|
Tuning-in to "Republic of Korea Top Radio" gives you a trojan?
1 Attachment(s)
Just recently, I decided to see what the buzz was all about and decided to listen to this 'Republic of Korea Top Radio' that seems to almost be dominating DI. Right when I try to tune-in, a message from my firewall pops up and alerts me not to tune-in due to a trojan that attemped to download (called 'Sienna Spy') as I was tuning-in. I decided to find-out what's going on and did a little tracing on the IP address where this trojan was coming from and got considerably less info than from most IP traces I perform. The following is all I got from it:
Quote:
|
Oh crap, I tuned into that station just now. I don't have a firewall so nothing popped-up. Could something happen to my computer now? I'm not listening to that station anymore now.
|
Winamp is unable to download software within a SHOUTcast stream. The cnace are you probally either alread had the tojan on your system or the firewall made a flase positive.
You should try running Ad-Aware. You CANNOT install sofrware with a SHOUTcast Stream. Remember, a lot of these Paranoia-ware firewall and like products are usually quite quick to call something a Trojan or attack. It helps sell more products if they make you think every connection is some kind of attack. |
I beg to differ Sawg, a stream can cause a DL thru the pop-up metadata. People using custom broadcasting software can cause winamp to download stuff thru the minibrowser. I don't know if there are the same warnings IE has either.
|
all adaware will do is remove spyware it's not intended to be a virus/trojan remover. I have gotten pop ups from a stream download.
Thus I know if you get a pop up, there must be a way to get a virus download. Either that or I have a spyware thing on my system, must run adaware again :D |
Maybe it's a listening trojan -- i.e. your computer keeps itself tuned in in the background, because I don't see how so many people could stand that station. =)
|
Quote:
If a listener was indeed jacking up the listener count it would create a need for an imediate ban for the station :D As you can tell snyth or w/e his sn he was listeneing to the station lol |
OK now that you are talking about Korea
Now that we are talking about Korean radios
I always wanted talk about this new site http://inLIVE.co.kr I see everywhere on shoutcast I tried to be a member of there site but its all in korean I had to translate using altavista.com to understand and fill out all the info but when I got to a part where they ask me for a Id number maybe a social ## of korea something like that I never got to register all there radios can get up to 1000 to a 10000 listener and most of them they stream at 128kbps So What is this inlive.co.Kr site that has more than 20 radios on shoutcast some of them streaming at 160kbps hey maybe we can became a member and make a new radio for free :D |
Quote:
Anyway, I still think something is going on with this station, due to the simple fact that I run [http://housecall.trendmicro.com]TrendMicro's and McAfee's virus scanners once a week and Ad-aware every day, and haven't come up with any trojan of some sort. Therefore, I still believe listening to this station may download a trojan. |
Quote:
wait a sec Posts: 24,571,641 lol? And your a senior member still. Wouldn't that qualify for King by now? Well now that you mention. Have you come accross a station that has popups when you click to listen. I believe its possible. Can't you embed something like that into the playlist? |
Quote:
never mind. |
lol. I love the mac video. It truly speaks to me really. I'm a vid editor myself
didn't like the f words in there but hey oh well. |
ok, i'm going to striaten this all out.
a radio stream cannot contain software, and as for the Senna Spy trojan, it is a false alarm, the Republic of Korea radio uses the port 11000 for broadcasting, that is the port that the Senna Spy trojan uses, it is not really a trojan, its just a false alarm. the reson why this was trigured is because your firewall is crap. |
Yep you're right. I never even looked at that screen shot -- now that I have it's obvious. DOH!
|
Quote:
LOL LOL LOL :blah: no use for this topic anymore eh? |
I have to admit, it is a piece of shit, but hey, it's better than no firewall and it really did save my ass by protecting me from getting hacked a while back.
|
lol sounds like a dog scyth lol. like it saved my butt along that long road lol
|
Get yourself a copy of zoneAlarm pro. :)
soulful1 |
Wait a sec. I used to have Zone Alarm. And my system would have the biggest fight ever. I 'd hive crashing everyday on my SAM program. SO I hate zone alarm
|
Really?? It runs like a well oiled machine on my system. Configuration is key.
soulful1 |
I was told that SAM + Zone alarm don't mix from the program creators, and everybody says that on the mailing list too!
|
Seriously I have no problem with it. Guess I got lucky. Sam stats works fine. Were you using the free version or ZoneAlarm Pro?
soulful1 |
free version. I'll be using tiny personal firewall in a while
|
Hope you have better luck with it. :)
soulful1 |
Ah sam is running great now. But thanks for wishing the best :D
|
ooh, there's a free ver? I'm gettin' it.
|
lol, yea the old version of personal firewall :D its free :D Sam isn't free just to make a note
|
Heh. Now I got 2 firewalls running. McAfee (the crappy one) and ZoneAlarm 3. Weeelah!!!
|
AS I said in the post above, za used to be my best friend but now that sam and zone alarm don't have the same views on the world I guess I'll just need use mcAfee and tiny personal, and Norton.
Think thats enough security ;) I hope there isn't any hardware conflicts. Nah I'll prob just use tiny personall to save on memory & CPU |
I tried SAM2, but switched back to good ol' winamp after having repetative problems with SAM's encoders.
BTW, I've had these 2 firewalls running for some time now and there doesn't seem to be any conflicts yet. Plus ZA picks up what McAfee misses and vice-versa, so I'm cool with my security for now. |
YEa thats cool. IF you try the latest ed of sam, those versions should be fixed. We've been debuggin like crazy :D
|
| All times are GMT. The time now is 06:51. |
Copyright © 1999 - 2010 Nullsoft. All Rights Reserved.