****Update to Internet Explorer Problem*****Read!!! - DFWstangs Forums
 
LinkBack Thread Tools Display Modes
post #1 of 14 (permalink) Old 02-17-2003, 08:56 PM Thread Starter
11-05-09
 
Osiris's Avatar
 
Join Date: Feb 2002
Location: Oh- sai- rus.
Posts: 21,427
****Update to Internet Explorer Problem*****Read!!!

I was screwing with my machine ALL weekend to get it back up. It took me forever. I had to do the COMPLETE system restore to get it back to normal, but I lost ALOT of info along the way.....


What ever virus I caught, it started messing with internet explorer, then it fucked up my Norton System Works,and antivirus, played ping-pong with my files, then crashed my OS.

Luckily it only screwed with my C drive and didn't find my F drive.

I'm not using KaZaA any fuckin more. I got this virus through a video file. How in the hell it happened beats the shit out of me. How can you encode a application virus through a .mpg file?





Original thread:
https://dfwstangs.net/forums/showthre...threadid=83607
Osiris is offline  
Sponsored Links
Advertisement
 
post #2 of 14 (permalink) Old 02-18-2003, 12:52 AM
Rolling with the homies
 
evil jose's Avatar
 
Join Date: Apr 2000
Location: Oak Cliff... that's my hood...
Posts: 43,268
Re: ****Update to Internet Explorer Problem*****Read!!!

Quote:
Originally posted by Black5OHFox
How can you encode a application virus through a .mpg file?
Beats the hell out of me. I've never heard of that before.




Last edited by evil jose; 02-18-2003 at 12:54 AM.
evil jose is offline  
post #3 of 14 (permalink) Old 02-18-2003, 02:51 AM
You lookin' at mah EYE?!
 
DarkWolf's Avatar
 
Join Date: May 2000
Location: Portland, OR
Posts: 8,316
Neither have I. I've heard of flash movies being used as virus carriers, but that's pretty much a no-brainer, since they're esentially just a program, in and of themeselves.

Are you sure it wasn't something else you downloaded?

DarkWolf
Graphic Design / Photography / Web Design
DarkWolf is offline  
 
post #4 of 14 (permalink) Old 02-18-2003, 06:21 AM
¯\(º_o)/¯
 
AbecX's Avatar
 
Join Date: Nov 2001
Location: Las Colinas
Posts: 25,373
Yes, Windows Media Player has a ton of exploits, get a different video player and/or update windows media player.
AbecX is offline  
post #5 of 14 (permalink) Old 02-18-2003, 06:53 AM
98 SVT Cobra
 
MoonDog's Avatar
 
Join Date: Sep 2002
Location: Central IL
Posts: 5,109
Not sure, but I have seen files named like this.

moviefilename.mpg.vbs or moviefilename.mpg.exe

They do it to try to trick the person into thinking they downloaded a video file when in reality its a virus or worm or trojan or a some other file aimed to wreck havoc.

Disclaimer:
No other posters were flamed, ridiculed, persecuted, belittled, berated, judged or otherwise in the making of the above-posted reply. It is with respect all are asked to observe this and to provide the same courtesy bestowed upon those who have posted and those who will post. Yada, Yada, doublespeak and so forth!
MoonDog is offline  
post #6 of 14 (permalink) Old 02-18-2003, 10:23 AM
IA2
 
mikeb's Avatar
 
Join Date: Mar 2001
Posts: 22,413
I know it's possible for an .mpg to launch IE to a URL so there are probably lots of other things that .mpgs can be made to do. I wonder if .wmv is just as bad.......
mikeb is offline  
post #7 of 14 (permalink) Old 02-19-2003, 02:55 AM
You lookin' at mah EYE?!
 
DarkWolf's Avatar
 
Join Date: May 2000
Location: Portland, OR
Posts: 8,316
Quote:
Originally posted by mikeb
I know it's possible for an .mpg to launch IE to a URL so there are probably lots of other things that .mpgs can be made to do. I wonder if .wmv is just as bad.......
I've seen quicktime movies that do that, but I've never seen an mpeg movie, nor an avi/divx movie, do that. I can see maybe the encoded file info containing a web link, and media player automatically opening that link, but never experienced it personally.

On a related note, Media Player 9 kicks much ass. Much. Ass. Kicked. I didn't even bother installing WinAmp after my recent format ... MP9 blows WA3 right the fuck out of the water when it comes to opening and closing the application, and media library functionality.

DarkWolf
Graphic Design / Photography / Web Design

Last edited by DarkWolf; 02-19-2003 at 02:58 AM.
DarkWolf is offline  
post #8 of 14 (permalink) Old 02-19-2003, 05:39 AM
¯\(º_o)/¯
 
AbecX's Avatar
 
Join Date: Nov 2001
Location: Las Colinas
Posts: 25,373
Quote:
Originally posted by DarkWolf
I've seen quicktime movies that do that, but I've never seen an mpeg movie, nor an avi/divx movie, do that.
A lot of my dragon ball z episodes that I used to play in windows would load a link halfway through it minimizing my Meida Player, it was extremely annoying. Most of them are either in WMV format ( it would load links ) and divx ( would load links as well ). All downloaded off kazaa. Now that I can play wmv, divx, real player, quicktime and just about anything else in mplayer via linux, no more problems.
AbecX is offline  
post #9 of 14 (permalink) Old 02-19-2003, 01:59 PM
You lookin' at mah EYE?!
 
