December 29, 2004
"Think you're downloading a new song or video? Watch out--that file may be stuffed with pop-ups and adware. PC World has learned that some Windows Media files on peer-to-peer networks such as Kazaa contain code that can spawn a string of pop-up ads and install adware. They look just like regular songs or short videos in Windows Media format, but launch ads instead of media clips. When we ran the files, we noted over half a dozen pop-ups, some attempts to download adware onto our test PC, and an attempt to hijack our browser's home page. However, you can take steps to guard your PC against this ad invasion..."
December 29, 2004
"...The easiest solution is to simply stop downloading WMA files from P-to-P services. But with legitimate, music-industry-sanctioned P-to-P services preparing to launch early next year, that may not be an option for everyone. Prevent bogus files laden with adware or spyware from infiltrating your PC by taking the following steps:
* Change windows Media Player setting to give you more warning. Select Tool, Options, Privacy and turn off 'Acquire licenses automatically for protected content'. A dialog box then will warn you each time a protected file attempts to get a license, and it will display the URL from which the file intends to request the license. If you have any doubts about the site, choose 'No.' Changing this setting in Windows Media Player will affect any other players you use that support Microsoft's DRM scheme.
* At a minimum, set your browser to prompt you prior to downloading any ActiveX controls (in IE, choose Tools, Internet options, Security and click 'Custom Level'.) No matter what you have set as your default browser, you'll see Internet Explorer windows if you play one of these bogus files.
* Use a pop-up blocker. This won't prevent the initial ad or the first IE window spawned, but it will prevent further pop-ups from appearing on your PC.
* Turn on automatic Windows updates to make sure IE holes are plugged quickly.
* Run a firewall, and monitor outgoing and incoming Internet requests..."