Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

Attack site example attempting to take control of computer 2010_08_19 10:30AM

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
3,935
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Aug 19, 2010

Attack site example. Social Engineering tricking users. Attempted to trick user to install viruses/trojans/malware. From (now disappeared) security-soft71.co.cc

It is 08/19/2010 at around 10:30AM I was doing a search for 'java valueof' on Google and I clicked a tutorial website, and a redirect took me to a site to trick me to install viruses. When I visited the site that took me there a second time, nothing happened. I was able to keep the url from history though.

As far as I know my computer is clean, I take good care of my windows box, and I believe this attack site was a redirect from a tutorial website that I visited which was compromised. That is how the attackers cover their tracks, by injecting their code into unsuspecting websites.

This is the real mccoy. The site that brought me to the attack page (now offline) was this:

http://www2.security-soft71.co.cc/?p=p52dcWplanKHjsbIo216h4Ve0KCfYWCdU9LXoKit...

as well as:

http://www1.makeptotect72.co.cc/?p=p52dcWplanKHjsbIo216h4Ve0KCfaFbVoKDb2YmHWJ...

The source code .htm only shows a simple .htm page which has nothing meaningful on it, the window was utilizing java applet technology to emulate windows. I was able to save the java code that runs the forgery so maybe there are clues in there.

Firefox "report web forgery" feature was able to catch it in a matter of an hour since I reported it, but that is not a workable solution because I assume the attack site can change by the minute.

Sleep with one eye open cyber criminals! We'll find you the moment you make a single mistake.

Pesky!

Category:

Science & Technology

Tags:

License:

Standard YouTube License

  • likes, 0 dislikes

Link to this comment:

Share to:

Uploader Comments (maeon3)

  • The name of this virus is "Security Master AV" Virus, and can be detected and removed by most antivirus programs. The purpose is profit for the virus writers, it takes you offline, and does damage to the data on your computer and suggests you pay them to undo the damage they have done. Don't pay them anything, the virus masquerades as an antivirus.

    maeon3 1 year ago

see all

All Comments (6)

Sign In or Sign Up now to post a comment!

  • this happend 2 me the malware installed itself it was total secirty forgive my spelling

    

    jameseastick 10 months ago

  • I'm not going to all attack sites or web forgeries.  -The Christine The Pikachu Network.

    ChristineThePikachu 1 year ago

  • @IHateYourJoy: No.

    ChristineThePikachu 1 year ago

  • so, if you click "ok" then you will safe?

    IHateYourJoy 1 year ago

  • I had this ahhhhh

    deepakdavidc 1 year ago

Loading...

Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more