• Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Rogue Anti Spyware
    • Virus
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools

My AntiSpyware

Free antispyware software, Online Scanners, Instructions on how to remove spyware and malware.

Menu
  • Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Rogue Anti Spyware
    • Virus
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools
Home › Malware removal › Trojan › Adware in exchange for videos and music in P2P

Adware in exchange for videos and music in P2P

Myantispyware team December 23, 2005     No Comment    

PandaLabs has detected a series of files being circulated across the Internet that supposedly contain music and videos, but also contain a poisonous gift: in order to get the videos and music, users must install adware. The excuse used is that a license is needed in order to play the files, which involves agreeing to install adware. The files received by PandaLabs up until now do not actually contain any type of video or music. However, this possibility has not been ruled out. These files are detected by Panda Software as WmaDownloader.B.

The problem starts when the user downloads an alleged video file (*.wmv) or de audio file (*.wma). When the user tries to run these files in order to view them on the computer, a window is displayed that prompts the user to acquire a license. The message explains that in order to get the free license, the user must install IST Toolbar, a known adware program that is used as an entry-point for many other threats.

Although users are warned that adware will be installed and gives the user the opportunity to read the license agreement, it is formulated in clearly abusive terms, and also exploits the fact that few users are aware of the impact that installing this spyware program can have on their computers, as this spyware allows many other threats to get into the system,

explains Luis Corrons, director of PandaLabs.

What’s more, it is important not to forget that in the samples received by PandaLabs, the system is even more fraudulent, as there is not even a video or music in the files.

When this message is displayed, the user is also asked to install an ActiveX Control, which is the IST Toolbar mentioned in this window. If users do not agree to install it, they will not be affected, but neither will they be able to play the video or audio file. If users agree to install it, the IST Toolbar (detected by Panda Software as ISTBar) will be downloaded, infecting the system and allowing the file to be played, if it exists. A window notifying users that they must acquire a license will also appear.

However, this might not always be the case, says Luis Corrons.

The warning about the installation of the ActiveX Control is not always displayed in computers with the security level configured as low, which could occur because the user has configured it in this way or because one of the many other malware specimens with this function has already affected the computer. For this reason it is extremely important to check the browser settings in order to neutralize installation of ActiveX Controls of dubious origin.

This process is only valid in computers with Windows Media Player 9 or later version installed.

If you`ve found IST Bar on your PC, go here for removal “how to“.

Malware removal Trojan

Author: Myantispyware team

Myantispyware is an information security website created in 2004. Our content is written in collaboration with Cyber Security specialists, IT experts, under the direction of Patrik Holder and Valeri Tchmych, founders of Myantispyware.com.

Leave a Reply Cancel reply




New Guides

1FEAFBa5L496PsNHZLZ8UmAJqRkzefJ6Lq
1FEAFBa5L496PsNHZLZ8UmAJqRkzefJ6Lq Bitcoin Email Scam
Mderedpro.top
How to remove Mderedpro.top pop-ups (Virus removal guide)
Vercounsel.top
How to remove Vercounsel.top pop-ups (Virus removal guide)
igredownload.com
How to remove Igredownload.com pop ups (Virus removal guide)
Files encrypted with .pola extension
How to remove Pola ransomware, Decrypt .pola files.

Follow US

Search

Useful Guides

remove android virus
How to remove virus from Android phone
How to reset Mozilla Firefox (Updated Apr. 2018)
browser redirect virus
How to remove Browser redirect virus [Chrome, Firefox, IE, Edge]
How to reset Google Chrome settings to default
Tech Support Scam
Remove Tech Support Scam pop-up virus [Microsoft & Apple Scam]

Recent Posts

Free Jetico Personal Firewall for Windows 98/ME/NT/2000/XP
Santa IM Worm
Symantec AV RAR library vulnerability
Panda Antivirus for Linux
CCleaner (Crap Cleaner) is a freeware system optimization and privacy tool

MYANTISPYWARE.COM

  • About Us
  • Contact Us
  • Privacy Policy

NEED A HELP ?

If you're seeing unwanted pop-ups or ads in your web-browser, you might have an adware installed on your computer. Use the following guide to stop pop-up ads and remove malicious software. Or ask for help here.

Links

  • Downloads
  • Instructions
  • Questions and Answers
  • Free Malware Removal Tools
Copyright © 2004 - 2020 My AntiSpyware - Free antispyware programs and Spyware Removal Instructions.