The SpywareGuide Greynets Blog: YHGames - No Fun, No Games

Quick Links: SpywareGuide Greynets Blog | SpywareGuide Product Database | SpywareGuide Company Database | SpywareGuide Categories

SpywareGuide powered by FaceTime Security Labs

Search SpywareGuide Greynets Database & Site

Security Email Alerts & Updates

Search the Blog

Recent Posts
More Fake Instant Messaging Scams Fake GoogleTalk Application In The Wild Random Skype Conversations With A Bulgarian...Sort Of Comments Working (Again!) Memehacks It's A Trap! I Just Called, To Say.......Nothing, Actually Beware: New MSN Messenger Password Stealing Program In The Wild Pinont.com - No Need To Panic The Spectre Of Rogue Facebook Applications, Back Once More

Categories
419 Adware / Spyware Issues Botnets Conferences Development EULA Madness In The Press Instant Messaging Instant Messenging Miscellaneous Myspace P2P / File Sharing Phish Phishing Scams Privacy Issues Research Adware Research Greynets Research Spyware Research Technical News Round Up Social Networking Spam The Mail Bag Tips and Tricks Travel Videogames Worms

Monthly Blog Archives
May 2008 April 2008 March 2008 February 2008 January 2008 December 2007 November 2007 October 2007 September 2007 August 2007 July 2007 June 2007 May 2007 April 2007 March 2007 February 2007 January 2007 December 2006 November 2006 October 2006 September 2006 August 2006 July 2006 June 2006 May 2006 April 2006 March 2006 February 2006

Links
FaceTime VitalSecurity Revenews XBlock

Subscribe
Subscribe to this blog's feed

About the Blog
About SpywareGuide Greynets Blog

Link to Us
Link to SpywareGuide.com

« Bang the Gong | Main | Myspace Spammers Just Aren't Trying Anymore »

YHGames - No Fun, No Games

Do you think the following website is all sweetness and light?

http://blog.spywareguide.com/upload/2007/10/yhgames0-thumb.jpg

Click to Enlarge

.....well, now that you mention it....

http://blog.spywareguide.com/upload/2007/10/yhgames00-thumb.jpg

Click to Enlarge

....whoops. Still, it's worth noting that, as with so many of these infection files, you DO sometimes get a few chances to redeem yourself before everything goes pear shaped:

http://blog.spywareguide.com/upload/2007/10/yhgames000-thumb.jpg

Click to Enlarge

Mind you, this would be a pretty boring blog entry if we did the sensible thing and failed to run the executable, right? Run it, run it, I hear you cry.

Well, okay then, just for you I'll run it...this is what ends up in your System32 Folder:

One of the files made reference to IFRAMES inside the code - never a good sign:

The page mentioned wasn't available during testing, so it could have been trying to load pretty much anything at all, from dubious advert to rogue executable. Who knows. What we do know, is that when everything is done and dusted, you're left with references to Browser Helper Objects:

...Winsock Layer hijacks...

...and a rogue service:

....that's a lot of hoop jumping to monitor what websites you're visiting, but oh well.

YHGames - no fun, no games.

Posted by Paperghost on October 30, 2007 08:31 AM | Permalink

TrackBack

TrackBack URL for this entry:
http://blog.spywareguide.com/mt/mt-tb.cgi/227

Listed below are links to weblogs that reference YHGames - No Fun, No Games:

» online slot for windows activation from online slot for windows activation
rebounds:pretentious:unextended salami:maintenances?carnivorous [Read More]

» term life insurance policy from term life insurance policy
acne?computerizing chief [Read More]

Site EULA | Site Map | Contact Us | About Us | Site and Spyware FAQ | Advertise | RSS Feeds | Link To Us | SpywareGuide Japan

© Copyright 2006, FaceTime Communications, Inc. All rights reserved.