Pirated Windows 7 Builds Botnet with Trojan

Captain Zero said:

At this point, stealing Win7 is like trying to do a dine-and-dash in a soup kitchen.

Wat?

It's more like sneaking in the back door and grabbing a bowl before they're open for business. OF course you can get it free if you wait in line but you're hungry now and someone left the door open.

Pretty simple: the version on torrent sites was available before the 5th of May. And I needed it before the 5th of May :)

Captain Zero said:

At this point, stealing Win7 is like trying to do a dine-and-dash in a soup kitchen.

Wat?

Its not that these people want to steal it, they want to infect people with malware etc.. and simply using windows 7 as bait.

Probably trying to phish firefox and ie passwords for paypal and similar.

Any new/popular/wanted software is at high risk of this type of thing, it happens a lot these days and most people i doubt even realise until there paypal accounts are emptied or purchases of digital goods start appearing on their CC bills.

Some people might call it karma for using warez/torrent sites.

Some people might call it karma for using warez/torrent sites.

i call it idiocy

jimbo45 said:

Hi all

Why don't people EVER give PROPER info for this stuff

1) If MS knows that these are "Infected" - give the hashes for the "Infected" builds -- we've all got the hashes for the Official builds so it's easy to check.

2) Say WHAT BUILDS are infected. Microsoft has been burying its head like an Osterich in the sand even refusing to ACKNOWLEGE any builds other than the BETA 7000 and the official 7100 EVEN EXIST.

3) If this stuff has a botnet / trojan in it publish a method of detection -- some people will ALWAYS use stuff from "dubious" sources -- and in doing so can transmit stuff to software obtained Legitimately.
By just saying certain downloads might contain a Botnet etc without publishing methods of detection etc is just being PLAIN IRRESPONSIBLE.

Information such as saying "XXXX" might contain a virus / malware etc doesn't actually help ANYBODY and merely re-inforces the perception that they are just scaremongering.

If your build matches the Official one it WON'T contain anything it shouldn't.

Of course with the Official RC being easily (and quickly) available it really doesn't make any sense to download it from a torrent -- but that is a TOTALLY different issue.

Cheers
jimbo

Good post and I agree.

jimbo45 said:

Hi all

Why don't people EVER give PROPER info for this stuff

1) If MS knows that these are "Infected" - give the hashes for the "Infected" builds -- we've all got the hashes for the Official builds so it's easy to check.

2) Say WHAT BUILDS are infected. Microsoft has been burying its head like an Osterich in the sand even refusing to ACKNOWLEGE any builds other than the BETA 7000 and the official 7100 EVEN EXIST.

3) If this stuff has a botnet / trojan in it publish a method of detection -- some people will ALWAYS use stuff from "dubious" sources -- and in doing so can transmit stuff to software obtained Legitimately.
By just saying certain downloads might contain a Botnet etc without publishing methods of detection etc is just being PLAIN IRRESPONSIBLE.

Information such as saying "XXXX" might contain a virus / malware etc doesn't actually help ANYBODY and merely re-inforces the perception that they are just scaremongering.

If your build matches the Official one it WON'T contain anything it shouldn't.

Of course with the Official RC being easily (and quickly) available it really doesn't make any sense to download it from a torrent -- but that is a TOTALLY different issue.

Cheers
jimbo

jfar said:

Good post and I agree.

PhreePhly said:

Well said. Again, I request that if interim builds are released, that the admins stick a Hash Thread in the sticky session that is read only. This thread will track known good hashes for each build released. Someone with access to the "real interim build" and is known to the admins as trustworthy, can verify the hashes. These trusted folks are doing nothing wrong by providing a hash value, so they are not in danger of violating their NDA. Provide both MD5 and SHA-1, so that we can compare both. (I'm cool with just the SHA-1, but to help the truly paranoid if both match, it is impossible that the files are different).

I will probably stick with the RC at this point, but for the others that need the latest and greatest, this website can provide some security and keep the malware out.

PhreePhly

Agree 100%..:)

Hi all

I've posted this before -- but as a reminder

If you get really desperate try this NEW version of W7 -- you don't need ANY AV software either or even bother with such mundane things like keeping Online Bank passwords safe -- this version will store this stuff everywhere on the Internet so you will always be able to retrieve your data from any computer on the planet at any time -- The worlds FIRST UNIVERSAL OS.

Enjoy

Cheers
jimbo