Êtes-vous un étudiant de l'EPFL à la recherche d'un projet de semestre?
Travaillez avec nous sur des projets en science des données et en visualisation, et déployez votre projet sous forme d'application sur GraphSearch.
Concept
SpySheriff
Résumé
SpySheriff is malware that disguises itself as anti-spyware software. It attempts to mislead the user with false security alerts, threatening them into buying the program. Like other rogue antiviruses, after producing a list of false threats, it prompts the user to pay to remove them. The software is particularly difficult to remove, since it nests its components in System Restore folders, and also blocks some system management tools. However, SpySheriff can be removed by an experienced user, antivirus software, or by using a rescue disk.
SpySheriff was hosted at both www.spysheriff.com and www.spy-sheriff.com, which operated from 2005 until their shutdown in 2008. Both domains are now parked. Several other similarly-named websites also hosted the program but have all been shut down. Several typosquatted websites (including a fake version of Google.com called Goggle.com) also attempted to automatically install SpySheriff.
SpySheriff is designed to behave like genuine antispyware software. Its user interface features a progress bar and counts allegedly found threats, but its scan results are deliberately false, with cryptic names such as "Trojan VX ..." to mislead and scare the user.
Removal attempts may be unsuccessful and SpySheriff may reinstall itself.
The desktop background may be replaced with an image resembling a Blue Screen of Death, or a notice reading, "SPYWARE INFECTION! Your system is infected with spyware. Windows recommends that you use a spyware removal tool to prevent loss of data. Using this PC before having it cleaned of spyware threats is highly discouraged."
Attempts to remove SpySheriff via Add or Remove Programs in Control Panel either fails or causes the computer to restart unexpectedly.
Attempts to connect to the Internet in any Web browser is blocked by SpySheriff. Spy-Sheriff.com becomes the only accessible website, and can be opened through the program's control panel.
Attempts to remove SpySheriff via System Restore are blocked as it prevents the calendar and restore points from loading.
Source officielle
À propos de ce résultat
Cette page est générée automatiquement et peut contenir des informations qui ne sont pas correctes, complètes, à jour ou pertinentes par rapport à votre recherche. Il en va de même pour toutes les autres pages de ce site. Veillez à vérifier les informations auprès des sources officielles de l'EPFL.