Protecting over 200 million PCs, Macs, & Mobiles – more than any other antivirus


February 10th, 2010

Is George Clooney getting an Oscar this year?

Honestly, I don’t know, but according to my tastes he shouldn’t get it for his latest movie, it was a bit boring. I was commenting on it to a colleague, and because it’s late night here I wasn’t able to remember the movie name; I just remembered that George Clooney was nominated for leading actor Oscar for this movie. So I simply put “clooney oscar” in my Firefox address bar, which is the simplest way to get the search results for Google. But I wasn’t exactly “Feeling lucky” about the result I got.Looks quite innocent, huh? But, when you click on it (and it works only when you click on it from Google), you’re getting redirected through a hacked German website to malware redirector website and then to conventional Fake AV. This referrer protection (when the site is behaving differently when visited from different sites) may skew some of our statistics, because by plain download such sites look innocent.

Since people usually expect happy ends, I should also provide you with one: All this would happen to you only without avast!, which did not allow the malware to run.

And please: Don’t believe people which say that good surfing habits help. As you can see, I was not looking for porn or warez, I just wanted to know something completely innocent and this is exactly the type of search which anyone around you could run and get infected. And back on topic: the movie name is Up in the Air and George has one Oscar anyway!

Categories: analyses, Virus Lab Tags:
  • wonder

    There are many fake AV on internet, it’s a sort of plague…not every AV can detect and remove them. Searching on Malwaredomaninlist site you can see that a good 50% of the dangerous domains are infected by a rogue product..or koobface…very sad..

  • Debbie

    I had exactly this happen to me two days ago, but got NO WARNING or any sign that Avast had realised there might be a problem at all! I had clicked on a link to Komedia Entertainment on Google (in Firefox) after searching for “Count Arthur Strong” (a BBC comedy character, managed by Komedia Entertainment). Completely jammed up Firefox, did thorough scan using Avast of C: and D: drives, it only picked up a worm that had been on my computer for 3+ months apparently, this had been picked up whilst using Avast, but again no warning or sign given that there was a problem.

  • http://www.ppinfotek.com Yanto Chiang

    Hi Kubec,

    This is very useful information to share, maybe from ALWIL team need to share others information to avast or common users to know more about security.

    Cheers,
    Yanto Chiang

  • dan

    Just gotta say, downloaded this software today, it rocks. Never had proper anti-virus and this stuff works good & free. Thanks for the hard work

  • Alex

    Had avast for 2 years best antivirus i have ever used keep up the good work guys and thanks for a stable and free antivirus.

  • Pingback: 19.forumer.com - Virus on the forum? - Page 9 - Forum Hosting

  • Pingback: 49.forumer.com Forum redirecting to bogus 'virus scan' page - Forum Hosting

  • Waqar Ahmed

    First of all thanks to all avast team for their hardworking and free antivirus. I wanna say that peoples who wanna protect PC from viruses just download avast.

    Rgds,

    Waqar

  • George O. Jungle

    Good surfing habits include not using any web browser. Buy hardcopy newspapers.

  • Rudy F

    I have several of my customers using Avast! with the latest update of Avast! pro version 4.8.1368. This type of malware got past Avast! and installed. Ran Avast Boot Scan. Avast! did not detect this malware and the malware was still there. The only way to remove this was to log in as another user with admin rights then do a system restore. Also you can boot in safe mode then do a system restore. However safe mode does not always work as the virus will corrupt one of the system files. You may say update to version 5.0 will solve the problem. Tried the new version 5.0.418 on my customers computers and they cant get to some of their secured websites. Avast is working on solving this issues.

    Regards
    Rudy

  • SFdude

    Funny!
    I noticed on the “Windows Security Alert” popup,
    (see photo above),
    the following gems of incorrect English:

    “… Windows Security _have_ detected Trojans…”

    and
    “…gather information from user’s computer
    _throught_ Internet … and send them to its _creater_…”

    Incorrect English in popups:
    a Trojan warning by itself…beware!

    Now a quick question:
    Q: Should I **UNinstall** Avast 4.8 HOME EDITION,
    before I install the new version: Avast Free 5 ??

    Thanks!
    SFdude

  • http://caution caution

    A virus/trojan called sonja.exe is ravaging on the internet.
    It’s tries to connect to internet whenever I connect my laptop with the internet cable.
    This virus uses random name to connect to internet : sometimes it’s 377.exe, sometimes run32.exe..

