The spyware "Antivirus 2009" sometimes gets installed on computers in our network. We are running a Symantec antivirus product on every station and also are behind a firewall. Is there something that I can do to block at the firewall level or on each desktop? I imagine that I can purchase Malwarebytes or something and have it running as a service on each machine but that's a good sized investment.
Second, does anyone know exactly how users are getting hit with this spyware? I imagine something to do with hotmail and yahoo mail or something like that, as a few of the users involved are not techie enough to go to warez sites or places like that.