http://pandalabs.pandasecurity.com/archive/Anatomy-of-a-Rogue-Security-Campaign.aspxReference for diagram: Step 1: Blue Shows the process at which the user will be directed to the infected website. Step 2: Red Shows the path of the harvested information from the user to the black market. Step 3: Green Shows the payments from the userenCommunityServer 2.1 SP2 (Build: 61120.2)