Jump to content

Welcome to MSFN Forum
Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more. This message will be removed once you have signed in.
Login to Account Create an Account


Photo

[Project] Self infecting secondary PC

- - - - -

  • This topic is locked This topic is locked
24 replies to this topic

#1
Tarun

Tarun

    Spectre

  • Super Moderator
  • 3,176 posts
  • OS:Windows 7 x64
  • Country: Country Flag
I've taken my recently networked secondary computer and infected it with the following:
  • WinFixer
  • WHEN.U Save NOW
  • WinAntiVirus
  • Recipes
  • MsgPlus
  • IMGiant
  • SmileyCentral
Anything else I can get infected with? :P

I basically aim to slam the pc with all kinds of infections and then practice removing the faster and identifying how they work.


How to remove advertisement from MSFN

#2
KingAuther

KingAuther

    Junior

  • Member
  • Pip
  • 50 posts
You ain't delt with an Internet bug till your PC has caught natas... it destroys the OS faster than you can say "oops"...

I've got an unopened email: "eBay.. Unpaid Item Dispute #130929582620", in my Yahoo email account, that most likely has natas in it... This is the same MO that injected natas into my PC a couple months ago.. from some christian defender little nutcase momma's boy...

Thing is, I haven't bid on anything in eBay... Now I only open these suspect emails in one of my junk computers, and forward them to <spoof@ebay.com>... then I format-C, drop in the Windows CD, and click the mouse... That's about all you can do with natas...

I would change my password temporarily, to a password of your choosing... If you want to open this email to have some fun with natas, PM me at <extremesciences@yahoo.com>...

#3
Tarun

Tarun

    Spectre

  • Super Moderator
  • 3,176 posts
  • OS:Windows 7 x64
  • Country: Country Flag
As of this time I'm focusing on infecting with as much spyware and adware possible.

Already the computer will randomly automatically reboot due to the load of malware on it, and it's not that bad yet. :P

#4
KingAuther

KingAuther

    Junior

  • Member
  • Pip
  • 50 posts
Ok.. so you're not into killer viruses yet... I'll save it in a file.. and if you ever want to play with the worstest meanest SOB GD PC killer bug, the offer remains dormant... You might want to check it out the next time you decide to format your crap computer, just to get a feel for how mean natas is... Your disease awaits sir, or madame...

Edited by KingAuther, 02 October 2006 - 09:31 AM.


#5
LLXX

LLXX

    MSFN Junkie

  • Banned
  • PipPipPipPipPipPipPipPipPip
  • 3,399 posts
Lol, this is going to be the exact opposite of the advice I usually give:

Use Internet Explorer and in the Internet zone set every security option to Enable.

Go to Google and search keywords that usually return lots of malware e.g. warez,cracks,porn,etc.

Start clicking on random search results. If ActiveX security warnings about installing things appear, always accept :D

There are a LOT of malware out there... here's a few you haven't named:

- GAIN (Gator Advertising Information Network)
- NewDotNet

...and the following fake antispyware programs can be downloaded and installed too :)

SpyAxe
AntiVirus Gold
SpywareStrike
WorldAntiSpy
SpyTrooper
Spy Sheriff
SpyBan
SpyWiper
PAL Spyware Remover
Spyware Stormer
PSGuard
Spyware Quake

#6
Tarun

Tarun

    Spectre

  • Super Moderator
  • 3,176 posts
  • OS:Windows 7 x64
  • Country: Country Flag
Thanks LLXX.

#7
KingAuther

KingAuther

    Junior

  • Member
  • Pip
  • 50 posts
Install Spybot, then do a regedit search for one of the spyware names you know... It will get you into the HUGE list of trojans that Spybot blocks...

Write to those who write Spybot... They have been very helpful to me.. and they are easy to talk to...

#8
Randy_Rivers

Randy_Rivers

    Friend of Msfn

  • Member
  • Pip
  • 58 posts
:D love that list some of my all time favorite spyware i like the 180 solution one lol. best of luck on your project.

