Video download from http://www.websense.com/videos/seclabs/wmf-movie.wmv showing a real-time infection of a spyware trojan on a computer caused by visting a website that hosts a spyware installer.
This is just a demonstration of how dangerous spyware is if you don’t have the right protection software installed. The computer was more than likely wiped and formatted after being at the mercy of this infection.
If you can’t see the video well, this is what it does:
1) The user who is controlling the computer types in a website address into Internet Explorer and hits enter. The file he downloads automatically opens up and starts opening up with Windows’ Picture viewer – but the file he download wasn’t a picture.
2) Immediately the file runs a batch command (the black screen) which is basically like an installer for the virus. Suddenly a whole load of new icons appear on the desktop.
3) An icon also appears in the system tray and the balloon tip says “Your computer is infected!”. In fact, this is not a message from the Windows OS, but it is a fake message from the virus that asks the user to run a fake anti-virus software to “remove” it from your computer. In actual fact, the message is true, but what users don’t realise is that the message itself is the virus.
4) Suddenly the desktop changes (you notice by now that the computer is running much slower due to the virus infecting the whole computer) to a picture the virus put on there.
5) A new icon appears on the desktop called WinHound and the program starts running (you can see the splash page with the picture of the leopard/tiger).
6) WinHound then “pretends” to scan the computer for viruses and it makes a lie about there being a different virus on the computer. It makes the user think that WinHound is an antivirus product by scanning the computer, but it actually isn’t.
7) When the scan is complete a dialog appears (notice that it’s called “Microsoft Internet Explorer” 
) that tells the user there is a “fake” infection. 
Another dialog is opened up which asks the user to visit a website where they can “pay” for a removal tool for the “fake” virus. In fact, the website is actually a phishing website which asks for credit card details. This makes the user think that they have to pay for a removal tool, but what they actually get is their money stolen.
Just so you know, this is *not* my own video. I did not create it. I downloaded it from the link above. My own computer is perfectly fine, thank you!
Custom rims wholesale…instantly.
Comments
if you get this, your doomed
i had that once a caution was on the desktop and it wanted me to install some virus remover thing……ya right
yes, a bad one
is winhound a rouge anti virus?
I had that shit, source is file named BRASKT.EXE
located in system32 dir.
Try firstly kill process called braskt, then remove file.
wait i think mine just went away
nope it didnt how do you get it to go away
i think you need to install your whole computer again if you get this D:
This isn’t his video, so you don’t have to ask, do you?
dude u had the yur virus first go ctrl alt delete then go to processes tab then end the processs yur one and yur2 next dowload MALWAREBYTES the most safe download is on cnet malwarebytes will quarantine the virus and you are good to go that is what i did and it worked great
Will AVG internet security remove this porgram?
A simple use of AVG, Ccleaner and Spybot removed this!
Mine was diffrent, unlike the video, i had *** **** ****** icons all over my desktop, and ran them..
Oh, i vomited.
can i put this vid on my web
permission
use smitfraud fix and then use combofix
What I had to do was I had to back up all of the files (by putting them on an external hard drive) then totally reset (not restart) your computer. But you might wanna run spybot or something. DOn’t run any of the false virus protections that smitfraud downloads itself. If any new icons just suddenly appear, and your computer is running slow or something that a virus would do, DO NOT touch them. Just leave them be. Good luck.
well u may have it firgured out already but if u dont search smitfraud fix on google and it will come up with a few sites on how to fix it
plz guys i beg u i need ur help i have same problem when i turn on it changes background to danger and its messed up how do i make it go away my bro will kill me plz guys i realy need ur help
ihave files in my computer named
spysheriff fake adware
and
smitfraud -c or whatever it said wheni scan for spyware and i have no viruses in computer but theres files named that
is that just files in computer named those?
avast dont find no virus and these files bin in for year or 2 but no problems in computer
DAMN straight,tell them like it is
CAN SOMEONE HELP ME this is kinda what i have, but no windhound, i have trend micro antivirus and spy sweeper and pc tools antivirus, they find stuff i quarintine and delete it, but the things are still there, computer still slow, viruses keep comming back., still cant change wallpaper
no its not for big boys google you tube and it will say for all ages
GTFO you fucker
do a full system restore if thats no good reinstall windows
@PSPGamer120: It sounds like a bad case of spyware. I’d recommend going to wikipedia and look up smitfraud removal. That’s where I found a smitfraud tool.
From there you’ll search your way through to a website offering smitfraud removal, which gets rid of that fake “your computer is infected” nonsense.
Also, what is the name of your anti-virus or anti-spyware you’re using? Chances are your anti-spyware is what’s doing it, if it’s fake.
Agreed. How come replys do not go under the original post? I am replying to thequickspin