MP3 requires special codec, BAMMMM your infected!

It is being described as one of the largest outbreak to be seen in 3 years. ~McAfee

The fake file (trojan) has been mainly distributed on the eDonkey and Limewire file-sharing networks (P2P). Once the file is downloaded onto your computer. The second you try to play the disguised file. A trojan will launch a file named PLAY_MP3.exe. When you run the executable you will see a bogus EULA. Agreeing to the terms listed will unleash a world of annoyances. Your system will be plagued by pop ups and other possible nasty infections.

Below is a list named infected files being traded on these P2P networks.

preview-t-3545425-adult.mpg
preview-t-3545425-changing times earth wind .mp3
preview-t-3545425-girls aloud st trinnians.mp3
preview-t-3545425-heartbroken fast t2 ft jodie.mp3
preview-t-3545425-jij bent zo jeroen van den.mp3
preview-t-3545425-meet bambi in kings harem.mp3
preview-t-3545425-middle eastern chick.mpg
preview-t-3545425-paint me bunmingham.mp3
preview-t-3545425-paralyized by you.mp3
preview-t-3545425-pull over levert.mp3
preview-t-3545425-say it right remix.mp3
preview-t-3545425-st trinnians girls aloud.mp3
preview-t-3545425-theme godfather.mp3
t-3545425-bentley bizzle.mp3
t-3545425-dx vs randi orton 2007.mpg
t-3545425-haloween special.mp3
t-3545425-just got lucky.mp3
t-3545425-lion king portugues.mpg
t-3545425-los padres de ella.mpg
t-3545425-para sayo freestyle.mp3
t-3545425-peanut butter jelly amende.mp3
t-3545425-stare at sun thrice.mp3
t-3545425-suicide bride dana.mp3
t-3545425-wayne and jane.mp3

A word of advice, stop using these P2P networks. You may think you are getting over by downloading free music and other software. When in fact you are just opening a can of worms that will create nothing but chaos! In the end you will be bringing your computer to your the GeekSquad. They will charge you an arm and a leg to get your system up and running again.

This outbreak reminds me of an incident that happened way back in September of this past year. I was watching Chris Pirillo on his live stream getting a bit bent about a company called Zango. Zango practices a very similar tactic to the above attack. An unsuspecting user would stumble across the Zango website. The site looks very similar to such sites as Youtube, Revver, and Viddler. The Zango website requires a user to install software and then agree to the terms listed (ELUA). Once the user agrees to the terms. A trojan deploys back door applications. Infecting your machine and plaguing you with nasty pop ups.

Doing a search for Wirelesspacket on the Zango website. I had come across one of my videos recorded and uploaded to Revver. Doing a bit of investigative works with a Virtual Windows PC running WireShark. I was able to trace that the content was being streamed directly from the Revver servers. I find this practice in extremely poor taste Zango and Revver!

Oh and the Virtual Windows PC was hosed after the Zango software was installed. Avoid Zango at all cost! Surf Smart!