8 replies to this topic

[RnGx]

Page Is

http://puma09.weebly.com

[Fatdcuk]

Hmmm so what happens if you keep trying it ?

Page source constains nothing suspicious

[RnGx]

what did it do
did it say
WHAT IS SPYWARE?
On The Page?
if it did click "download" section
and download the .exe

[MysteryFCM]

You sure the URL is correct?

Site not published
The site you are looking for has not been published. 

If you are the owner of the site, you can fix this message by republishing your site.

[RnGx]

might have gone down
try i use weebly
(no i did not make the page)
sometimes they get qued
so visit again
ok?

[Falkra]

Hello,

if you can get it, please post the direct link to the mentionned .exe file (post #3).

[RnGx]

got the url may not work!

http://www.weebly.com/uploads/2/6/1/1/2611103/puma.vbs

[RnGx]

i infected my vmwae and got the code
here it is

x=msgbox("Puma Antivirus 09 Loading...")
x=msgbox("Running Full Scan") 
x=msgbox("YOUR SYSTEM IS CRITICALLY INFECTED WITH 57 PRIVACY VIOLATIONS")
x=msgbox("TESTING CRITACAL SYSTEM FILES")
x=msgbox("please wait
x=msgbox("testing notepad...")
x=msgbox("file notepad.exe infected with W32/Plaien.exe")
x=msgbox("testing mspaint...")
x=msgbox("mspaint.exe infected with backdoor/keylez!")
x=msgbox("testing mshearts...")
x=msgbox("mshearts.exe infected with keylogger.mantais")
x=msgbox("VITAL SYSTEM PARTS ARE INFECTED!REMOVE MALWARE/VIRUSES?")
x=msgbox("infections removed thank you for using Puma Antivirus 09!")

pretty simple huh? class it rouge?
well its free but detects nonexistent threats

[RnGx]

actully heres the proper page
(same as last posted but 2 is 3)