Video links reposted (and rendered un-clickable), as per Forum Moderator shannons’ guidance:
To illustrate the issue, PRIOR has created the following set of videos using two new malicious files.
Test Case 1: Malicious file 1 – Unproven Trust Level:
Video link: http: //www. youtube. com/watch?v=v4gNTi6szUw
Under File Insight, the file’s Origin is known and shows a URL. The file has an Unproven Trust Level. Upon launching the file, Download Insight reports that:
“Our information on this file is inconclusive. We recommend not using this file unless you know it is safe.”
The Norton recommended action “Remove this file from my system” is taken.
Test Case 2: Malicious file 1 – Good Trust Level:
Video link: http: //www. youtube. com/watch?v=yAjHxUeSmr4
This is the same file used in Test Case 1. Under File Insight, the file’s Origin is Unknown and does not show a URL (it should actually show http: //yadi.sk/d/...). The file now has a Good Trust Level. Upon launching the file, Download Insight reports that:
“This file does not have any known security issues. Safe to run”
When the “Run this program” action is taken, the user’s computer is infected.
Test Case 3: Malicious file 2 – Unproven Trust Level:
Video link: http: //www. youtube. com/watch?v=eSfx8pK7EVM
Under File Insight, the file’s Origin is known and shows a URL. The file has an Unproven Trust Level. Upon launching the file, Download Insight reports that:
“Our information on this file is inconclusive. We recommend not using this file unless you know it is safe.”
The Norton recommended action “Remove this file from my system” is taken.
Test Case 4: Malicious file 2 – Good Trust Level:
Video link: http: //www. youtube. com/watch?v=rex80Q2EAQI
This is the same file used in Test Case 3. Under File Insight, the file’s Origin is Unknown and does not show a URL (it should actually show http: //yadi.sk/d/...). The file now has a Good Trust Level. Upon launching the file, Download Insight reports that:
“This file does not have any known security issues. Safe to run”
When the “Run this program” action is taken, SONAR detects the file as a security risk and prompts the user to remove the file.
Symantec needs to investigate and resolve this issue as a matter of urgency.
PRIOR and I would both be interested in hearing from the Norton Community Member(s) who reported the original video links as malicious. Please explain your reasons for doing so.
Thanks
elsewhere