Your Ad Here Your Ad Here
Results 1 to 7 of 7

Thread: Windows Genuine Disadvantage malware sighted

  1. #1
    ZaZu's Avatar I know stuff ...
    Join Date
    Sep 2003
    Perfidious virus pushers have created a worm that poses as Microsoft's anti-piracy program, Windows Genuine Advantage (WGA).

    The Cuebot-K worm spreads via AOL instant messenger in the guise of WGA. The timing of the release of the malware coincides with controversy over a feature in WGA that meant that the anti-piracy program "phoned home" with hardware and software data from PCs every time Windows started up.

    Cuebot-K attempts to register itself as a new system driver service called 'wgavn', with the display name 'Windows Genuine Advantage Validation Notification'. Thereafter it runs every time a computer starts up. Users who attempt to remove the malware are falsely informed that getting rid of the program will result in system instability.

    Once installed on infected machines, Cuebot-K disables Windows firewall and opens a backdoor on compromised machines, surrendering their control to hackers.

    More information on the malware can be found in an analysis by anti-virus firm Sophos here.


    I ain't got WGA and don't plan on installing any new Microsloth stuff ... gonna switch permanently to Linux ...
    Last edited by ZaZu; 07-04-2006 at 07:35 PM.

    If you attack the establishment long enough and hard enough, they will make you a member of it.
    -- Art Buchwald --

  2. News (Archive)   -   #2
    Tempestv's Avatar Engineer
    Join Date
    Feb 2006
    I run windows and office, but that is all the microsoft stuff I run. do you really think I would trust the security of my machine to microsoft?
    Plan for the worst, hope for the best

  3. News (Archive)   -   #3
    Microsoft keeps invading privacy, all to fight piracy... no need to keep the call back feature when it has been prooved to be authentic... Imo

  4. News (Archive)   -   #4
    had one of those today on a customers pc nasty little bugger

  5. News (Archive)   -   #5
    Join Date
    Jul 2006
    The length these idiots go to in order to create a virus.Don't they have anything better to do?

  6. News (Archive)   -   #6
    sear's Avatar Feeling Clamy BT Rep: +3
    Join Date
    Mar 2006
    I thought WGA was malware I mean it tried to sneak on to my system then send it's data back to it's paymaster.

  7. News (Archive)   -   #7
    tesco's Avatar woowoo
    Join Date
    Aug 2003
    Quote Originally Posted by sear
    I thought WGA was malware I mean it tried to sneak on to my system then send it's data back to it's paymaster.
    It's microsoft malwares.


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts