This downloadable file can cause user financial damage on executing, fortunately damage case hasn't reported in South Korea so far.
With the scam techniques getting sophisticated, user who installs overseas anti-virus software needs to be careful on downloading and installing those SWs.
2. Spreading path and symptoms of infection
Found malicious file disguised as an installation file is being spread Russian web site.
You can see famous anti-virus' icon in red square, clicking anti-virus software will move current page to following site.
Clicking related link will download malicious file masqueraded as an overseas' famous anti-virus software.
* Downloadable fake anti-virus malicious files
This site already has various malicious files disguised as famous anti-virus' setup file, you can see same activation code field on executing after downloaded.
Clicking "Payment Terminals" will open another window for micropayment via SMS which can cause user financial damage.
3. How to prevent
Currently, cybercrimes especially for financial exploit are big booming these days.
To use PC safely from security threats of these malicious files and social engineering, we recommend following "Security management tips" for general users.
INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function and runs responding system against various security threats.