Difference between revisions of "Super Encoder"

From Free Knowledge Base- The DUCK Project: information for everyone
Jump to: navigation, search
(User Comments)
Line 18: Line 18:
  
 
[[File:10208321894-orig.jpg]]
 
[[File:10208321894-orig.jpg]]
 +
 +
'''The dialog shows a "By Clicking Accept..." message.  However, there is nothing to click.  The installer automatically launched and all of the malware payloads were installed without any option being accepted.'''
  
 
== Payloads ==
 
== Payloads ==

Revision as of 21:08, 14 April 2012

Super Video Converter allows you to convert or join files among AVI, MPEG-1, MPEG-2, VCD, SVCD, DVD, WMV, and ASF formats. The program supports the conversion of AVI to MPEG-1, MPEG-2, DVD, VCD, and SVCD; all media formats to DivX (MPEG-4) and AVI; and PAL-to-NTSC conversion and vice versa. You can change the codec or system type, including PAL, NTSC, DivX, Cinepak, and support for streaming media (WMV and ASF) is included. Supports H.264 / MPEG-4 AVC.

What's new in this version: Version 5.8 includes VIRUS PAYLOADS, TROJANS, MALWARE, AND SPYWARE!

DO NOT INSTALL SUPER. THE DEVELOPERS SHOULD BE BLACKLISTED. THIS IS A VERY BAD LITTLE PROGRAM. Even if they do clean their act up, they need to face consequences. Anyone considering joining a class action against the developers commend in the discussion.

User Comments

In recent installers, (The Super Installation Program) started asking "Would you like to install this?" Totally optional, understandable that they needed funds. However, (the)last installer crossed the line. They gave no options to prevent the bloatware. In installed "iNTERNET Turbo," which had some things like wajam, Inminmit, and (2yourface).

After uninstalling, (there remained) files neatly packed and still clearly running (from) a folder. A file called "TBhelper2.exe" (was in) task manager, (pointing to) C:\Config.MSI\ This folder is completely invisible and locked.

Reference: http://forum.blockland.us/index.php?topic=191602.0

This is a similar experience reproduced in our laboratory.

THE VIRUS PAYLOADS INSTALL WITHOUT ANY OPTION PRESENTED TO END USER.

10208321894-orig.jpg

The dialog shows a "By Clicking Accept..." message. However, there is nothing to click. The installer automatically launched and all of the malware payloads were installed without any option being accepted.

Payloads

  • IMinent Toolbar
  • Wajam
  • iNTERNET Turbo
  • 2YOURFACE
  • TBhelper2.exe

Example Files found on infected system

IMinentToolbarInstallerFF.exe is-B0I40.tmp9A.exe Au_.exe 2YOURFACE_101_S.EXE-004FCBA7.pf

2YOURFACE.EXE is Trojan/Backdoor

2yourface malware Win32.2UrFace.bho has been identified. Win32.2UrFace.bho is a browser helper object that gets installed without user consent along other malware and adware. It loads with the Internet Explorer and can control its Internet traffic in background.

source: http://forums.spybot.info/showthread.php?t=65324

2yourface web site - http://6point7.com/

Other questionable spyware practices

Super installer has been using something called OpenCandy for several versions now. OpenCandy is a type of spyware.


 

 

Retrieved from "http://wiki.robotz.com/index.php?title=Super_Encoder&oldid=6581"