![]() The screen’s text rambles a lot about errors and Trojans and displays the phone-number they would like you to call. Once the victims log back on, they will be confronted with this fake BSOD screen: This sequence of events is programmed in a simple batch file that opens the site and commands the computer to shut down in 5 minutes. We have reported this site to Yola and are awaiting a reply. Since offers users the option to track visitors to their sub-domain, we suspect this site to be built to keep track of the people that installed the “software”. ![]() and this site opening in our default browser: Running an executable file posing as an installer for “VMC Media Player”, we were greeted by these prompts telling us we were going to be logged off. But one infecting you with the other is both weird and awful. And if you have also read the follow-up, you know that there are a lot of variants to this one. If you have read the blog post about Tech Support Scammers using the Winlogon Shell registry value, you know the basics about how this one works.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |