Fake Microsoft security essentials antivirus out in the Wild

Microsoft logoOne of the most recent support call scams involves Microsoft’s Security Essentials, the free antivirus solution that the company is offering to users of Windows 7 or older Windows versions.

The company published a warning today to explain that this fake Microsoft Security Essentials antivirus is actually a scam detected as SupportScam:MSIL/Hicurdismos.A and whose only goal is to convince you that there’s something wrong with your PC, only to pay for fake repairs.

The first fishy thing about this fake antivirus is that it’s aimed at Windows 8 and Windows 10 computers, but the genuine package can only be installed on Windows 7 and earlier - Microsoft Security Essentials was replaced by Windows Defender in Windows 8 and 10, and this is pre-installed on all systems.

Fake Microsoft security essentials antivirus out in the Wild

After installing, the fake package generates a Blue Screen of Death, which once again contains elements proving it’s all just a malicious attempt to steal your money. The BSOD displays contact information (e.g. a phone number), whereas Microsoft never includes such details in error information. This way, users who get this fake BSOD are recommended to call the phone number and ask for repairs that are only performed in return for a fee.

“The fake BSoD screen includes a note to contact technical support. Calling the indicated support number will not fix the BSoD, but may lead to users being encouraged to download more malware under the guise of support tools or software that is supposed to fix a problem that doesn’t exist,” Microsoft explains.

There are also several other ways to tell this is a fake antivirus. First of all, when you attempt to download the package, the file is called setup.exe, but Microsoft isn’t using this name for the installer of Security Essentials. Then, when looking into file properties, the publisher is not Microsoft, and SmartScreen also shows a notification telling that “the publisher of setup.exe couldn’t be verified.”

The BSOD is generated by hiding the mouse cursor, so the user would think that the system isn’t responding, disabling Task Manager, and showing a full-screen BSOD image.

Microsoft says that users should never download files that look suspicious and from untrusted sources, and in case they already installed this fake antivirus, using Windows Defender Offline is the easiest way to get rid of it.

Source: Softpedia

Tags: Microsoft, viruses, Windows 10

Comments
Add comment

Your name:
Sign in with:
or
Your comment:


Enter code:

E-mail (not required)
E-mail will not be disclosed to the third party


Last news

 
Galaxy Note10 really is built around a 6.7-inch display
 
You may still be able to download your content
 
Facebook, Messenger and Instagram are all going away
 
Minimize apps to a floating, always-on-top bubble
 
Japan Display has been providing LCDs for the iPhone XR, the only LCD model in Apple’s 2018 line-up
 
The 2001 operating system has reached its lowest share level
 
The entire TSMC 5nm design infrastructure is available now from TSMC
 
The smartphone uses a Snapdragon 660 processor running Android 9 Pie
The Samsung Galaxy A5 (2017) Review
The evolution of the successful smartphone, now with a waterproof body and USB Type-C
February 7, 2017 / 2
Samsung Galaxy TabPro S - a tablet with the Windows-keyboard
The first Windows-tablet with the 12-inch display Super AMOLED
June 7, 2016 /
Keyboards for iOS
Ten iOS keyboards review
July 18, 2015 /
Samsung E1200 Mobile Phone Review
A cheap phone with a good screen
March 8, 2015 / 4
Creative Sound Blaster Z sound card review
Good sound for those who are not satisfied with the onboard solution
September 25, 2014 / 2
Samsung Galaxy Gear: Smartwatch at High Price
The first smartwatch from Samsung - almost a smartphone with a small body
December 19, 2013 /
 
 

News Archive

 
 
SuMoTuWeThFrSa
     12
3456789
10111213141516
17181920212223
24252627282930
31      




Poll

Do you use microSD card with your phone?
or leave your own version in comments (15)