Forum Index
Home Forum Radio Memberlist Help Search Quick Links

It appears you have not yet registered with our community which limits what you can do & see. It's Free To register, please click here.



Forum Index » Internet » Security Alerts and vulnerabilities » Virus Alert from Panda AV
Register Calendar Gallery Mark Forums Read

Security Alerts and vulnerabilities Lets keep abreast on the latest threats by posting those findings here..

Reply
 
Thread Tools Display Modes
  #1  
Old 01-10-2005, 09:09 PM
pmf45's Avatar
pmf45 pmf45 is offline
Junior Member
  
Join Date: Jan 2005
Location: Windsor, Ontario, Canada
Posts: 12
MADRID, January 10, 2005 - PandaLabs has detected the appearance of two new
Trojans, Trj/WmvDownloader.A and Trj/WmvDownloader.B, which are spreading
through P2P networks in video files. These Trojans take advantage of the new
technology incorporated in Microsoft Windows Media player called Windows
Media Digital Rights Management (DRM), designed to protect the intellectual
property rights of multimedia content. When a user tries to play a protected
Windows media file, this technology demands a valid license. If the license
is not stored on the computer, the application will look for it on the
Internet, so that the user can acquire it directly or buy it. This new
technology is incorporated through the Windows XP Service Pack 2 + Windows
Media Player 10 update.

The video files infected by these Trojans have a .wmv extension and are
protected by licenses, supposedly issued by the companies overpeer (for
Trj/WmvDownloader.A), or protectedmedia (for Trj/WmvDownloader.[img]style_emoticons/<#EMO_DIR#>/cool.gif[/img]. If the
user runs a video file that is infected by one of these Trojans, they
pretend to download the corresponding license from certain web pages.
However, what they actually do is redirect the user to other Internet
addresses from which they download a large number adware (programs that
display advertisements on screen), spyware, dialers (applications that
dial-up high rate toll numbers) and other viruses. Below are some examples
of the malicious programs and viruses these Trojans download:

Adware/Funweb
Adware/MydailyHoroscope
Adware/MyWay
Adware/MyWebSearch
Adware/Nsupdate
Adware/PowerScan
Adware/Twain-Tech
Dialer Generic
Dialer.NO
Spyware.AdClicker
Spyware/BetterInet
Spyware/ISTbar
Trj/Downloader.GK

Even though these Trojans have been detected in video files with extremely
variable names which can be downloaded through P2P networks like KaZaA or
eMule, bear in mind that they can also be distributed through other means,
such as files attached to email messages, FTP or Internet downloads, floppy
disks, CD-ROM, etc.

For further information about Trj/WmvDownloader.A, Trj/WmvDownloader.B or
the malicious programs and viruses these Trojans try to download, visit
Panda Software's Virus Encyclopedia at:
http://www.pandasoftware.com/virus_info/encyclopedia/
Reply With Quote
Posted


Reply

« Previous Thread | Next Thread »
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Virus Alert - Worm_mytob.bi Mobo Security Alerts and vulnerabilities 0 05-31-2005 04:22 PM
eliteuvf32.exe?? AdWare? Alex Spyware / Virus Removal 31 05-17-2005 08:50 PM
Problems here... sula Spyware / Virus Removal 16 04-15-2005 11:16 PM
Popups have seized my computer skinsfan87 Spyware / Virus Removal 234 04-11-2005 01:18 PM
Pop-up crazy MOJET Spyware / Virus Removal 11 03-30-2005 08:22 PM



All times are GMT -5. The time now is 07:53 PM.

Contact Us - CyberAnswers - Archive - Privacy Statement - Top

Firefox 2