Home
Your Computer is Infected!, Probably Because of that Bredolab Attachment
Submitted by admin on Tue, 09/01/2009 - 19:21
in

Last week's Bredolab post generally described the ongoing downloader's email blasts and the malicious injector/downloader's static and dynamic characteristics. Here are a few more screenshots of the moneymaker payload. This payload currently is the rogueware/scareware "PC AntiSpyware 2010", which also has been distributed in a number of other ways over the past few months.

First off, users are prompted with the all-too-familiar, inaccurate and scary taskbar balloon "Your Computer is Infected! Windows has detected spyware infection!".

The software then pops an attractive dialog, appearing to scan the drive and find infections. So far in this screenshot it incorrectly reported 34 infections on our clean lab machine:

Even on our clean lab system, the user is also prompted with a series of phony malware detections. This one appears to be "Email-Worm.JS.Gigger", which they claim can "reformat the user's hard disk after reboot":

A registration page will eventually pop up, which redirects the user to a page to register the software for a "Lifetime Software License - 89.95 USD One Time Charge".

The home page for the site includes a set of supposed "Testimanials" and a list of award logos that they have never achieved:

This site's installer, "installer2.exe", is served up from a site hosted in London:
uliondarvasoka.com
216.86.144.130

As warned in the previous post, always be suspicious of attachments that arrive via email, software being delivered from web sites that don't seem to be trustworthy, and add a behavioral layer of protection to your system.

prada sneakers

Submitted by hot shoes (not verified) on Sat, 06/19/2010 - 04:29.

In the Internet ,it have more and more cheap Hot Shoes to buy . Because all of our life is a customer, the customer's characteristics is like inexpensive Prada Sneakers. Waking to work with Gucci shoes|NBA Shoes can keep healthy, prevent spinal problems.Jordan Collezione |adidas sneakers|are based on people’s travel characteristics of design and manufacture. So you must be careful to select air force 1 shoes|air jordan 7 retro|Air Jordan Kids|Jordan Dub Zero|new balance shoes. Good luck!

good for sharing

Submitted by nike air max (not verified) on Wed, 05/26/2010 - 06:28.

Nike Air Max Shoes, not only is the sneakers of consolidating high-tech sporting but also emphasizing the fashionable outer designs, is working consquently together with fashion icons worldwide.We offer great products from nike air max 90, nike air max 95, nike air max 360, nike air max 2009 and many more, they are on hot sale.Our purpose is to offer a low cost alternative to high designer shoes prices. We listen to our customers, adding the latest men's and women's trendy styles.

Find nike air max running shoes and buy nike air max online, Kicksinfo,Inc. is your best choice. We can provide Fashion design High quality nike air zoom shoes for you. All products on our site are already marked down 30-60% off retail price.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <br> <p> <img>
  • Lines and paragraphs break automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

 TROJAN NEWS
 Subscribe Now

Security Sites

Tags

more tags