Wista Antivirus is an rogue antivirus which is name is really wista antivirus without any mistake or mispell this rogue is specified a clone of spywareisolator.
When starting the splash screen is loading.
After loading a scan with few non existent things has been loaded.
Interface Look Like This.
Upon this rogue has finished the scan is pop up an warning with an sound incoming look like a siren.
One or more threats are indecent somehow so i check back to settings to check out what he have.
It said to turn on everything to pay up to 90 USD TO this rogue however i load ollydbg to check out to retrieve an activation key
And this does every time click it have an sound effect so no pop up payload taskbar.Sounds idle
And all stuff to turn on it require register of license :
And if we see the infections of the spyware scan it look like this.
How i do know the variant of SpywareIsolator and innovagest2000 / Bakasoftware?Mostly it have wav file and dll folder nothing at all include an rogue with large installer MB
The installer of the wista antivirus was identified.
wistaantivirus_setup.exe
MD5
bc73a7bf5758a10e53b6a5928b983c9e Adware.SpywareIsolator Wistaantivirus.s And now we are making the activation process.The fever of rogues on full version incoming.
And finally we know what to do the code is 3927306263 with my caps off name as seen it check clipboard this rogue but it require to press the button.
And finally success.Nice one full version and if we click on any attempt to remove the threats.
So to have an high protection and threat remove it says to reboot the PC Process so it have glitch if on registred app said invalid key it corrects back to the previous valid.
Well after restart registred and perfect :) no more false positive and disable the register button
No found viruses.
Turned on everything hmm.
Then this one is falling on my attempt of full version.
His name is funny but great thanks to Fedor22.For sharing this sample. Video Review :
Stay away.This rogue sample was tested in 2018 - 2019
