Virus Named ?Antivirus…? Infects Rio Theatre Website
According to news coming in from Santa Cruz-based Rio Theatre in US, several local residents have complained that their computers have been hit by a malicious program deceptively named "Antivirus 2009" or "Antivirus 2008." The problem began when users attempted to access the Rio Entertainment Inc. Website, www.riotheatre.com.
According to Web master Syd Hall for Rio Entertainment, it seems the malicious virus is arriving from the site’s hosting service. Hall added that the site was infected by computer viruses three times over the last ten days, as reported by DAILYTIMES on July 30, 2008.
He further said that he took the site offline on June 26, 2008 and would keep it so until the issue could be fixed with the web host. Hall also said that he was unsure of how long the site would remain unavailable, but he was trying for a replacement site.
Meanwhile, The Times reported that a direct access to the recreation site produce usual results. However, conducting a Google search for Rio Entertainment and clicking on the link generated the undesirable virus.
Also, according to reports, it is found that clicking on the link, a real-looking dialogue window comes up making false claims about vulnerabilities in the system only to lure users to buy the software’s complete version.
Moreover, even clicking on "cancel" a Web page appears, which does a bogus scan. Also, a pop-up window is displayed that asks for the user’s permission to let the software clean the infected folders.
Meanwhile, describing how distributors and users take this virus and what method they should use in tackling the problems arise from it, Melvut "Turk" Otcu, Owner of Gazelle Computers in Kerrville said that users could be safe if they just ignore the entreaties and shut the browser, as reported DAILYTIMES on July 30, 2008.
Octu continues to remark that users should be grateful to the improvements in the Internet Explorer, stopping such add-ons to get automatically installed onto the system. Nevertheless, if the user gives the permission for the repair and loads the ’setup.cab,’ then he would definitely become infected.