#9
coltm4carbine

coltm4carbine

    Newbie

  • Member
  • 19 posts
This might be late now but:

CWS - I've got the infected files for the bootconf (I think -I am sure it's one of the CWS varients)
LOP, if you haven't got that from messenger plus already
Aurora - pain to get rid of
The older version of vundo - the symantec removal tool doesn't remove it.
ISTbar
Horseserver if you can find the d/l for it.
Ivideocodec
Partypoker

Also go to a crack site - they are full of these sorts of crap.

#10
Jeremy

Jeremy

    Casual Poster

  • Member
  • PipPipPipPipPipPipPipPipPip
  • 3,473 posts
  • OS:Windows 7 x64
  • Country: Country Flag
Hahaha, I should do up a seperate VMware machine and just fill it with garbage. I wonder at which point I won't be able to boot Windows afterwards. lol...
I wish AV-Comparatives would just hand me their entire collection of viruses. :P

#11
epic

epic

    Advanced Member

  • Member
  • PipPipPip
  • 395 posts
Small list for ya's...

http://www.spywaregu...t_list_full.php

http://www.lafn.org/...up/PENINDEX.HTM

Try these too.
MyWebSearch toolbar (mwsoemon.exe)
TopRebates hijacker/adware (webrebates1.exe)
HuntBar spyware (wtoolsa.exe)
HuntBar spyware (wsup.exe)
Gator adware (gmt.exe)
Gator adware (cmesys.exe)
HuntBar spyware (wtoolss.exe)
MoneyTree Dialer (optimize.exe)
Bargain Buddy (bargains.exe)
WhenU SaveNow adware (save.exe)
180Solutions adware (msbb.exe)
MoneyTree Dialer (actalert.exe)
IST adware/hijacker (istsvc.exe)
Brilliant Digital Spyware (asm.exe)
Evil x 2.0 (syncroad.exe)
Gator adware (precisiontime.exe)
Apropos Media adware (autoupdate.exe)
Navisearch / TopRebates (nls.exe)
WhenU ClockSync (vvsn.exe)
Comet Download Manager (dmserver.exe)
KeenValue spyware (updmgr.exe)
Evil-X (winsync.exe)
Hotbar adware/spyware (hbinst.exe)
WhenU Adware (sync.exe)

Edited by epic, 11 December 2006 - 11:45 AM.


#12
bledd

bledd

    msfn is a friend of mine!

  • MSFN Sponsor
  • 1,733 posts
kazaa (not lite)
edonkey (has optional adaware you can install)

#13
RJARRRPCGP

RJARRRPCGP

    MSFN Expert

  • Member
  • PipPipPipPipPipPip
  • 1,188 posts
  • OS:XP Pro x64
  • Country: Country Flag

This might be late now but:

CWS - I've got the infected files for the bootconf (I think -I am sure it's one of the CWS varients)
LOP, if you haven't got that from messenger plus already
Aurora - pain to get rid of
The older version of vundo - the symantec removal tool doesn't remove it.
ISTbar
Horseserver if you can find the d/l for it.
Ivideocodec
Partypoker

Also go to a crack site - they are full of these sorts of crap.


LOP? LOL. The only time I gotten LOP was when I went to a pr0n-related website back in 2003 or late 2002.
Asus P5QL Pro, Core 2 Duo E4500, eVGA GeForce 9500 GT with XP Pro x64 Edition -> Works great with Asus P5QL Pro!

#14
DL.

DL.

    Tweaker or whatever I happen to be focused on at the moment..

  • Member
  • PipPipPip
  • 489 posts
  • OS:Windows 7 x64
  • Country: Country Flag
Are you still into this project?

Is it possible to get all of these in one package? Would make it a lot easier to try doing something similar to what you do, some direct links would be useful as well.
I'm planning on doing something like this as a lesson of practice for my cousin who's a young "techie in training".

Edited by DL., 09 December 2007 - 10:01 PM.


#15
PC_LOAD_LETTER

PC_LOAD_LETTER

    Well, I stole something else

  • Super Moderator
  • 1,829 posts
  • OS:Windows 7 x64
  • Country: Country Flag
i did this to an old machine the lazy mans way by restoring a few hundred hijackthis backups from the backup folder on my pen drive (around 50Mb of crap malware DLLs and toolbars) some restore correctly, others didnt (because some where wiped using RKU/antivirus prior to Hijackthis touching them) it was so much fun i didnt delete the /backups folder afterwards (its up to 75.1MB and 3485 items currently) one day a old XP machine will try my patience and i shall punish it for its insolence! BWAHAHAHA! Attached File  images.jpg   600bytes   8 downloads

P.S. MSFN needs a devil smiley

#16
Tarun

Tarun

    Spectre

  • Super Moderator
  • 3,176 posts
  • OS:Windows 7 x64
  • Country: Country Flag
Yeah, I am. I use these to help beta test a lot of new anti-malware applications.

