 Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | Infect safely a system with a real malicious program SecurityFocus | 2009-12-11
»www.securityfocus.com/brief/1047
Computer users who have never had the misfortune to infect their system with malicious software can now see screenshots of a real-time virus infections, thanks to the efforts of a team of Web designers.
The cloud service, dubbed VirusZoo, allows registered users to select a real malicious program, infect a virtual system, and get screenshots of the result, according to SkyRiser Media, the group behind the effort. The programmers use a virtual machine running on the Mac OS X Snow Leopard operating system to host an instance of the Windows operating system. Using viruses culled from BitTorrent, the group allows users to select a piece of malicious code and run the program.
"Don't worry, there is no risk of infecting your own computer on this site," said Chris Comeau, one of the site's creators.
While the Web site does not teach users how to protect their systems, it seems to be configured safely, says Vincent Weafer, vice president of security firm Symantec, which owns SecurityFocus.
"It is kind of a neat little feature idea," Weafer said. "It is a cool way to show people what an infection looks like." Have fun with VirusZoo here: »www.viruszoo.com/
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
Official Jetico Inc. Support Forums »www.smokey-services.eu/ |
|
 CudniLa Merma - VigiladoPremium,MVM
join:2003-12-20
Someshire
kudos:13 | Interesting  |
|
 ahulettLife Without WallsPremium,VIP
join:2003-02-02
Bellevue, WA
kudos:2 | reply to Smokey Bear
Umm, are these virtual machines isolated from the Internets?
Real question: Are these infected VMs spreading malware to others on the Internets?
If they're online, you'll get a better idea of what's going on at the cost of potentially infecting others. If they're isolated, then you won't get a 100% true representation. And if the virus/malware runs in stealth, screenshots are pointless.
"A safe and fun way to play with viruses." -- there is no such thing as a safe way to play with viruses... wonder when this'll bite them in the butt.
What the hell is the point of this?
//A
--
Aaron Hulett | Microsoft Malware Protection Center
This post is provided "AS IS" without warranty, and confers no rights. |
|
 SparkChaserAvatar is not a SparkPremium
join:2000-06-06
Downingtown, PA
kudos:3
 ·Verizon FiOS
 ·Comcast
| said by ahulett:Umm, are these virtual machines isolated from the Internets? from FAQ
Is this safe?
Absolutely. No viruses or malware are present on this web server. As a precaution, a daily antivirus scan is performed on the web server.
How does it work?
A virtual machine under VMWare is running on a different machine from the web server. Once a virus is triggered through VirusZoo, the file is executed on the virtual machine.
The virtual machine is wiped clean to a stable state every night, or every time it crashed or become unresponsive due to virus activity.
--
--
--
"Facts do not cease to exist because they are ignored." - Aldous Huxley
"Children will not remember you for the material things you provided, but for the feeling that you cherished them." - Richard Evans |
|
ahulettLife Without WallsPremium,VIP
join:2003-02-02
Bellevue, WA
kudos:2
1 edit | Yes, but, are these virtual machines isolated from the Internets?
Edit for disclaimer - This post is provided "AS IS" without warranty, and confers no rights. |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | Vincent Weafer, vice president Symantec:
it seems to be configured safely We have to trust Vincent's words.  |
|
 TechnogeezAgape in amazement.Premium
join:2007-01-20
·AT&T U-Verse
·Verizon FiOS
| said by Smokey Bear:Vincent Weafer, vice president Symantec: it seems to be configured safely We have to trust Vincent's words. OK -- I trust him about as much as I trust his company's software that I don't run since the Huawei-Symantec joint venture...
--
Read your contract and TOS before signing anything. |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | Can be you don't trust Symantec but I have no doubts at his competence to rate something as being trustworthy or malicious. |
|
 Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:9 | reply to Smokey Bear
Why would anyone want to purposely infect a machine? (Even for 'play') seems kinda stupid and childish... |
|
 exocet_cmBuckle up, it's the lawPremium
join:2003-03-23
New Orleans, LA
kudos:2 | said by Dude111:Why would anyone want to purposely infect a machine? (Even for 'play') seems kinda stupid and childish... Yes, it does.
The only people I can see doing this are pseudo tech-savvy persons. Somebody who knows enough to get by ("Hey, I can fix your computer for you.") but stupid enough to not get the job done correctly ("Yeah, something is wrong with your operating system. I recommend your reinstall everything.")
They will try this out, take a little bit of what they witnessed and store it in their heads, then apply that portion of what they learned to real-world situations.
"Well you see, when you got infected with that computer virus, this is what happened..."
I can see virus-testing on an isolated machine in a test lab would be beneficial, but not on this setup, imo.
--
"I have measured out my life with coffee spoons..." - T.S Eliot
"I have often regretted my speech, never my silence." - Publilius Syrus
Ma blog: »www.johndball.com |
|
|
|
 KayracPremium
join:2001-09-29
Madison, WI | reply to Smokey Bear
infected yourself can be interesting, on a VM ofcourse
but it looks to me like all the viruses go onto the SAME machine
theres no real knowledge benefit from infecting the same machine with 300+ infections, it's strictly for boredom purposes i would assume |
|
| reply to Smokey Bear
I can't wait for Upload.
That will save soo much time, many times I just infect my VM and not to study the effects but to just see if it's really an infection or FP.
This will save a lot of time by allowing me to (eventually) upload the software to their vm.
For in depth study I will still use my VM but for the random 2 AM, run I can use them. |
|
KayracPremium
join:2001-09-29
Madison, WI
1 edit | said by tempnexus:I can't wait for Upload. That will save soo much time, many times I just infect my VM and not to study the effects but to just see if it's really an infection or FP. This will save a lot of time by allowing me to (eventually) upload the software to their vm. For in depth study I will still use my VM but for the random 2 AM, run I can use them. like i said, this puts all infections on ONE PC, if you want quick analysis of malware check out these links
»anubis.iseclab.org/?action=features
»camas.comodo.com/
»www.joebox.org/
»threatexpert.com/
»malzilla.sourceforge.net/ (for retrieving the malware safely)
many more great links/knowledge at
»www.malwaredomainlist.com/ (warning possible live samples here, the website itself is obviously not infected, but it does link to live viruses)
MDL is where i learned alot of what i know, and while i don't really check out malware anymore, they are great/helpfull folks over there with lots of knowledge
if your were interested in learning more that is
EDIT,
»www.malwaredomainlist.com/forums···c=1544.0
for a huge list........dunno if it's available without registering though |
|
| Thanks.
MDL sounds like a great resource. |
|
 pnjunctionTeksavvy ExtremePremium
join:2008-01-24
Toronto, ON
kudos:1
·TekSavvy Cable
1 edit | reply to Dude111
said by Dude111:Why would anyone want to purposely infect a machine? (Even for 'play') seems kinda stupid and childish... They're virtual machines. Kill it and the infection is gone, start a new one.
In terms of educating people this could be useful. If not to help prevent infections, at least recognize them so that people don't just keep using infected computers which spread the infection or fall under malicious control. |
|
Reviews:
·Charter
 ·Clearwire Wireless
| reply to exocet_cm
said by exocet_cm:said by Dude111:Why would anyone want to purposely infect a machine? (Even for 'play') seems kinda stupid and childish... Yes, it does. The only people I can see doing this are pseudo tech-savvy persons. Somebody who knows enough to get by ("Hey, I can fix your computer for you.") but stupid enough to not get the job done correctly ("Yeah, something is wrong with your operating system. I recommend your reinstall everything.") They will try this out, take a little bit of what they witnessed and store it in their heads, then apply that portion of what they learned to real-world situations. "Well you see, when you got infected with that computer virus, this is what happened..." I can see virus-testing on an isolated machine in a test lab would be beneficial, but not on this setup, imo. Job done correctly? The real answer for viruses is to reinstall. It may not make someone money, or keep settings and folders, but anything collecting data, planting worms, could still have things planted and you may not get everything out.
I've been down this road before, fixing people's pcs, and I've given it up, because what needs to change are people's bad surfing habits, not the pc afterwards. |
|
Smokey Bearveritas odium paritPremium
join:2008-03-15
Annie's Pub
kudos:4 | said by Metatron2008:I've been down this road before, fixing people's pcs, and I've given it up, because what needs to change are people's bad surfing habits, not the pc afterwards. IMO turning down people searching for help is not the desired way. And keep in mind that even so called 'prof's', 'experts' or give it a name are victim of malware.
It should be a mix of measures to teach and help people: information, education, advising, and last but not least: real help and assistance in case the user is in trouble.
A flat refusal isn't the road to follow: it only produce losers.
--
Smokey's Security Forums »www.smokey-services.eu/forums/
Smokey's Security Weblog »smokeys.wordpress.com/
Official Jetico Inc. Support Forums »www.smokey-services.eu/ |
|
nitzanPremium,VIP
join:2008-02-27
kudos:2 | reply to Dude111
said by Dude111:Why would anyone want to purposely infect a machine? (Even for 'play') seems kinda stupid and childish... Why does everything have to have a reason? it sounds like a fun idea to me. Not appealing enough for me to actually try it (I know what a virus looks like...) - but I can see some people playing with this for hours.
I could be wrong - but I don't see them claiming to be an educational source or anything like that. For all we know they're just doing this for fun. Nothing wrong with that. |
|
 VampirefoPremium,MVM
join:2000-12-11
Huntington, WV
kudos:1 | reply to Smokey Bear
Well I tried the site but does nothing from my Linux box, perhaps this is just for windows users. What would be beneficial if a install monitor was installed then one could install a virus and see exactly what files are created deleted and what registry entires are added and removed.
--
Best RegardsVampirefo |
|
 Grail KnightWho Dares WinsPremium
join:2003-05-31
Valhalla
kudos:5
·Time Warner Cable
| reply to Smokey Bear
quote:
A flat refusal isn't the road to follow: it only produce losers.
It also produces more income for the Tech that does not say no.
Money is money after all.
--
2012 it’s not just another year it is your last year! |
|
