±Recent Visitors

Recent Visitors to Com-Central!

±User Info-big

Welcome Anonymous


Latest: Kaczor
New Today: 0
New Yesterday: 0
Overall: 6640

People Online:
Members: 0
Visitors: 72
Total: 72
Who Is Where:
01: Community Forums
02: Community Forums
03: Community Forums
04: Community Forums
05: Home
06: Community Forums
07: Community Forums
08: Community Forums
09: Community Forums
10: Community Forums
11: News
12: Community Forums
13: Home
14: Community Forums
15: Community Forums
16: Community Forums
17: Community Forums
18: Community Forums
19: Community Forums
20: Community Forums
21: Community Forums
22: News
23: Community Forums
24: Community Forums
25: Community Forums
26: Community Forums
27: Community Forums
28: Community Forums
29: Community Forums
30: Community Forums
31: Photo Gallery
32: Photo Gallery
33: Community Forums
34: Community Forums
35: Community Forums
36: Community Forums
37: Community Forums
38: Home
39: Your Account
40: Community Forums
41: Community Forums
42: Community Forums
43: CPGlang
44: Community Forums
45: Community Forums
46: Community Forums
47: Community Forums
48: Community Forums
49: Community Forums
50: Community Forums
51: Photo Gallery
52: Downloads
53: Downloads
54: Community Forums
55: Community Forums
56: Community Forums
57: Home
58: Community Forums
59: Community Forums
60: Community Forums
61: Community Forums
62: Community Forums
63: Community Forums
64: News
65: Your Account
66: Community Forums
67: Photo Gallery
68: Community Forums
69: Your Account
70: Community Forums
71: Community Forums
72: Community Forums

Staff Online:

No staff members are online!
Virus Poses as Leaked MSN Messenger Beta :: Archived
This is a forum for Software related items such as OS', Virus notices, cool or free programs, etc. Gaming software should go in the gaming folder pertaining to the current info.
Post new topic    Revive this topic    Printer Friendly Page     Forum Index ›  Software

Topic Archived View previous topic :: View next topic  
Author Message

Offline Offline
Joined: Jan 21, 2005
Posts: 6987
Location: Central Illinois, USA
PostPosted: Wed Dec 28, 2005 3:57 pm
Post subject: Virus Poses as Leaked MSN Messenger Beta

Virus Poses as Leaked MSN Messenger Beta
By Paul F. Roberts
December 27, 2005

Internet users are being warned about a new virus that poses as a leaked pre-release version of the MSN Messenger instant messenger program.

Unsuspecting Windows users who install the phony MSN Messenger Version 8 "beta" actually install an IM worm that spreads to their IM contacts, and connects their computer to a remote control "bot" network run by malicious hackers, according to F-Secure Corp., an antivirus firm based in Helsinki.

A Web site, msgr8beta.com, purports to have the leaked version of MSN Messenger. The site touts the advantages of the MSN Messenger 8, including "real-time emoticons," and "built-in functionality with Windows Media Player 10." Microsoft has not yet released a beta for MSN 8 to the public, although versions of the software are rumored to have been released to select customers.

However, the download offered from the Web site doesn't contain any MSN Messenger code, said Mikko Hyppönen, manager of antivirus research at F-Secure. Instead, clicking on the Web site download links installs a virus that F-Secure calls "Virkel.F," and causes your MSN Messenger client to send download links for the malicious Web site to the person's IM contacts. Behind the scene, Virkel.F connects infected machines to a remote "botnet" server that can be used to issue commands or transfer malicious programs to the infected host, he said.

F-Secure researchers learned of the new virus Tuesday after customers reported receiving suspicious IM messages with links to the Web page Hyppönen said.

Virkel is a new twist on an older family of IM viruses named "Kelvir." The source code for Kelvir was released on the Internet and has spawned many variants. The new Virkel family adds remote control "botnet" capability to the IM worm feature, Hyppönen said.

F-Secure reported the new worm to Microsoft. It is not clear why the attackers set up the site at all. However, the domain could be promoted through spam and news group postings, Hyppönen said.

The msgrbeta8.com Web site was registered on Dec. 24 to a "Mark Nicholas," of Richmond, U.K. E-mail messages sent to the administrative address at msgr8beta.com were returned, and Nicholas could not be reached at home or via cell phone for comment on Tuesday. It was unclear whether Nicholas was actually the individual who registered the Web site, or whether another individual used his contact information when setting up the Web domain.

The malicious Web site calls attention to a persistent problem that fosters online attacks and the spread of malicious code: loose monitoring of Web domain registration.

Based on test results, the U.S. Government Accountability Office estimates that 1.64 million (3.65 percent) of Web domains have been registered with incomplete data in one or more of the required fields, and 2.31 million domain names (5.14 percent) have been registered with patently false data.

Individuals and organizations use the lax domain registration process to hide their identities and prevent members of the public from contacting them, GAO said.

Better enforcement of domain registrations would help curb online fraud, spam and intellectual property theft, GAO said.

Be careful... Wink
Back to top
View user's profile Visit poster's website Photo Gallery
Display posts from previous:   
Post new topic    Revive this topic    Printer Friendly Page    Forum Index ›  Software
Page 1 of 1
All times are GMT - 6 Hours

Archive Revive
This is an archived topic - your reply will not be appended here.
Instead, a new topic will be generated in the active forum.
The new topic will provide a reference link to this archived topic.