    (I never go to suspicious websites and never download suspected files)

  • Harvey A Ward, Jr

    This is my first time finding out about Avast Security Software. Am presently running 2 Panda Global Protection 2010 security software with Windows firewall instead of Panda’s.
    Am contemplating dropping Panda after 2 years as one month ago they allowed a hacker to come through and obliterate my HP n16500a desktop PC and lost all my Americans With Disability Acts law library and case histories as well as those with the Florida State Legislature of which I am a Cyber Citizens for Justice lobbyist, family pics and the whole 9 yards as I also lost all the address book entries and all those businesses Bookmarked in Mozilla Firefox w/Google search engine.

    I am in the market for a replacement PC which must be a Netbook using Windows Mobile 7 operating system and communicate via satellite so I can carry into the woods or bask out on a lake in a boat, or even when traveling by auto, train or airplane. Send text messages of even live photos and use Outlook Express for emails.
    I want to turn my hacked one into the Cyber Crime or US Secret Service investigators to see if they can make anything positive of it.
    So, now that I have given specs for my next first Netbook venture, including capability to have USB connections for digital camera downloads, mouse and printer WI FI capabilities and we are currently extreme high speed DSL customers of A T & T, I would appreciate some accountable suggestions what kind of a setup or products I should persue using Avast Internet Security Protection or better. One current home PC will still be using Windows XP.

    It was my birthday Feb 14 2010 and my wife thought she bought the right PC which was a Toshiba Satellite model laptop. But does not meet my requirements and we are sending it back to the store. Thank you for your expertise, time and attention you can be of…
    Have a great day…Harv (I am also completely deaf, the email address is my wife’s for now and she is also deaf-blind)

  • ROBERT REEVES

    @SFdude

    yes you allways need to uninstall before reinstalling another avast upgrade or you won’t be protected at all and make sure to allways restart your computer

  • Ivan Samuelson

    I just dumped my Kaspersky and tried Avast Antivirus Free. Wow! My login time dropped from 20+ seconds to about 5 seconds. Applications launch SO much faster.

    After a bit, I decided I wanted the whole kit-and-caboodle, so I downloaded the trial version of the Internet Suite and wow! Still the same responsiveness that I got from just running the antivirus.

    Thanks, Avast team! You have a great product and I saw it was rated an Advance+ on the anti-virus from the AV Comparatives site. Keep up the great work!

  • http://www.avast.com Avast Employee 587

    I use Avast software in my job and it is AWESOME.

    So awesome I work for Avast.

    Avast are AWESOME.

  • Scott

    I just finished cleaning up an infection of “Antivirus Soft” malware that Avast Pro did not detect. After doing some research on how to get rid of it (Malwarebytes took care of it) I found it’s been around for at least a few weeks. I’ve been very happy with Avast for the last two years, but must say I’m a bit disappointed that it was unable to trap something that’s certainly been around long enough for Aiwil to know about it.

  • http://www.communityclassifieds.org community classifieds

    It gets tougher for the next one.
    The one displays memorable performance will win.
    Only the best of the best.

    Thanks to Avast to highlight this topic.

    Regards,
    Alexander and worldwide fans.

  • Todd

    I have tried many different free AV brands and have to say AVG is the best. Ive used it for the past 10 years. A few months ago I tried out Avast and was at first impressed. Seemed to run good and visual interfgace was excellent. It was then I got my first virus in 8 years on one machine (which Avast would not detect), and on a few others, extreme performance degredation, especially IE and java apps. After uninstallingAvast performance returned to normal and stayed that waay even after reinstalling AVG. I would recommend AVG to anyone looking for a free product. I have done computers for 15 years and support them for a living. I know most reviews are biased and are based on factors like they “didnt like the way it looked” or, “it didnt catch a virus”. But let me say I have installed ALL different brands over the years including Symantec Norton AVG Avira AVG Avast BitDefender SAS, and AVG is by far the best performer and catches the most items!

  • Jayson Messick

    So this is what you were searching for INSTEAD OF WATCHING THE FORUM FOR ACTUAL PROBLEMS. I get what you are pointing out, but again, you found this sitting there while you should have been addressing things like FW showing zero activity.

    You guys have lost it…I came back at just the WRONG time.

    BTW…it would have been nice while you were checking out your beau G. Clooney to at least send my validation email for the official support center..no, alright go back to searches on Mr. Clooney..its about all you good at these days.

