Been awhile since I've blogged, thought I'd crack my rusty fingers with a blog about something that’s been very annoying as of late. Antivirus 2009 .. yes you might be reading this and thinking, damn I shouldn't of installed that codec, or one of the many other ways this appears on your machine.

This is a long line of rogue antivirus products that are doing the rounds, for the past few years extorting money from users, for no benefit at all.

In this case we see that some new items are dropping which might cause your current antivirus or antimalware solution not to detect these files.

The filenames and path of these are as follows:

av_2009.exe

winsystem.dll

scui.cpl

ieupdates.exe

winsrc.dll

AV2009Install.exe

zs880000.exe

C:\Program Files\Antivirus 2009

These make up the bulk of this infection, however in selective cases you might get more then what you bargain for. Some friends might show up, such as password stealers, spam bots and other unwelcomed guests.

Below are some screenshots of how this infection looks, I'm sure a lot of people in the last few weeks have seen this on their machines.

If you are having issues removing this, Prevx CSI removes this threat, you can download the software here.