1,082
subscribers
7,850,728
video views
Uploaded videos
1-10 of 50-
Protection Center (FakeAV) - 11.19.2011 - Analysis and Removal
thisisu
292 views
====notes====
First it messes with the .exe file association so that you won't be able to run programs.
There's .inf and .reg patches to fix this.
Registry Keys Infected:...
-
System Restore v1.1 - 11.12.2011 - Analysis and Removal
thisisu
61 views
====notes====
JGFMXz1Ipf65 and JGFMXz1Ipf65.exe in %CommonAppData%
"System Restore" entry in the start menu and an icon on the desktop.
Mostly likely will need to ma...
-
Dorkbot - 11.10.2011 - Analysis and Removal
thisisu
186 views
====notes====
Creates a heh.cmd file with the following commands:
ping -n 15 127.0.0.1
taskkill /f /im gagajeje.exe
taskkill /f /im marcia.exe
taskkill /f /im hula.exe...
-
Privacy Protection - 11.05.2011 - Analysis and Removal
thisisu
277 views
"Privacy Protection" is a fake AV in the same category as "Cloud Protection".
Most likely will come bundled with a newer variant of the Max++/Sirefef/ZeroAccess rootkit....
-
Hiren - MBR Utility
thisisu
174 views
This should not be used unless instructed to do so!!!!
-
System Security 2011 - 11.01.2011 - Analysis and Removal
thisisu
154 views
Performed on Virtual Machine.
-
TDL4 - 10.29.2011 - Analysis and Removal . part 2/2
thisisu
64 views
This was performed on a Virtual Machine
-
TDL4 - 10.29.2011 - Analysis and Removal . part 1/2
thisisu
151 views
This was performed on a Virtual Machine
-
System Restore - 10.26.2011 - Analysis and Removal . part 2/2
thisisu
46 views
This was performed on a Virtual Machine.
Puts the hidden attribute on the entire OS.
-
System Restore - 10.26.2011 - Analysis and Removal . part 1/2
thisisu
49 views
This was performed on a Virtual Machine.
Puts the hidden attribute on the entire OS.
Advertisement
Play all(50)