Unoffical empeg BBS

Quick Links: Empeg FAQ | RioCar.Org | Hijack | BigDisk Builder | jEmplode | emphatic
Repairs: Repairs

Topic Options
#63601 - 27/01/2002 02:19 For those of you using AudioGalaxy...
Biscuitsjam
enthusiast

Registered: 22/01/2002
Posts: 355
I noticed this on slashdot. The latest version of Audio Galaxy includes some nasty spyware, much worse than the kind including with Kazaa. If you are currently using Audio Galaxy, or even if you aren't, I would recommend you download and run Ad-Aware ( http://download.cnet.com/downloads/0-10106-100-7302674.html?tag=st.dl.10001-103-1.lst-7-1.7302674 )

The following is from http://www.cexx.org/vx2.htm

Privacy Concerns
The software covertly collects all sorts of information about your Web surfing habits, including lists of Web sites you visit (and even sites you've visited before installing their software(!)), any terms you enter into a search engine, and contents of online forms--including "secure" forms using SSL encryption(!). The company has the audacity to claim that this is done "in order to save you the time and trouble of submitting such information to us yourself". It also stores cookies to persistently identify you across sessions.

The software also transmits back information about your computer, which can include amount of memory, hard drive size, free space, what peripherals you own, and even lists of software you have installed.

Finally, the software transmits details about your interaction with the software.

The software also includes an auto-update capability with the stated purpose of updating not only the VX2 spyware itself, but also installing additional third-party programs, including additional spyware.

Information Gathered by Transponder

Upon its first load, VX2.dll will look for a file in your Windows directory called oeminfo.ini. If present, this file contains information about your computer provided by the OEM--who you bought it from, serial #/etc., processor and configuration, tech support info, and maybe your name. (IIRC, this information is displayed if you go to Start > Settings > ControlPanel > System and view the first tab.) More information about the oeminfo.ini file is available here.

Transponder then connects to sputnik.vx2.cc and transmits data. As the data is encrypted, the exact contents of this transmission are unknown. But the Transponder folks were nice enough to enumerate some or all of the transmitted fields (unencrypted) within the DLL. These are:

Name
Email
Processor
OEMInfo
Printers
AppList
RAMSize
DiskSpace
LanguageID
TimeZone
IE
OS
<SysInfo>

-Biscuits

Top
#63602 - 27/01/2002 03:18 Re: For those of you using AudioGalaxy... [Re: Biscuitsjam]
Biscuitsjam
enthusiast

Registered: 22/01/2002
Posts: 355
I read through the comments on slashdot and saw three things of interest:

1.A guy named Maurice O-Bannon has been indicted in an unrelated case for online credit card fraud. Incidentally, this is the same name as the CEO of this spyware company (http://www.ftc.gov/opa/1999/9902/petapp4.99.htm). If this is the same guy, this is disturbing, especially since this program will grab any credit card numbers you type in online.

2. Audio Galaxy claims that it changed its software in the past week or so to take out this spyware (they had not paid their bills).

3. Ad Aware does not detect this particular peice of spyware.

-Biscuits

Top
#63603 - 28/01/2002 05:50 Re: For those of you using AudioGalaxy... [Re: Biscuitsjam]
jnmunsey
member

Registered: 10/01/2002
Posts: 139
Loc: Houston, TX, USA
perhaps not yet - you need to regularly update their definition file..

Top
#63604 - 28/01/2002 08:31 Re: For those of you using AudioGalaxy... [Re: jnmunsey]
nester
new poster

Registered: 11/12/2001
Posts: 30
Loc: Louisville, KY, USA
Yeah.. The default def file is out of date.. AdAware's update thing is bit wack, but it's worth going through a few hoops for. Download this, http://www.lsfileserv.com/aaw/binary/refupdate.exe

Here's where my friends got confused.. They downloaded it, ran the setup and thought AdAware was now updated. However, this just installs the updater util, you now need to go to Start->Programs-> etc and run the program, it will connect and download the lastest ref file.. and viola!

I know.. it's convoluted.. but it works.

Top
#63605 - 28/01/2002 08:35 Re: For those of you using AudioGalaxy... [Re: nester]
Yang
addict

Registered: 14/01/2002
Posts: 443
Loc: Raleigh, NC
It's labled as an update plugin, which implies it's a program that adds a update functionality to the ad-aware program.

Top
#63606 - 28/01/2002 23:52 Re: For those of you using AudioGalaxy... [Re: Yang]
_hardcore_
member

Registered: 22/09/2000
Posts: 195
Loc: Copenhagen, Denmark
Hi,

What exactly is Audio Galaxy ?

\\Kaare

Top
#63607 - 29/01/2002 00:05 Re: For those of you using AudioGalaxy... [Re: _hardcore_]
Biscuitsjam
enthusiast

Registered: 22/01/2002
Posts: 355
Its one of the music sharing programs. Its relatively powerful, but since it is free to use, they sold out and made it full of adware and spyware (legal trojan horses). I've personally never used it.

If you actually want to download music off the internet, I'd recommend morpheus. Bear in mind that only about 1/4 of the songs downloaded off the internet are of decent quality. Most users simply don't care about their encoding.

-Biscuits

Top
#63608 - 29/01/2002 00:35 Re: For those of you using AudioGalaxy... [Re: Biscuitsjam]
_hardcore_
member

Registered: 22/09/2000
Posts: 195
Loc: Copenhagen, Denmark
Ahh, thanks for the enlightment. When ever i need some thing, i allways revert to good old ftp'ing!.. Works like a charm, and with the right account, you'd be amazed what you can find

\\Kaare

Top
#63609 - 29/01/2002 00:59 Re: For those of you using AudioGalaxy... [Re: _hardcore_]
jbauer
veteran

Registered: 08/05/2000
Posts: 1429
Loc: San Francisco, CA
Not that I participate in that activity, but if I did... where would I find FTP sites that could be checked out? Is there a list somewhere?

- Thanx
- Jon

Top
#63610 - 29/01/2002 01:05 Re: For those of you using AudioGalaxy... [Re: jbauer]
_hardcore_
member

Registered: 22/09/2000
Posts: 195
Loc: Copenhagen, Denmark
:-) right..

I think you'd have to know some people, as most ftp sites are invites only. Perhaps a good starting point would be efnet on irc.

\\Kaare

Top
#63611 - 29/01/2002 01:43 Re: For those of you using AudioGalaxy... [Re: _hardcore_]
acurasquirrel
member

Registered: 10/01/2002
Posts: 186
Loc: Georgia
Bearshare is better than Morphues

Top
#63612 - 29/01/2002 01:50 Re: For those of you using AudioGalaxy... [Re: acurasquirrel]
danthep
enthusiast

Registered: 29/08/1999
Posts: 209
Loc: new zealand
gnut is better than bearshare... LOL

Top
#63613 - 29/01/2002 15:45 Re: For those of you using AudioGalaxy... [Re: danthep]
Terminator
old hand

Registered: 12/01/2000
Posts: 1079
Loc: Dallas, TX
Limewire is better than both of them :-)

Top
#63614 - 29/01/2002 15:48 Re: For those of you using AudioGalaxy... [Re: Terminator]
tfabris
carpal tunnel

Registered: 20/12/1999
Posts: 31600
Loc: Seattle, WA
And ripping your own CDs is better than all of the above.
_________________________
Tony Fabris

Top
#63615 - 29/01/2002 17:38 Re: For those of you using AudioGalaxy... [Re: tfabris]
Anonymous
Unregistered


And hearing the band play live is even better.


Edited by Yz33d (29/01/2002 17:39)

Top
#63616 - 29/01/2002 17:49 Re: For those of you using AudioGalaxy... [Re: ]
danthep
enthusiast

Registered: 29/08/1999
Posts: 209
Loc: new zealand
And being invited back to their hotel room to chat is even better

(i used to use limewire, but now use gnut cause it's much easier to leave running in the background on my server than some huge GUI app on my desktop).

Top
#63617 - 29/01/2002 19:57 Re: For those of you using AudioGalaxy... [Re: ]
msaeger
carpal tunnel

Registered: 23/09/2000
Posts: 3608
Loc: Minnetonka, MN
not in all cases
_________________________

Matt

Top
#63618 - 29/01/2002 19:59 Re: For those of you using AudioGalaxy... [Re: danthep]
Anonymous
Unregistered


And if the band happens to be Britney Spears, that's even better.

Top