|
Home Forum Radio Memberlist Help Search Quick Links | |
| Forum Index » Internet » Security Alerts and vulnerabilities » Virus Alert from Panda AV |
| Security Alerts and vulnerabilities Lets keep abreast on the latest threats by posting those findings here.. |
 |
 |
|
Thread Tools | Display Modes |  |
|
#1
01-10-2005, 10:09 PM
|
||||
|
||||
|
MADRID, January 10, 2005 - PandaLabs has detected the appearance of two new
Trojans, Trj/WmvDownloader.A and Trj/WmvDownloader.B, which are spreading through P2P networks in video files. These Trojans take advantage of the new technology incorporated in Microsoft Windows Media player called Windows Media Digital Rights Management (DRM), designed to protect the intellectual property rights of multimedia content. When a user tries to play a protected Windows media file, this technology demands a valid license. If the license is not stored on the computer, the application will look for it on the Internet, so that the user can acquire it directly or buy it. This new technology is incorporated through the Windows XP Service Pack 2 + Windows Media Player 10 update. The video files infected by these Trojans have a .wmv extension and are protected by licenses, supposedly issued by the companies overpeer (for Trj/WmvDownloader.A), or protectedmedia (for Trj/WmvDownloader.[img]style_emoticons/<#EMO_DIR#>/cool.gif[/img]. If the user runs a video file that is infected by one of these Trojans, they pretend to download the corresponding license from certain web pages. However, what they actually do is redirect the user to other Internet addresses from which they download a large number adware (programs that display advertisements on screen), spyware, dialers (applications that dial-up high rate toll numbers) and other viruses. Below are some examples of the malicious programs and viruses these Trojans download: Adware/Funweb Adware/MydailyHoroscope Adware/MyWay Adware/MyWebSearch Adware/Nsupdate Adware/PowerScan Adware/Twain-Tech Dialer Generic Dialer.NO Spyware.AdClicker Spyware/BetterInet Spyware/ISTbar Trj/Downloader.GK Even though these Trojans have been detected in video files with extremely variable names which can be downloaded through P2P networks like KaZaA or eMule, bear in mind that they can also be distributed through other means, such as files attached to email messages, FTP or Internet downloads, floppy disks, CD-ROM, etc. For further information about Trj/WmvDownloader.A, Trj/WmvDownloader.B or the malicious programs and viruses these Trojans try to download, visit Panda Software's Virus Encyclopedia at: http://www.pandasoftware.com/virus_info/encyclopedia/ 
|
 Posted |
|
| Bookmarks |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Virus Alert - Worm_mytob.bi | Mobo | Security Alerts and vulnerabilities | 0 | 05-31-2005 05:22 PM |
| eliteuvf32.exe?? AdWare? | Alex | Spyware / Virus Removal | 31 | 05-17-2005 09:50 PM |
| Problems here... | sula | Spyware / Virus Removal | 16 | 04-16-2005 12:16 AM |
| Popups have seized my computer | skinsfan87 | Spyware / Virus Removal | 234 | 04-11-2005 02:18 PM |
| Pop-up crazy | MOJET | Spyware / Virus Removal | 11 | 03-30-2005 09:22 PM |
|
||
|
|
|
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
