Dear Users:
F-SECURE and Symantec have said there's a new worm in the wild which spreads itself using MSN Messenger. The worm - called Bropia.A - disseminates itself by files claiming to be funny or lewd pictures with filenames such as love_me.pif, drunk_lol.pif and the like. F-Secure said that contacts are harvested from client machines by snooping on MSN windows using Windows hooks. The worm also throws backdoor software, a variant of Rbot, on infected machines. This copies itself as LEXPLORE.EXE. The zombie logs keystrokes, harvests system information, and generally makes a nuisance of itself.
The worm is spread through MSN file transfers under the names "Drunk_lol.pif", "Webcam_004.pif", "sexy_bedroom.pif", "naked_party.pif" or "love_me.pif". Do not accept any file transfers with those names.
----------------------------------------
http://www.f-secure.com/v-descs/bropia_a.shtml
http://securityresponse.symantec.com/av ... ropia.html
[right][/right]
[/quote]
Thanks Adam for letting us know about it. Sounds like a real pest.