DarkWolf's Avatar
 
Join Date: May 2000
Location: Portland, OR
Posts: 8,316
Ahhh ... I see why I've never run into this problem before

Under Options > Security, there is a checkbox: Run script commands when present. And a second option: Do not run script commands and rich media streams if the player is running inside a Web page.

By default, I unchecked the first, and checked the second upon installation. Didn't even think about it in this situation, but I'm pretty sure that would work to stop these things from happening.

DarkWolf
Graphic Design / Photography / Web Design
DarkWolf is offline  
post #10 of 14 (permalink) Old 02-19-2003, 06:27 PM Thread Starter
11-05-09
 
Osiris's Avatar
 
Join Date: Feb 2002
Location: Oh- sai- rus.
Posts: 21,427
Yep, I'm positive that it was a virus encoded in a video file. It happened to my cousin's machine also. As a matter of fact, it was the movie Signs, that I downloaded off of KaZaaLite.

So, with that being said, Fuck KaZaA.


WMP 9 kicks ass. I like the silver color configuration alot, it matches my desktop and computer set up immaculatley.

Quote:
Originally posted by AbecX
Yes, Windows Media Player has a ton of exploits
How? How can you get into it if it's just a player?

Last edited by Silver; 02-19-2003 at 06:29 PM.
Osiris is offline  
post #11 of 14 (permalink) Old 02-20-2003, 05:53 AM
¯\(º_o)/¯
 
AbecX's Avatar
 
Join Date: Nov 2001
Location: Las Colinas
Posts: 25,373
Quote:
Originally posted by Black5OHFox
How? How can you get into it if it's just a player?
MS02-032: Patch Available for WMDM PMSP Service Vulnerability
The WMDM PMSP service vulnerability makes it possible for a computer with Windows Media Player installed on it to exploit the WMDM PMSP service to connect to a malicious named pipe. This is a privilege-elevation vulnerability. A malicious user who is...

MS02-032: Patch Available for WMP Active Playlist Vulnerability
The Windows Media Player Active Playlist vulnerability is a local script execution vulnerability. An attacker who can successfully exploit this vulnerability can cause HTML scripts to run as if they were run locally on the user's computer. The scripts...

Patch for Windows Media Player 6.4 , 7 and 7.1 .nsc File Vulnerability
Microsoft has made a patch available to eliminate a security vulnerability that exists in Windows Media Player versions 6.4, 7 and 7.1. Windows Media Player provides support for audio and video streaming. You can configure streaming media channels by...

Patch Available for Windows Media Player 6.4 and 7 Internet Shortcut Vulnerability
Microsoft has made a patch available to eliminate a security vulnerability that exists in Windows Media Player 6.4 and 7. This vulnerability could enable an attacker to read certain types of files from the computer of a user who visited the attacker's...

Windows Media Player .ASF Processor Contains Unchecked Buffer
Advanced Streaming Format (ASF) is one of the streaming media formats that is supported by Windows Media Player. A security vulnerability occurs in Windows Media Player 6.4 because the code that processes ASF files contains an unchecked buffer. By...

Link to TechTV article.
Quote:
Originally posted by TechTV
After three exploits came to light, Microsoft released a new cumulative patch for Windows Media Player Wednesday. Tonight's "Tech Live" reports.

The most severe of the security vulnerabilities would allow an attacker to store code in the victim's cache, bypassing Internet Explorer's security controls and opening the door for a takeover.

Users running Windows Media Player versions 6.4 and 7.1, and the XP versions of WMP, should patch their systems.
AbecX is offline  
post #12 of 14 (permalink) Old 02-20-2003, 05:55 AM
¯\(º_o)/¯
 
AbecX's Avatar
 
Join Date: Nov 2001
Location: Las Colinas
Posts: 25,373
Quote:
Originally posted by Black5OHFox
So, with that being said, Fuck KaZaA.
Its not kazaa's fault, it was the insecure video player you were using, Kazaa rules. Get a different player and dont fret it
AbecX is offline  
post #13 of 14 (permalink) Old 02-20-2003, 04:30 PM
Punk Ass Newbie
 
Join Date: Nov 2002
Location: dallas
Posts: 65
Quote:
Originally posted by AbecX
Its not kazaa's fault, it was the insecure video player you were using, Kazaa rules. Get a different player and dont fret it

Yeah. I upgraded to WMP 9

hopefully I won't have any problems.
Lt123o2 is offline  
post #14 of 14 (permalink) Old 02-20-2003, 08:23 PM Thread Starter
11-05-09
 
Osiris's Avatar
 
Join Date: Feb 2002
Location: Oh- sai- rus.
Posts: 21,427
Quote:
Originally posted by Lt123o2
Yeah. I upgraded to WMP 9

hopefully I won't have any problems.


Above post was me.....
Osiris is offline  
Sponsored Links
Advertisement
 
Reply

Bookmarks

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the DFWstangs Forums forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome