’t despair. It’s hard to remove but can be done. I’ve fixed it in four computers now. I tried many different things, but I had the greatest success with SD Fix and Malwarebytes.

Download SD Fix by clicking here. Then you’ll need to reboot into Safe Mode by restarting your computer. As the computer starts up, tap the F8 key several times. If you tap it at the right time, you’ll a screen with several options will appear. One will be Safe Mode. Choose Safe Mode. Next, after a list of drivers is displayed in black and white on your screen, you’ll be asked if you want to go into Safe Mode (Y) or if you want to use System Recovery (N). Pick Y for Safe Mode.

After Windows has started. Go to My Computer and find the C: drive. Double-click it, so it will open. Look for a folder called SD Fix. Inside SD Fix will be a file called RunThis.bat. Click on it. It will run a program to clean up the Trojans. Type Y to begin. SD Fix will delete all the spyware or trojans it comes across. Then you’ll be asked to type any key to restart the computer. Do it, type a key.

Your computer will reboot. As it does, it will finish cleaning up the malware it has found.

Next download Malwarebytes. Update it and run it. It is pretty straight-forward.

You may have to run the above two programs several times to finally get rid of this nasty of all nasties.

If, after removal you find you’re missing your screensaver tab, you can go to my this post to fix it. To see if you’re missing your screensaver tab, go to Control Panel, Display. One of the tabs should be Screensaver.

If you were unfortunate enough to buy this rogue antispyware, you need to call your bank and get a new credit card number. Also you should stop payment on your purchase.

If you want help, and your computer still has the ability go on the Internet. I can fix your computer remotely. Call 403-483-0105 during the day (Mountain Standard Time.)

Facebooktwittergoogle_plusredditpinterestlinkedinmailFacebooktwittergoogle_plusredditpinterestlinkedinmailby feather