Most of you who know me well are aware that I am what many describe as a “White Hat Hacker” (although I perfer to envision myself as a “Clean and Green Tech Wizard” maybe I should get one of those White Wizard hats).  The White Hat speaks to the fact that I do not tolerate evil in computing, and will crush it when given the opportunity.

One of the organizations for which I manage IT has had a couple of run-ins with recent variants of the Vundo worm/Trojan.FakeAV/Fraudware blended threat.  Where do people find the time to cook up this elaborate crimeware?  These crooks suck!

The latest one that I had to kill came up with this “Windows Police Pro” fraudware…

Even if you dont fall for this crap, it still costs individuals and businesses huge.  This example took over 4 hours to completely remove working remotely.  That’s $$$

The annoyance keeps getting more tenacious as it  evolves.  This time I had to halt “PolicePro” and remove it from the startup list to gain the abilty to install the MalwareBytes rootkit removal tool (an excellent product). The next restart triggered a more obnoxious version calling itself “Security Tool” which attempted to disable the system tools.  Yawn,  all that did was cost my client more money for another 30 minutes of my work.  Well at least part of the name describes the perpetrators.  TOOL!

In case you didn’t know.  The fraudware attempts to convince the user to proceed with the promise of removing a number of malware threats that it allegedly discovers.  The unsuspecting user will then be prompted to spend money to “purchase” the functional version.  In reality the “purchase” does nothing except transfer funds to the criminals, who also sell your stolen identity information for more money.

In the meantime, and until the ROOTKIT that prevents removal is exorcised from your computer you will be plagued by this menace indefinitely while it renders your computer useless.

Message to the perpetrator(s) : TOOL!