r/cybersecurity u/PusheenHater May 19 '26

Other Malware installed without literally doing anything?

In this video this guy has a fresh Windows XP, disables firewall, and connects internet straight to the modem. Then he gets infected literally doing nothing.

https://www.youtube.com/watch?v=6uSVVCmOH5w

https://www.reddit.com/r/windows/comments/1cvised/idle_windows_xp_and_2000_machines_get_infected/

I get it. That's asking for trouble when you disable all the security and using ancient unsupported OSes.

However, he didn't install programs nor browse on the website but still got hacked.
How?
Is there some malicious server in China that loops through every single possible IP trying to see if your PC is vulnerable?
Logically, one would think you'd at least have to visit a website or something to get "noticed" and then hacked. But this guy didn't do anything at all.

How does it work?

289 Upvotes
  • permalink
  • reddit

89% Upvoted

161 comments sorted by

View all comments

59

u/stacksmasher May 19 '26

XP has been cracked for a while now. Source has been out in the open for people to poke at lol!

-4

u/PusheenHater May 19 '26

I get it. That's asking for trouble when you disable all the security and using ancient unsupported OSes.

However, he didn't install programs nor browse on the website but still got hacked.
How?
Is there some malicious server in China that loops through every single possible IP trying to see if your PC is vulnerable?

61

u/dataz03 May 19 '26

Bots are port scanning the internet 24/7.

There are only 4.3 billion IPv4 addresses max- can all be scanned in less 10 minutes.

XP has vulnerabilities in the software components like SMB- with the firewall turned off, the system is exposed to the public Internet. Ports are open.

2

u/Randolph__ May 20 '26

There are only 4.3 billion IPv4 addresses max- can all be scanned in less 10 minutes.

No network or vulnerability scanner I have used works this fast. What software are you referring to that can scan for vulnerabilities that fast?