caki
20-04-2006, 20:29
Just thought I should bring this to your guy's attention before someone else does ;). I suspect that a nimber of individuals tries to get Viruses/Trojans past EMPiRE every month, and that he scans and removes submittals that have virii in them. Now, I had this idea during my daily one hour brain-storm titled "How to Fuck My Computer Up" (you can guess about all the results my brainstorm gets me :D). Anyways, what a malicious individual could do is create a maxi image, but one that still has autoplay functioning. Now, lets say this autoplay executes a malicious .exe .... see where this is going? I hope you do ;)
Now, most intelligent people who try to fuck you up can code a pimp ass executable wrapper and wrap a custom encrypted SubSeven trojan or some other shit in it, and wrap it with a crack and fuck a person over. Not much we can do about this, since an average user relies on his Anti-Virus software, and if the anti-virus software doesn't work.... yeah :(
Now, we can usually catch the stupid guys who use somebodies public exe wrapper (most are blacklisted already by antiviruses) and then put the un-encrypted version of some trojan in it (easily detectable by antiviruses). Now the average user can catch and get rid of this.
What the average user cannot get rid of however is viruses that are in the maxi images. I have found that antiviruses usually totally fuck themselves over when they cannot delete a file (Norton Antivirus loops a messagebox, and the process cannot be terminated from CTRL-ALT-DELETE). Also, some viruses can resist attempts of antiviruses to terminate them, and since they cannot be deleted.... you get the point.
And now, you have a BIG problem if this virus happens to be Hard Drive Killer Pro 1.3, because within 8 seconds of its execution from the maxi image you wont have a harddrive, but a useless piece of Chinese Metal that you can use to hijack and aircraft with. Even worst, most antivirii cannot terminate the process of HardDriveKiller Pro (only one that can as far as I know is Kaspersky), and some(if not 98% of the antiviruses i have tried) fail to even detect it.
So, that is my warning. An average person can fuck up A LOT of computers with a maliciously created maxi image. I don't really know how EMPiRE could combat this... but I thought I should warn you guys about this.
Now, most intelligent people who try to fuck you up can code a pimp ass executable wrapper and wrap a custom encrypted SubSeven trojan or some other shit in it, and wrap it with a crack and fuck a person over. Not much we can do about this, since an average user relies on his Anti-Virus software, and if the anti-virus software doesn't work.... yeah :(
Now, we can usually catch the stupid guys who use somebodies public exe wrapper (most are blacklisted already by antiviruses) and then put the un-encrypted version of some trojan in it (easily detectable by antiviruses). Now the average user can catch and get rid of this.
What the average user cannot get rid of however is viruses that are in the maxi images. I have found that antiviruses usually totally fuck themselves over when they cannot delete a file (Norton Antivirus loops a messagebox, and the process cannot be terminated from CTRL-ALT-DELETE). Also, some viruses can resist attempts of antiviruses to terminate them, and since they cannot be deleted.... you get the point.
And now, you have a BIG problem if this virus happens to be Hard Drive Killer Pro 1.3, because within 8 seconds of its execution from the maxi image you wont have a harddrive, but a useless piece of Chinese Metal that you can use to hijack and aircraft with. Even worst, most antivirii cannot terminate the process of HardDriveKiller Pro (only one that can as far as I know is Kaspersky), and some(if not 98% of the antiviruses i have tried) fail to even detect it.
So, that is my warning. An average person can fuck up A LOT of computers with a maliciously created maxi image. I don't really know how EMPiRE could combat this... but I thought I should warn you guys about this.