Share
New research from Sean-Paul Correll over at Panda Labs shows that Rogue anti-Virus creators are going to extremes to ensure that you pay to register the often malicious and certainly annoying fake software.
Rogue anti-Virus holding systems hostage.
Rogue anti-Virus applications, like the one seen in the header image, are a rather popular way for criminals to make money and open new methods to infect scores of systems the world over. While we’ve covered them extensively in the past, both in reviews and normal news, at the same time the entire concept of Rogue anti-Virus programs is interesting to explore.
What makes Rogue anti-Virus so popular for criminals is the operation and the distribution methods. Each Rogue anti-Virus application is unique in appearance, title, and infection method. Yet, they all do the same thing, as they flood your system with false alerts and notices, warning you that you are at risk and your system is compromised. Even on a normal, clean system, they will display hundreds of infections.
In addition to the false detections, they will limit functionality of the system, kill resources, and block some legit applications – such as real anti-Virus – from operating. They can also open paths into the system so that Malware can be installed.
When it comes to distribution, the criminals often use affiliate programs which pay them per installation. Some affiliate systems will offer tools and tips to the criminals, helping them spread the software to as many victims as possible.
This is in addition to any money or information they will harvest should they actually get someone to register the product. Registration costs will depend on the application, but the normal fee is in the $50-70.00 USD range. Lately the cost is usually $79.95 USD.
Often, when you are infected by Rogue anti-Virus, many legit security applications will fail to prevent them or remove them. There are some applications out there, Malwarebytes Anti Malware for example, that will remove them after infection.
However, new variants of the Rogue anti-Virus applications are starting to catch on to this, and are blocking not just the security applications, but every application on a system. The Rogue anti-Virus will lock the system down, essentially holding it ransom, until the fake software is registered.
Based on research from Panda researchers like Correll, this new wave of Rogue anti-Virus applications has the potential to turn a system in to an expensive paperweight.
“We recently stumbled across a sample (Adware/TotalSecurity2009) which uses a ransomware technique to improve its sales. Once the computer becomes infected, Total Security forces the victim to purchase it before it will allow any files from being accessed on the system," Correll noted in a recent report.
"When attempting to open a file, a message pops up in the notification area claiming that the application was blocked due to infection. The pop up recommends activating the "antivirus" software, which costs $79.95.”
Worried that someone might actually have to pay to remove this junk software, Panda released cracked serial numbers for Total Security 2009.
The following list of keys, which will all unlock Total Security 2009, should allow anyone infected the ability to remove it.
[I’ve separated the list using some keywords in the hopes that someone searching for them will find this article. If you own a blog, you too should post these keys so that they are out there. When it comes to Rogue anti-Virus, I for one am all for cracking it and handing out the serials. Sadly, the criminals might catch on and use DRM (HA!) or new keys. Let’s hope Panda keeps cracking. –Steve]
Total Security 2009 S/N:
WNDS-TGN15-RFF29-AASDJ-ASD65WNDS-U94KO-LF4G4-1V8S1-2CRFEWNDS-6W954-FX65B-41VDF-8G4JIWNDS-G84H6-S854F-79ZA8-W4ERSWNDS-TTUYJ-7UO54-G561H-J1D6F
Total Security 2009 activation:
WNDS-A1SDF-6AS4D-RF5RE-79G84WNDS-A1SDF-RY4E8-7U98D-F1GB2WNDS-5SRTS-AEHUF-YA54S-D6F35WNDS-P9685-4H41A-DSW3A-2R64TWNDS-2AE32-1VFC2-B6894-G67YU
Total Security 2009 crack:
WNDS-4TS8R-D6F5D-4JH8T-U4JK5WNDS-FGS5D-649RG-4S53D-412SFWNDS-452S3-ER00F-TSE35-S8FSDWNDS-SERFH-2642S-F04SD-64FG1WNDS-F40SA-1ER5H-4FG5D-F8412
Total Security 2009 removal:
WNDS-5D1V2-XB0D5-JT1TY-97DS3WNDS-4BGY2-JY4KO-IT98Y-7HJ43WNDS-G8FB6-1V87S-DRT1S-63SRGWNDS-HFVDR-9844O-U54DA-5TBSCWNDS-89OF7-7324R-5SAD4-TG68UWNDS-JUYH3-24GHJ-HGKSH-FKLSD
Interested in a more interactive TTH? Join our Facebook Group Want regular updates from The Tech Herald? Follow us on Twitter
Advertising
Comment on this Story