thisisu's channel
Loading...
1,114
subscribers
7,981,547
video views
Uploaded videos
1-10 of 50-
Protection Center (FakeAV) - 11.19.2011 - Analysis and Removal
thisisu
306 views
====notes====
First it messes with the .exe file association so that you won't be able to run programs.
There's .inf and .reg patches to fix this.
Registry Keys Infected:...
-
System Restore v1.1 - 11.12.2011 - Analysis and Removal
thisisu
68 views
====notes====
JGFMXz1Ipf65 and JGFMXz1Ipf65.exe in %CommonAppData%
"System Restore" entry in the start menu and an icon on the desktop.
Mostly likely will need to ma...
-
Dorkbot - 11.10.2011 - Analysis and Removal
thisisu
207 views
====notes====
Creates a heh.cmd file with the following commands:
ping -n 15 127.0.0.1
taskkill /f /im gagajeje.exe
taskkill /f /im marcia.exe
taskkill /f /im hula.exe...
-
Privacy Protection - 11.05.2011 - Analysis and Removal
thisisu
286 views
"Privacy Protection" is a fake AV in the same category as "Cloud Protection".
Most likely will come bundled with a newer variant of the Max++/Sirefef/ZeroAccess rootkit....
-
Hiren - MBR Utility
thisisu
221 views
This should not be used unless instructed to do so!!!!
-
System Security 2011 - 11.01.2011 - Analysis and Removal
thisisu
157 views
Performed on Virtual Machine.
-
TDL4 - 10.29.2011 - Analysis and Removal . part 2/2
thisisu
71 views
This was performed on a Virtual Machine
-
TDL4 - 10.29.2011 - Analysis and Removal . part 1/2
thisisu
160 views
This was performed on a Virtual Machine
-
System Restore - 10.26.2011 - Analysis and Removal . part 2/2
thisisu
52 views
This was performed on a Virtual Machine.
Puts the hidden attribute on the entire OS.
-
System Restore - 10.26.2011 - Analysis and Removal . part 1/2
thisisu
57 views
This was performed on a Virtual Machine.
Puts the hidden attribute on the entire OS.
Advertisement
Play all(50)