News

Powerful Cloud Backup? No! It's an Elaborate Hoax

2014-07-18

A charming girl, a handsome boy, an innocent puppy, flying soap bubbles... As these pictures are rendered, don't you feel warm and satisfied? Baidu Antivirus Security Center has discovered malware called "Trojan.Win32.AnyProtect.50" that lulls users into registering for their software (the cheapest version costs 59.99 USD). Then, in order to boost their registration rate they harass users every time they start their computers and even have a very complex quit process - users must click the close button twice and then select the inconspicuous close option in the lower-left corner to quit.


Last year, the renowned Ransomlock made everyone take a second look at data security and many people began to use cloud services to backup their data. However,costly software like AnyProtect surely can defend your data, right? In fact,after analysis, Baidu Antivirus security experts have discovered that it is nothing but an elaborate hoax.

 

First,let's install the malware as we normally would do (generally, it works its way into your computer as bundled software). We can see that there is only one main program, AnyProtect.exe (real software usually contains a large number of modules to support various features).

 

Next, we use compression software to directly open the massive program. But, who even knows what 101~.swf is?


To research this large swf file, we load it with a tool.Well,this seemingly elegant software turns out to be nothing more than a music video.


But why would I need to pay 59.99 USD for an MV?


Baidu Antivirus security experts would like to remind users that the Internet is full of malware. These programs use threat, fraud, and disguise to convince users that they must have them. Actually,they do not make your computers faster or safer. They are only after your money.

 

Installing genuine security software will guard you against fraud and harassment. Currently, Baidu Antivirus users can protect against these malware just by enabling the full protection feature. It is recommended that the other users download the latest version of Baidu Antivirus and enable the full protection feature so that malware will not be installed.


Baidu Antivirus official Facebook: https://www.facebook.com/BaiduAntivirusEN