How long do you think it takes an unprotected Windows XP box to fall foul to malware? To be clear, this is a machine sitting idle, no internet browsing required, just connected to the internet.
One YouTuber, Eric Parker, decided to find out (via XDA). Using a virtual machine, Parker set up a Windows XP instance and configured it to be fully exposed with no firewall and no anti-virus software, just like the good old days. So, how long exactly does it take for malicious software to appear on the PC?
Parker returns to the PC 10 minutes later and, sure enough, there's something nasty running in Task Manager named conhoz.exe, a known trojan.
He shuts that process down and leaves the machine running. Within just a few more minutes, a new user has been added, plus a number of new processes, including an FTP server.
So, yeah, within 15 minutes that's multiple malware processes and an entirely compromised machine with the bad guys having already created a new admin account and an FTP server running locally. Jaysus!
Parker then traces the malware's communication to, yup you guessed, the Russian Federation. He speculates that the bad guys might be trying to set up a botnet or spam email server from his compromised machine.
Further investigation reveals even more malware, including another Trojan and a rootkit. A Malwarebytes scan then reveals the full horror, with eight nasties actually running including four trojans, two backdoors, and a couple of adware apps.
Keep up to date with the most important stories and the best deals, as picked by the PC Gamer team.
In other words, the machine is already a complete and utter zombie. Anyway, it's a fun watch as Parker observes his virtual XP machine being ravaged in real time and a reminder of what bubbling away behind the firewalls and malware protections on all of our PCs.
Sniffing through your running processes in Task Manager used to be something of a regular ritual for the well-informed. Now, it's not really necessary… famous
Read more on pcgamer.com