  • marc otawa

    hi..i just downloaded it but its a little bit slow to download can avast make some fast downloads…by the way i’m just a 12 year old boy who always make our computer have some virus…tank you

  • Sheila

    I’ve been a Avast! Customer for about 3years now, and Have been very satisfied and have been spreading the word about Avast. Thank you, Avast team!

  • jmtdstoc

    @Harvey A Ward, Jr

    My advice is to buy an Apple Macbook or Macbook Pro. Then install “Intego Virrusbarrier” on it. You’ll be much better than with any version of Windows, in terms of security.

  • jmtdstoc

    AVAST’s new version is awesome!

    I hated the older versions GUI, but this one is really intuitive and really looks and feels like an antivirus.
    It’s got all the necessary features to.
    Very good work.

  • Macky

    avast Rocks!!!keep up the good work!!!best antivirus in the Universe!!!Lol!!!
    Excellent work..

  • http://www.eoshosting.com David

    Well, it’s unfortunate that an innocent search result lead to you having to deal with a security threat. However I wouldn’t discredit good surfing habits.

    You always reduce your risk when you establish a list of safe sites to receive your information from – and by choosing to obtain software legally and through legitimate distributions.

    In cases where legit sites get hacked, of course it is necessary to have some kind of protection on your system to handle the threat.

    I’m glad to see you were able to resolve the issue, though.

  • Peter Maitha

    Hi, I am peter from Mombasa kenya, I have been using avast 4.8 for so long on my clients computers, it been running for a few time maybe a months then it makes the computer to be too slow too slow, Now the last time i installed it i go this problem when i restart my computer is shows – can not load kernel library- what does this mean. plz tell me what i can do, to solve my problem, i will appreciate.
    thanks

  • spg SCOTT

    @Peter Maitha
    Hi Peter,

    I have looked around the forum, and can’t seem to find anything.

    To be honest, it is hard for ALWIL to provide support here on the blog, so I would recommend that you visit the forum, where you can find help. (probably much quicker)

    Although, from searching around elsewhere, the ‘can not load kernel library’ (or words to that effect)error may not be an avast! issue.

    If you do post in the forums, it may be an idea to provide a screenshot of the error you see. Try also searching the exact error you see.

    forum.avast.com

    -Scott-

  • Michelle

    @Debbie My computer got a few Trojans on it, and jammed things up. I believe I picked it up on a website I visited about Dinosaur fossils. The website had a message that the site “may have been hijacked by a trojan Virus” An AV by the name of “Antisoft”, supposedly by Microsoft, kept popping up telling me that it found viruses, and that I could be protected if I “upgrade now”. Well, knowing that I never installed this program “Antisoft” and I’m frankly a little “AntiMicrosoft”, I ignored it and opened up my Avast. I ran a scan and it didn’t find anything, but then I changed the settings to do a scan on boot. Well, low and behold… that’s when it found something. Anyway, I deleted the Antisoft program. Also the virus or Trojans kept opening a website at www dot adult dot com. Continuously. How can I get Avast to scan and find while this stuff is attacking? Apparently my settings must be wrong. And I’m wondering if Firefox is such a good idea. I’m thinking a different browser may be in order.

    Michelle

  • Vojta_qa

    SFdude :
    Funny!
    I noticed on the “Windows Security Alert” popup,
    (see photo above),
    the following gems of incorrect English:
    “… Windows Security _have_ detected Trojans…”
    and
    “…gather information from user’s computer

    Yes, it is recommended to uninstall 4.8 before installing version 5

    for further communication and Avast issues please use support.avast.com, you can always update your ticket with additional information and this will help us to answer you better and faster. Thank you.
    _throught_ Internet … and send them to its _creater_…”
    Incorrect English in popups:
    a Trojan warning by itself…beware!
    Now a quick question:
    Q: Should I **UNinstall** Avast 4.8 HOME EDITION,
    before I install the new version: Avast Free 5 ??
    Thanks!
    SFdude

  • Vojta_qa

    Peter Maitha :
    Hi, I am peter from Mombasa kenya, I have been using avast 4.8 for so long on my clients computers, it been running for a few time maybe a months then it makes the computer to be too slow too slow, Now the last time i installed it i go this problem when i restart my computer is shows – can not load kernel library- what does this mean. plz tell me what i can do, to solve my problem, i will appreciate.
    thanks

    Hello Peter, please create ticket on support.avast.com.
    I will need some more information, thank you.