YeheyTV searchers end up watching Fake Antivirus – SEO Poisoning

YeheyTV is an Internet site offering Filipino television shows online. The site has been around since 2009 and is frequented by Filipinos around the world. FakeAV distributors have exploited this popularity by using a Search Engine Optimization (SEO) poisoning attack directed at Internet users looking for the YeheyTV site. 

Searching for the keywords “yeheytv pinoy” via YAHOO, GOOGLE or BING search engine gives the following results:

Clicking the highlighted links above will not lead to online TV shows but rather to pages with fake system messages.

From this point on clicking any button will lead users to fake scanning pages – a common trick used by Fake AV to fool users into downloading and executing various malicious files.

Command antivirus detects this downloaded file as “W32/FakeAV.BEW“.

Don’t just watch Internet TV! Keep your antivirus definitions as well as Windows up to date to ensure protection from this malware.

Safe browsing (and TV watching)!