If anyone gets a huge collection, please do let us know.

#17
Siginet

Siginet

    Windows XP PowerPacker Creator

  • Member
  • PipPipPipPipPip
  • 738 posts
I have actually been working on my own Preventive Computer Maintenance Program for about 2 years now. Actually teamed up with vier of msfn on it as well. It actually will automate many Antispyware/AntiVirus utilities, chkdsk, defrag, memTest, Windows Updates... and so on programs. It has a built in scheduler as well. I plan on using it for my computer company, on maintenance contracts with other businesses.

So I'd really like a package of worms, viruses, malware, zombieware.... and whatever else you guys can put together. Kinda funny to actually find others interested in blowing up their computer for fun! LOL! ;)

Posted Image
For those of you interested in my next software venture you can check it out here:
www.ITTechware.com


#18
dennis123123

dennis123123

    Newbie

  • Member
  • 29 posts
Heres what I did when testing virus checkers -

1. Open up limewire/bearshare/edonkey etc
2. Search for things like "sex","keygen","britney spears", etc --- *WITH FILE TYPE .EXE*
3. Select all
4. Download
5. Select all the downloaded files
6. Press enter
7. :lol: :P :lol:

#19
DigeratiPrime

DigeratiPrime

    MSFN Junkie

  • Patrons
  • 3,550 posts
  • OS:Windows 7 x64
  • Country: Country Flag
Ive been doing some research on some forms of malware, and I realized that a great way to find it on purpose to study it, would be to use the urls in certain malware blocklists. I'd rather not be more specific about the blocklists ;)
Recommended Software: KeePass | Microsoft ICE | VisualWget | Vitamin D Video |

#20
narayanaswamy

narayanaswamy

    Newbie

  • Member
  • 25 posts
U may get into any porn/warez site with ur mcafee siteadvisor or weboftrust in ur browser turned on and u can get details of the malware in that site which u may download...hope this will help u..

#21
eyeball

eyeball

    Have you tried turning it off and on again?

  • Member
  • PipPipPipPipPipPip
  • 1,150 posts
One really good thing you could do with this would be to run processmonitor and then get a virus/malware and watch what reg keys/files are added/changed.
Then when you remove the infection you can see how effective the removal has been :)

#22
JustinStacey.x

JustinStacey.x

    Welcome to your life, there's no turning back...

  • Member
  • PipPip
  • 180 posts
Installing Messenger Plus without the adware is harmless, right? I know loads of people who install that on their computers and have always wondered if without the adware it's harmless. I even used to use it myself a while back before I deviated from MSN messenger completely.
"XP is just a buggered up version of 2000 with skins added." - Phenomic.

#23
bauxite

bauxite

    Newbie

  • Member
  • 22 posts
wow awesome just saw this now!

did anyone find a huge list of malware for download yet? im surprised there isnt a "collection" out there....

and when you have infected your pc with all this malware, are there any programs that can remove it in an automatic fashion without locking up and giving 9000 pop-ups for the user to decide what action to take?

#24
pjadec

pjadec

    Newbie

  • Member
  • 11 posts
If you want more (virus/trojans)to test your systems security.
i use link for testing(virus/trojans)with virtual system.
http://www.malwaredo...ist.com/mdl.php

I am not responsible for the damages. (if your computer got infection)
Use it with your own risk.

#25
Tarun

Tarun

    Spectre

  • Super Moderator
  • 3,176 posts
  • OS:Windows 7 x64
  • Country: Country Flag
This project has ended. Closing thread.

For best results as of early 2013: Microsoft Security Essentials for Anti-Virus. Malwarebytes Anti-Malware for anti-malware/anti-spyware. Avoid registry cleaners or anything that boasts it will "boost performance".




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users



How to remove advertisement from MSFN