Streamviewer.exe, Tubeviewer.exe, Tubeplayer.exe, now Onlinemovies.exe!

The gang serving up malicious downloaders from a couple of servers just spiced things up, changing streamviewer and softwarefortubeview to “onlinemovies.40008.exe” to the list of obnoxious files served from Av detection is very low. It seems that the isp’s may be acting on public information — the sites were up for only a short time today, but ThreatFire protected the community from this prevalent malware all morning.

Related names currently resolving to that address include

The group seems to be branching out from the phony movie player theme, more often packaging up the downloader into serial generators and crack installers like serial.dragon.naturally.speaking.9.45042.exe and crack.sony.vegas.platinum.edition.9.0.45057.exe. Pirates and p2p users need to be careful of what they download and run.

This entry was posted in The Law. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *


You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>