Anatomy Of A Malware Scam
The evil genius of XP Antivirus 2008.

by wrecker 1299 Reads
on Thu Aug 28 2008 Add to your ClipSwarm
Deciding vote went to: Clavis_Apocalypticae: +1

Alpha votes:
0 by johnlenin
+1 by fastlane , might help a newbie
+1 by Clavis_Apocalypticae
< Two-headed Baby Boy Ded Russian Media Gives The Finger To T+ >



MstrLanceThu Aug 28
 

I just cleaned a copy of this beast out of my cousin's machine a few weeks ago. This thing does a pretty respectable job of locking down your system when you start trying to remove it. Half of the start menu gets disabled. No 'Run,' no 'Search' no access to root drives. 'Your system administrator has disabled task manager.' No problem, right? Just boot up in safe mode. But then I find there is some low level process killing explorer.exe every six seconds. In the end, I had to to mount the drive as a secondary on a different machine and scan it from there.

It does look pretty convincing. I can see where an average windows user would fall for it... maybe even a slightly above-average one. I had to laugh, though, when it kept telling me about these incoming hack attempts while it was off the network.

 
 
wreckerThu Aug 28
 

I had to dig it out of one of our sales rep's laptop a few weeks back. I sort of, in a round about way, accused him of surfing porn, but now it looks like he was hijacked from a Google maps search.

 
 
truenativeThu Aug 28
 

Just did the Boss-Man's Laptop, he got it from a news site.

There is a Free Utility that worked great for me. MBAM.exe Takes a while but worked on its own without a bunch of prompts to pay attention to.

 
 
Senor_SmokeThu Aug 28
 

This bad boy has earned me several american pesos from the folks who were lucky enough get it.

Thanks malware writers!?

 
 
steelThu Aug 28
 

I got it probably from a porn site but not totally sure... I got so mad I just wiped PC :)

 
 
magicchexFri Aug 29
 

Cool article. Still people are morons.

 
 


Hey. You. Yeah, you, anonymous person.
If you logged in, you could comment, you know...
  Forum Shite
Madness > Camphone Thread
Photostream > Nurglets photostream+
Madness > Joke time
Technology > Stop motion setup
Madness > New Favorite Gif
LinkSwarm > Alpha Death
Madness > Local Police Blotter
Gadgets > HTC Fuze / Touch Pro / D+
Madness > Happy "Oops I shold have+
Photostream > breaking and enterin+
Gadgets > Got a DISH lying around +
Reviews > review - mensplayground.+
Gadgets > Fagberry Shitz
Photostream > Night Shots
Photostream > quarry and star shoo+
  Journal Shite
HD UW
A tale... (part 2)
sooooooooo the ex-wife died
New jobber
Foodstamps for Beer
Wrecker's Emergency Room Boogaloo
G1
Decision Time
I Quit Smoking
Time To Change
GOLF
Standing in line, waiting for shot+
advice solicitation for a project
Sanuk Footwear. I'm jumping your g+
A story of two egos. (A cautionary+
  LinkSwarm Login
Nickname

Password

Join us.
  Sexual Asspussy
This is awesome.

This is the first pornsite I've found in years that I'd actually advertise to swarmers. When you first load it up, it looks just like every crappy scam site out there, except that it's real. It's huge, it's updated constantly, there's no spam, no popups, and no bullshit -- and it's completely free. When you sign up through that link above and respond to the confirmation email, I make a bit of loose change.

See what other swarmers have to say about it. People love this place, so I feel fine about sending you there and am confident you will enjoy boners.
  RadFactor going back 3 months
trickbear 2246
godevillive+ 1993
LORDKAHUNA 1859
wotak 1807
Lownotes 1256
DeJeR 1133
Clavis_Apoc+ 1078
BeachGoat 908
Danny_Infer+ 860
MstrLance 743
  LinkSwarm Friends
 chrudat 3498 
 entensity 932 
 killsometime 594 
 Wild Amateurs 582 
 briannafrost 573 
 yourdirtymind 339 
 wtfpeople 300 
 Mecharad 186 
 dailyrotation 177 
 plinko 131 
 bigsmudge 114 
 celebjihad 111 
 themostboringb 68 
 videovat 62 
 unknownnews 55 
 chicksnbreasts 51 
 milkandcookies 46 
 paparazzi 43 
 boomclips 39 
 pegasusnews 33 
 dagimp 31 
 pussycompass 25 
 members 22 
[ more sites ]
[ add your site ]
  My God, It's Full of Azron

BeachGoat : Sucks for you...I saw pussy first thing, then old time rock n roll.
dae_su : i saw missiles instead of fireworks this 4th of july
government_death_rob: fucking dead pointers.
MstrLance : You're not helping.
godevillivedog : MJ was a lot easier to ignore before he was dead.
bobacus : This calls for Ben Folds,kids.
cockroach : poor shitbox!
godevillivedog : Madam, you have plugged up the shitbox.
bobacus : What, did I TILt the shoutbox, again?
bobacus : We can at least hope.
cockroach : Actually, you can't get HERE from THERE.
trickbear : You can't get there from here.
hobo : hey man- where is the tranquil space
wolfer : depends on if that knife is clean or not?
trickbear : I'm eating ice cream with a $200.00 ceramic knife....You can carve little pyramids if its hard enough. So whos the dumbass NOW!
wolfer : haha dumbass it means "We The Fuct"
trickbear : "WTF" means "Wow, That's Funny"
wolfer : hope you took some buds
BeachGoat : 3am, on my way 700 miles north to work on a house in Hell. Back in a week
MstrLance : Get a room, you two.


Only Registered Users can Shout
Create/Login

I hope she has a few words for the fuckhead that ran over her. -- SillyRabbit