 WildcatboyPremium,Mod
join:2000-10-30
Toronto, ON
kudos:2
Security Product V..
Security
| reply to Gary44
Re: Limewire Installed Trojan
dlder.exe indeed is a Trojan. Not a spyware, a genuine backdoor Trojan. Did you guys download Kazaa and limewire from their official sites or through another link? As unfortunate as it sounds it's becoming acceptable for applications to include spyware but including a Trojan is not an acceptable practice. At least not yet.
--
You can catch the Devil, but you can't hold him long. |
|
 Gary44
join:2000-03-18
Yorktown Heights, NY | said by Wildcatboy:
Did you guys download Kazaa and limewire from their official sites or through another link?
I downloaded Limewire from its official site. |
|
| reply to Wildcatboy
i reported this dlder/explorer virus on another forum a week or two ago. its definately in grokster. and i downloaded it straight from grokster.com
it bothers me that the virus sites are still saying things like they arent sure where it comes from. this is bundled in peoples applications. this is disgusting. these people should be sued. spyware is bad enough. but this has got to be very illegal. something STRONG has to be done. if nothing happens or a slap on the wrist, companies will continue to do this. they dont care about privacy at all, they just care about making money. if someone breaks into a companys system. they get the book thrown at them. but when a company breaks into a citizens system. nothing happens. i thought the government worked for us people? yeah right. this is bullshit. |
|
| said by EricWB:
this is bundled in peoples applications. this is disgusting. these people should be sued. spyware is bad enough. but this has got to be very illegal. something STRONG has to be done.
I'm with you 100%, Eric.
This is a major, major incident. The SubSeven trojan is shipping with multiple apps that are in use by millions of people. It's been known for at least a week, judging by posts to Usenet and the awareness of at least one AV vendor. Yet not ONE peep from law enforcement AFAICT, and no public warnings from any vendors.
This is JUST the sort of thing the FBI et al are supposedly concerned about WRT the potential for economic terrorism, etc. Somebody's alseep at the damn wheel.
I'm going to email some press contacts about this.
pchelp |
|
| >>>***I'm going to email some press contacts about this. ****
(sorry, don't know how to quote properly on these boards)
please do. i'm furious about all of this and have warned many, many people that i know. did you ever find out if the g-1-backdoor (or whatever they called it) is indeed the same as subseven?
from what i gather, ClickTillUWin is responsible for this fiasco...i might be wrong but that's the impression that i am getting so far. whoever it is, they can be damned sure that i will never have anything to do with their company/services/product/whatever again, and will do everything in my power to avoid anything associated with them. |
|
|
|
raillex
join:2001-06-26
Libertyville, IL | Although Norton Antivirus originally identified it as a backdoor.trojan, it is now calling it the W32.DlDer.Trojan. You can get more info at »www.bearshare.net/forum/showthre···did=8252 |
|
 bskuaredIt's Hip To Be SquarePremium
join:2001-12-02
San Clemente, CA | this might be of interest...
»www.gibboncore.demon.co.uk/kazaa···hell.htm
--
2b or not 2b |
|
| reply to raillex
said by raillex:
Although Norton Antivirus originally identified it as a backdoor.trojan, it is now calling it the W32.DlDer.Trojan. You can get more info at »www.bearshare.net/forum/showthre···did=8252
Thanks, raillex.
Speculation: sounds as if the trojan is an adapted version if it's SubSeven at all. And/or perhaps the keylogger is the same.
Anyone willing to send me a copy of dldr.dll and explorer.exe?
I have a reply from a journalist who'll probably write up the story on Weds. Meanwhile I'd like to pick apart the trojan and its downloader... |
|
