However, you may be seeing this mis-spelled message, which has changed a little bit over the past few months:
“ATTENTION! If your computer is struck by the spyware, you could suffer data loss, erratic PC behaviour, PC freezes and creahes.”

By the spyware? Creahes? Who writes this stuff?

“Detect and remove viruses before they damage your computer!
Antivirus 2009 will perform a 100% FREE and quick scan of your computer for Viruses, Spyware and Adware.
Do you want to install Antivirus 2009 to scan your computer for malware now? (Recommended)”

Please be wary of this sort of scheme through the end of the year. A number of banner ads on very popular web sites have been redirecting users to sites serving up this garbage. This rogueware “Antivirus 2009″ ad in particular will re-direct your browser to a web site using only javascript to mis-represent a common online malware scan of your windows system. As we’ve discussed before and at Virus Bulletin (slides on flash here), this stuff will attempt to shock you with a number of malware detections that are not really present on your computer, coercing you to pay for phony AV software. They detect the make-believe “Spyware.IEMonster.b”, “Zlob.PornAdvertizer.Xplisit”, and “Trojan.Infostealer.Banker.s”, made-up names which unsurprisingly do not change: