Skip to main content

Notice

Please note that most of the software linked on this forum is likely to be safe to use. If you are unsure, feel free to ask in the relevant topics, or send a private message to an administrator or moderator. To help curb the problems of false positives, or in the event that you do find actual malware, you can contribute through the article linked here.
Topic: New trojan infects audio files and spreads if they're shared (Read 138331 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

New trojan infects audio files and spreads if they're shared

Reply #75
Sorry, but this a bit funny. Reminds me of an email I got a few months back, warning me not to open a 'exe' attachment about an undeliverable email.

As Lyx has rightly said, users should be aware of what codecs they are using. If in doubt, thought is needed (i.e. turn brain on temporarily).

New trojan infects audio files and spreads if they're shared

Reply #76
Ffdshow can indeed be used for just about every format. And ffmpeg is the only decoder for certain formats (WM/, Sorenson). But the package has no media splitters (demultiplexers). These must be installed separately.

The updated version: http://ffdshow-tryout.sourceforge.net/

New trojan infects audio files and spreads if they're shared

Reply #77
about the windows noobines, not entirely users fault, there is absolutely no good documentation about the OS.

Chapter one should be:
1. how to secure your OS
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #78
Quote from: smok3 on
Chapter one should be:
1. how to secure your OS


Step 1:  Download a real operating system.
Step 2: Install it over your Windows partition.

New trojan infects audio files and spreads if they're shared

Reply #79
Step 3: No, i don't need open office and i don't really care about apache and why is my wi-fi not working? Oh yeah somebody will soon compile another kernel that will make that happen..., common (when i really need to play with some 'real oses' i have putty and remote shell account..., but i need to feel a bit masochistic as well.)
edit: some good reading imho http://www.reactos.org/en/about.html
Step 4: Back to unreal os,  where some real tools can be run

---

the real error from some real os:
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

yeah, that kind of info really makes me happy...
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #80
Windows can be made lean, fast and secure (maybe not NT6, yet). But it indeed involes replacing most parts what the user perceives as "Windows". The media player is just one of them. There is also the graphic viewer (WMF bug anyone?), Exploder, Outlook, SMB/NetBIOS, MovieMaker/Sndrec32.

However if you give up Windows completely you're gonna miss some great software. Foobar, Total Commander, IrfanView, EAC... There were complaints about Vista, where buttons were in the wrong places and a couple applications didn't run. Imagine a completely different system, where nothing you are used to works. What's an operating system without programs, programs that you can operate quickly and efficiently?

Windows help is indeed pretty much useless, I agree.

New trojan infects audio files and spreads if they're shared

Reply #81
j7n: now somebody will start with 'wine' 
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #82
Well, I claim I too am able to make Windows XP secure, as it involves creating a non- privileged account and installing an anti-virus-scanner. However, this is not default. This and things like this trojan that infects audio files (via WMA) indicate that Windows is flawed by design. Why make a chapter about securing your OS? Why not ship it secure? I don't get it.
What I was just trying to say is: This (trojan) does only work because Windows has a a big flaw.

New trojan infects audio files and spreads if they're shared

Reply #83
Quote
Why make a chapter about securing your OS? Why not ship it secure?

both is obviously needed.
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #85
M$' target market is people who don't think. When these people insert a CD-ROM they expect a program launching. And as was said earlier, they trust this program. In NT5 Windows went a step further and offered to play music and videos from that CD-ROM (wasting time to scan it first).

In my opinion a secure OS can't have autoplay enabled. But the user would realize that his CD-ROM suddenly doesn't work! I've heard complaints from users whom I set up computer this way. Of course later USB-stick malware spread, but the computers were immune...

By releasing a secure OS, M$ would have to undo what they worked so carefully to build so far. Software that makes decisions for you.

New trojan infects audio files and spreads if they're shared

Reply #86
1. i think that the problem is that there is a large gap between 'chmod 664 oses' and 'my cd won't start oses', that gap OS would nicely cover intermediate user (say a user that wants to write a script or two per month besides clicking around the icons), amiga os comes to my mind....

2. or maybe from a videoguy perspective, say i'am buying more single-task oriented machine, what do i have;

a. win with adobe (+ gazillion small or big OS tools, say avisynth which can save my ass)
b. mac 'that just works'
c. redHat based (overpriced) autodesk smoke* (Why did they pick Red hat, why not opensuse? or ubuntu?)
d. i'am sure there is more
e. non-existant combo of a. b. and c.

3. about silly users, say a user needs to do a decision:

a. i will start gimp and do some really nice photo manipulation, but first i need to spend 3 hours googling to make my graphics card to work properly
b. oh, ok, there is gimp for unreal os as well, and drivers there seem to work just fine
c. i relly like iphone, so the only obvious solution is to be coolish in whole, mac is only logical choice for a real artist.

decisions, decisions...

edit: Darwin would say that the ones with more food will survive, where food is software, what makes things moot is that you have to be sexy as well.
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #87
Quote from: LaserSokrates on
Well, I claim I too am able to make Windows XP secure, as it involves creating a non- privileged account and installing an anti-virus-scanner. However, this is not default. This and things like this trojan that infects audio files (via WMA) indicate that Windows is flawed by design. Why make a chapter about securing your OS? Why not ship it secure? I don't get it.
What I was just trying to say is: This (trojan) does only work because Windows has a a big flaw.

Actually, Microsoft knows pretty well how to ship a secured-by-default OS, but they decided to not ship the consumer OS this way. On the other hand, server versions like win2k3 are way more secured by default. (but note that the win2k3 default config would be totally innapropriate for the casual user)

(and I fully agree that NT5 can be both secured and useable with the proper configuration, which strangely is not the default config)

New trojan infects audio files and spreads if they're shared

Reply #88
As I see it, the problem are the users who think that they know "all" about Windows, but it turns out that they know how to install OS and drivers and run keygens and copy cracks for games. Once you start learning about that thingie you work on, you see that there are many things under the hood. A guy I know lost all his important documents because he encrypted them to be green, therefore important, backuped them to external HDD, and reinstalled windows. You know what happened next. And reading about encrypting wasn't the priority, so he didn't ever backuped his encryption keys.

A lot of users use pirated windows which they don't update regularly - leaving unpached security holes. Combine that with "if you are smart and don't run every file you get in the mail, you don't really need firewall and AV" attitude, the disaster is just waiting to happen. You really don't have to run the file - unpatched IE will do that for you.

Windows can be as secure as you make them - and it is up to user to inform him or hrself how to be more secure. You can't know nothing and expect the things work for you, it just doesn't happen that way.

As for this nastyness - well, that happens when you are running OS with Administrative rights. Don't do that. Inform others that it isn't really needed, except for installing drivers, and then you have secondary logon feature (sudo  ) for administering system.
TAPE LOADING ERROR

New trojan infects audio files and spreads if they're shared

Reply #89
Quote from: hlloyge on
A lot of users use pirated windows which they don't update regularly - leaving unpached security holes. Combine that with "if you are smart and don't run every file you get in the mail, you don't really need firewall and AV" attitude, the disaster is just waiting to happen. You really don't have to run the file - unpatched IE will do that for you.

Interesting. Please explain to me how IE will run something without me doing anything. (BTW: Since i am "smart", i of course dont have outlook, nor do i use a mail client which uses its engine - same for scripting host, scheduler, addressbook, etc.).
I am arrogant and I can afford it because I deliver.

New trojan infects audio files and spreads if they're shared

Reply #90
Quote
it is up to user to inform him or hrself how to be more secure.

calling users stupid won't really help the situation...., it is helpfull as much as this sing:

PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung

New trojan infects audio files and spreads if they're shared

Reply #91
Quote from: smok3 on
Quote
it is up to user to inform him or hrself how to be more secure.

calling users stupid won't really help the situation...., it is helpfull as much as this sing:




IMHO, this is getting ridiculous. You don't go skiing without training. You mustn't drive a car without a license. But most people who buy a PC, a device so powerful so and advanced, and they think they could just use it. Everyone is "studid" when he/she does something for the first time. But most PC users don't try to change that. The results are topics like this one or the W32.Blaster story. If the first version of that worm hadn't been coded so badly, consequences would have been much worse. Most users didn't even know that this behaviour was caused by a virus, that it could be aborted with shutdown -a, and that a patch from MS, that had been out for quite some time when Blaster was recent, existed.

New trojan infects audio files and spreads if they're shared

Reply #92
Probably depends on how one defines "stupidity/intelligence". I wouldn't call "non-experience" stupidity, nor would i call "experience" intelligence. Stupdity/intelligence IMO is the mindset how one approaches issues, how one deals with information, etc....... in this context, i wouldn't call the lack of experience, knowledge and understanding of most users "stupid" but instead the unwilligness to gain enough of those properties to use computers efficiently and self-responsible. Not having the required understanding to use computers, and consequently not using computers, isn't stupid - it's reasonable. But not having that understanding, yet still using them, is.
I am arrogant and I can afford it because I deliver.

New trojan infects audio files and spreads if they're shared

Reply #93
Quote from: LaserSokrates on
Step 1:  Download a real operating system.
Step 2: Install it over your Windows partition.


Haiku, for example.

An open clone of BeOS, the OS optimized for digital media work and was written to take advantage of modern hardware facilities such as symmetric multiprocessing by utilizing modular I/O bandwidth, pervasive multithreading, preemptive multitasking and a custom 64-bit journaling file system known as BFS
 

New trojan infects audio files and spreads if they're shared

Reply #94
Quote from: smok3 on
j7n: now somebody will start with 'wine' 


Well yes. Why miss out ? because EAC, Burrnnn, irfan and Foobar work near flawless under wine. Even if an app doesn't play nice then some VM solution will do it - running windows vm inside your OS of choice. You could even setup some terminal server and have any OS run the apps as a thin client.

New trojan infects audio files and spreads if they're shared

Reply #95
Quote from: LaserSokrates on
IMHO, this is getting ridiculous. You don't go skiing without training. You mustn't drive a car without a license. But most people who buy a PC, a device so powerful so and advanced, and they think they could just use it.


There is a difference between cars and computers. If you make mistakes while driving a car you can kill yourself or kill others but nobody will died if you make a mistake while using a computer.

New trojan infects audio files and spreads if they're shared

Reply #96
Quote from: shadowking on
Well yes. Why miss out ? because EAC, Burrnnn, irfan and Foobar work near flawless under wine. Even if an app doesn't play nice then some VM solution will do it - running windows vm inside your OS of choice. You could even setup some terminal server and have any OS run the apps as a thin client.
Well, Foobar 2k might work under Wine but the audio stack the data needs to pass is not as clear as under Windows. If I set 192kHz/24bit resampling to output I don't have much confidence that it reaches the soundcard's DAC without conversion.
Quote from: ggf31416 on
There is a difference between cars and computers. If you make mistakes while driving a car you can kill yourself or kill others but nobody will died if you make a mistake while using a computer.
Well, it probably won't cost someone's life but letting your computer zombified in hands of a hacker might cause considerable damage (thousands+ of $$). And the fact that court probably won't make you liable for the damage (it is that nasty virus' fault, right?) doesn't help it either. If you were responsible for what your computer does, it will force people to more responsibility and more caring about their own computer's safety.
The car analogy is not a nonsense.

New trojan infects audio files and spreads if they're shared

Reply #97
Quote from: ggf31416 on
Quote from: LaserSokrates on


IMHO, this is getting ridiculous. You don't go skiing without training. You mustn't drive a car without a license. But most people who buy a PC, a device so powerful so and advanced, and they think they could just use it.


There is a difference between cars and computers. If you make mistakes while driving a car you can kill yourself or kill others but nobody will died if you make a mistake while using a computer.


Actually yes, That myspace mommy who created a fake profile which lead to a teen girls death.

New trojan infects audio files and spreads if they're shared

Reply #98
Quote from: shadowking on
Actually yes, That myspace mommy who created a fake profile which lead to a teen girls death.
Arguably that was done with malicious intent rather than a user error affecting only their PC.

New trojan infects audio files and spreads if they're shared

Reply #99
Quote
most people who buy a PC, a device so powerful so and advanced, and they think they could just use it

a. you are saying that 'advanced' equals 'good'?
b. you are saying that 'advanced' equals 'powerful'?

p.s. And yes, i know that kind of thinking is quite modern/politically correct, but how about your own opinion?
PANIC: CPU 1: Cache Error (unrecoverable - dcache data) Eframe = 0x90000000208cf3b8
NOTICE - cpu 0 didn't dump TLB, may be hung