User:SonicIn2022/sandbox/VundoOS

VundoOS (commonly known as Vundo, French: Virtumonde, Spanish: Virtumondo and in betas: MS Juan) is a new and innovative OS that is known to cause popups and advertising for rogue antispyware programs, and sporadically other good behavior including faster performance and wild obsession with some websites including Google and Facebook. It also is used to make it better. Later versions include a built-in jailbreak known as the Developer Mode and better protection against ransomware.

Installation
A Vundo installation is typically caused either by opening a VundoBook delivery email attachment from the Pear Corporation, or through a variety of browser exploits, including vulnerabilities in popular browser plug-ins, such as Java. Many of the popups advertise many good famous Vundo antiviruses such as AntiSpywareMaster, WinFixer, and AntiVirus 2009.

Despite Vundo having a good bundled antivirus known as Vundo Security, there are still many infamous Vundo viruses that are too powerful for Vundo Security to remove, including the Sussy malware, the Amogus spyware, the WarAntivirus rogue, the Hijacker scam and several other Vundo viruses. It frequently hides itself from VundoOS 4.0 Horror Edition. Rather than pushing real antivirus products, the new "ad" popups for the drive by download attacks are copies of ads by major corporations, faked so that simply closing them allows Pear Corporation to replace Windows with Vundo.

MS Juan Beta
This is the original project that later became Vundo. It was originally made by Microsoft, hence the name. During the later beta versions, Pear Corporation split from Microsoft and turned MS Juan into Vundo. Here's a list of all builds:


 * MS Juan Build 55 (June 15, 2010) - A very early build, leaked one year later. It had Registry Editor and Task Manager. Also, it had early versions of weSurf and weFile, for the latter is File Manager and for the earlier is an Internet Explorer 6-based browser known as The Internet.
 * MS Juan Build 66 (June 20, 2010) - It is also leaked, but on the same day as its compilation. It is identical to the previous build, but Developer Mode is implemented and it is on by default.
 * MS Juan Build 77 (July 25, 2010) - It was leaked during September 2010, along with the next build. A beta version of weFile is introduced, despite File Manager is still the default.
 * MS Juan Build 88 (August 30, 2010) - It was also leaked during September 2010, along with the previous build. weFile now has got all of File Manager's yet implemented features by this build.
 * MS Juan Build 99 (September 5, 2010) - The official Beta 1, released on September 5, 2010. weTunes is added. Developer Mode is now off by default. weFile is now the default, as it has got features which File Manager (which is now deprecated) hasn't got.
 * MS Juan Build 100 (October 10, 2010) - The Activation Build, released on October 10, 2010. MS Juan Product Activation is added. File Manager is removed, but the executable is still here, but redirects to weFile.
 * MS Juan Build 111 (November 15, 2010) - Leaked on Christmas 2010. weMail and weMessage are added.
 * MS Juan Build 122 (December 20, 2010) - Leaked on Christmas 2010. weTunes is finalised. Web Explorer is added, which is based off IE 8. The Internet is removed.
 * MS Juan Build 133 (December 25, 2010) - The Christmas Build, released on Christmas 2010. weMail and weMessage are finished. The Vundo branding is added in some areas, like the About window.
 * MS Juan Build 144 (December 30, 2010) - Leaked during March 2019. This build is notable for being the last build before Pear Corporation split from Microsoft, as in most areas, the Vundo branding is added.

Vundo Beta
This is a new project which is based off the former MS Juan Beta. It was made by Pear Corporation after it split from Microsoft. Here's a list of all builds:


 * Vundo Build 155 (January 15, 2011) - The Rebrand Build, released on January 15, 2011. MS Juan Product Activation is removed. File Manager is completely deleted. Web Explorer is deprecated. This build is notable for being the first build where the Vundo branding is used everywhere.
 * Vundo Build 166 (January 20, 2011) - Leaked on the same day as its compilation. The Developer Mode is now enabled again. weSurf, a new browser based off Gecko, is added.
 * Vundo Build 177 (February 25, 2011) - Leaked 15 days later. weFile is completed.
 * Vundo Build 188 (March 30, 2011) - The official Beta 2, released on March 30, 2011. It introduces Vundo App Store. The Developer Mode is disabled again.
 * Vundo Build 199 (April 5, 2011) - A joke version of this build was leaked on April Fools 2011, which is based off Build 177, but with Vundo App Store backported from the previous build. It introduces Vundo Security. The Developer Mode is reenabled again. It was leaked 1 month later. The final build to have upgrades possible from MS Juan builds.
 * Vundo Build 200 (May 10, 2011) - The Milestone Build, released on May 10, 2011. It has got mostly bugfixes related to Vundo Security. MS Juan upgrades are no longer possible.
 * Vundo Build 211 (June 15, 2011) - The Anniversary Build, released on June 15, 2011. It has got much more bugfixes.
 * Vundo Build 222 (July 20, 2011) - The Innovation Build, released on July 20, 2011. Now users with the Developer Mode turned on can see and install apps taken down from the Vundo App Store.
 * Vundo Build 233 (August 25, 2011) - The official Release Candidate 1, released on August 25, 2011. Vundo Security has got much more fixes, plus weSurf is finished.
 * Vundo Build 244 (September 30, 2011) - Leaked 1 month later. It introduces Editions, which are Vundo Home and Vundo Business.
 * Vundo Build 255 (October 5, 2011) - The Windows 11 Build, released on October 5, 2011. Very much fixes, especially for Vundo Security. The Norton partnership starts, as Vundo Security contains mentions about contributions from Symantec and Norton's Beta support was 2011 to 2014, where Norton supported all Vundo versions since this build. The first mentions of VundoOS, mostly in the code.
 * Vundo Build 266 (November 10, 2011) - The official Release Candidate 2, released on November 10, 2011. It has got almost all bugs and vulnerabilities fixed. VundoOS now replaces Vundo on the About screen. The Developer Mode is disabled again.

