http://news.bbc.co.uk/2/hi/technology/4216697.stm
"The Movie Association for America's (MPAA) free Parent File Scan software lets parents check their children's computers for peer-to-peer programs."
"The MPAA said in a statement that it would continue to provide easy access to similar tools in the coming months to combat "the deleterious effects of peer-to-peer software, including such common problems as viruses, Trojan horses and identity theft"."
lol, "deleterious."
The MPAA and co. are probably the major makers of viruses and Trojans today. When I look at zdnet.com for p2p software, I see many fakes that are full of crap. And someone is very busy writing false positive reviews to trick people to install those malwares. They even have false web pages.
Lame.
warota
>>3
Go to zdnet.com and the p2p download section and read the negative comments for those new-kid-on-the-block p2p's, that one has never heard of before. The web page for these fakes is typical, always one or two pages, with a clean, professional design, minimalist information, and few subdirectories.
I haven't bothered to do a DNS lookup for these sites but I'm willing to bet they are owned by Protected Media, Overpeer or some other **AA-controller minion.
Also see http://4-ch.net/news/kareha.pl/1105756399
It's no secret that the MPAA/RIAA has been uploading infected files, filled-with-zeroes files, and damaged files into Kazaa since a long while.
A few very suspicious (IMO) examples:
Warez P2P:
downloads-zdnet.com.com/Warez-P2P/3000-2166_2-10355165.html?tag=lst-0-3
www.warezclient.com/
Limewire:
downloads-zdnet.com.com/LimeWire/3000-2166_2-10344982.html?tag=lst-0-14
www.limewire.com/
Ares:
downloads-zdnet.com.com/Ares-Galaxy/3000-2166_2-10174222.html?tag=lst-0-18
www.aresgalaxy.org/
Xolox:
downloads-zdnet.com.com/Xolox/3000-2166_2-10290807.html?tag=lst-0-20
www.xolox.nl/
and so on and so on.
FreeWire P2P
...Ha, I notice that many of these end with "P2P"...
You could also check it for yourself: install one of these on a clean machine that you don't use. Then run a battery of tests looking for spywares, viruses and trojans.
Warning, don't use your own machine. According to reports, several of these virii/spywares/trojans cannot be removed without extended work or a reformat.
>>4
And what are you going to say to the judge?
"I was looking for some illegal mp3/mpeg and that shiny program I installed infected my computer, it took me five hours to clean up the mess. I still get random reboots since, and my mouse acts crazy now and then."
That's probably the **AA tactic. They assume you won't be complaining because they believe p2p programs are for pirating only.
Now, there could be some other interest behind this current explosion of very nasty semi-working P2P programs we see on zdnet and other download sites. The question then is, if it's not the **AA, who are they?
LimeWire is a well-known old Gnutella client. Nothing fishy there as far as I know. But I do know of these suspicious-looking P2P programs, but I've never downloaded and taken one apart.
warezclient.com has no contact info whatsoever in the whois database, and could probably lose their domain in a heartbeat for that, except the whole registrar business has turned pretty shady lately.
Interesting is also that a traceroute on www.warezclient.com ends up at softgap.com, which happens to be the home of AresGalaxy too. It's an obvious scam, but the real question is who's behind it. Could be spammers trying to trojan machines, or a credit card stealing program...
Well, softgap.com is registered through a Network Solutions proxy. See what I said earlier about the registrar business being shady? Why would you even start a service to anonymously register domain, except to get money of scammers? Well, only one thing left to try. Download the sucker. I wish I had a sandbox machine to run it on...
Aw damn, my decompressor can't open the exe files directly. I'd have to set up more of a protected environment before I'd feel like running those... Maybe it's time to fire up VMware. If I do, I'll post the results.