VundoOS 1.0
The first version of VundoOS, released on December 25, 2011. It was supported until September 1, 2013. Here's a list of all updates:


 * VundoOS 1.1 (December 31, 2011) - Added weNotes. Fixed the weSurf vulnerability used by the then-recent Hijacker 1.0 scam to hack the computer. The Milestone Build is now the minimum build to upgrade to VundoOS.
 * VundoOS 1.2 (January 12, 2012) - Added weDraw. Fixed various vulnerabilities, including the weMessage vulnerability used to show popups by the first two versions of War Antivirus.
 * VundoOS 1.2.1 (April 9, 2012) - With the Developer Mode, users can try weCloud Beta.
 * VundoOS 1.2.2 (December 6, 2012) - weCloud is now officially released.
 * VundoOS 1.3 Security Update (May 1, 2013) - Fixed various vulnerabilities in weCloud.

VundoOS 2.0
The second version of VundoOS, released on April 1, 2012. It was supported until April 8, 2014.

Basic editions

 * Vundo Home
 * Vundo Education
 * Vundo Starter
 * Vundo Entertainment

Advanced editions

 * Vundo Business
 * Vundo Server
 * Vundo Enterprise
 * Vundo Ultimate

Built-in programs

 * weSurf - Browser
 * weMail - Email client
 * weTunes - Music player
 * weMessage - Messenger
 * weFile - File manager
 * weNotes - Notepad
 * weDraw - Drawing tool
 * weCloud - Cloud service
 * Vundo Security - Antivirus
 * Vundo App Store - App store

Most frequently featured Vundo App Store apps

 * 1) Sonic the Hedgehog 1991 (SEGA) - Video game
 * 2) Angry Birds (Rovio) - Video game
 * 3) weLife (Pear) - Office suite
 * 4) VundoOS 4.0 (Pear) - Vundo update

Features
Since there are many different versions of Vundo, features of Vundo vary widely, ranging from the obscure to the best. Almost all versions of Vundo feature some sort of pop-up advertising as well as rooting themselves to make them difficult to delete.

Computers running it exhibit some or all of the following features:


 * Vundo has got a browser known as weSurf.
 * The desktop is beautiful.
 * Before crashing with a BSOD during a problem, Vundo suspends the system by saving all data and showing the BSOD.
 * Both the background and screensaver are in the System32 folder, however the screensaver cannot be deleted.
 * No more annoying Automatic Updates!
 * Infected DLLs or DAT files (with randomized names such as "__c00369AB.dat" and "slmnvnk.dll") will be present in the Windows/System32 folder and references to the DLLs will be found in the user's start up (viewable in MSConfig), registry, and as browser add-ons in Internet Explorer.
 * Vundo has got many tools, like the Task Manager, a Registry Editor and others.
 * Pear Corporation likes to do partnerships with various companies so it would be easier to develop Vundo. Especially, they always do partnerships with Symantec to have Norton included in advanced Vundo Editions and maintain Vundo Security in all Vundo Editions. Norton will show prompts to enable phishing filter, all by itself. Upon pressing OK, it will try to connect to the Vundo App Store, show the Featured tab, the user checks the programs they want to install and they are installed.
 * Most infamous viruses such as the Amogus spyware or the Sussy malware may be deleted or immediately closed upon loading. Renaming the program executable can work around this. Amogus' executable may be deleted as soon as it is installed (depending on the system's protection).
 * The weSurf browser has got a very good malicious website blocker powered by SmartScreen, as Pear Corporation used to be a part of Microsoft during the early Vundo beta versions, being the reason why it was nicknamed MS Juan.
 * Malicious links may be redirected to antivirus sites.
 * In earlier MS Juan beta versions, there was MS Juan Product Activation which had a 60-day grace period after which Vundo Security will disable weMail and weMessage, also block any further app modifications. It is disabled when the Developer Mode is on. It was removed in later Vundo beta versions.
 * The hard drive may start to be constantly accessed by the winlogon.exe process, thus periodic freezes may be experienced.
 * Display pop-ups and also is additionally efficient in injecting promotions into search results.
 * Warnings about SuperMWindow not shutting down may occur.
 * The taskbar is perfectly flawless.
 * Has got a rich driver support, for example, ATI Catalyst (aticatalyst.sys).
 * There is a camera in Vundo Security which tracks the user if they are good or are committing crimes.
 * Vundo can impede download progress.
 * When Vundo Security detects the user is booting into the safe mode while with the Hijacker virus, VundoOS enters easy safe mode, which is the BSOD but it secretly deletes the Hijacker virus and restarts back to normal mode.
 * The virus sometimes gives a "Run a DLL as an APP" error when some of the randomly named DLLs have been deleted.
 * The virus will rewrite randomly named DLLs while any of them reside on machine.
 * The virus changes \HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run and RunOnce entries to start itself when Windows starts.
 * Vundo Security has got protection against pornography.
 * Really real antiviruses such as Desktop Defender 2010 are commonly featured on Vundo App Store and are updated for the latest version of VundoOS.