Two different items to post here. The first points out that those that do not learn from the past (as in the Sony rootkit fiasco) are doomed to repeat it (EMI).

http://www.slyck.com/news.php?story=1137

EMI is doing the same thing but in this case even if you do NOT approve of the software installation it gets installed anyway whether you like it or not.

-----

This second item it mostly an explanation of rootkits. I just got this in my latest 'a-squared' newsletter. "a-squared" is a little freebie anti-trojan/malware/spyware utility that I've got and use.


Rootkits - A New Malware Trend

Yet another new term has been recently circulating in the media: Rootkits. What sounds to non-experts like something you would buy in a gardening shop, has in fact nothing to do with agriculture. The term actually comes from the Unix world, where "root" is the user with the highest possible level of access privileges, similar to the "Administrator" in Windows. Rootkits have already existed for the Unix/Linux family for some time, but the trend has now also reached the already besieged Windows users.

Learn more about this new Malware trend at the a-squared Knowledgebase. The most important in short:
Over one year ago, a-squared Anti-Malware Personal was already able to protect your PC against such Rootkits!

Read the full article at:
http://www.emsisoft.com/en/kb/articles/tec060324/
.

Is there a master list somewhere of CDs to avoid? So far, I'm blacklisting Sony and EMI, but there must be others. :mad:

Oh. Before someone thinks I'm against musicians on those labels, I'm not. If I'm interested in their music, I follow links on their websites to places where I can download tracks. I'm just avoiding their CDs if I can.

Will they never learn...

-di

Is there a master list somewhere of CDs to avoid? So far, I'm blacklisting Sony and EMI, but there must be others. :mad:

Oh. Before someone thinks I'm against musicians on those labels, I'm not. If I'm interested in their music, I follow links on their websites to places where I can download tracks. I'm just avoiding their CDs if I can.
I know there -is- a list somewhere because I've run into it before but I can't remember where and stupid me I didn't bookmark it because I have no intention of ever knowingly purchasing anything like that in the first place,... plus I'm adept (and paranoid) enough to be able to circumvent such things to begin with. I'll keep an eye out for it though. I'd be willing to bet that one can be found at the EFF. Another good thing to be aware of and make use of is the "RIAA Radar" at:

http://www.magnetbox.com/riaa/

That's a database of recording companies that are members of the RIAA. Their own explanation of who they are is this, "The RIAA Radar is a tool that music consumers can use to easily and instantly distinguish whether an album was released by a member of the Recording Industry Association of America (RIAA)."

I should note that the only music that I've purchased in the last two years from an RIAA member company has been old, used, CDs that were produced BEFORE DRM became an issue. The only "new" stuff that I've gotten has been direct from the musician(s) themselves.

(hours later addition)
HERE'S THE LIST! Well, at least it's A list. It's at boycott-riaa.com and the specific URL for it is:

http://www.boycott-riaa.com/corrupt_cds
.

I refuse to buy a CD with the rootkit on. Here in the UK, the CDs have a label on them that tells you they have 'special software' that protects against copying. Imagine buying a CD, only to find that it does not play on your Apple!!

RUbbish.

Unfortunately it means I can not complete my Indigo Girls collection since "All that we let in" also has the nasty stuff. Not that it seems to help much because I still got a perfectly copied version. But since Indigo Girls do not sell massive amounts in the UK, they are not really selling the old stock so no chance for now to get a newly released version without the rootkit on it. Because I would buy it right away if I could. I don't like owning copied stuff. Doesn't feel real....

I don't see "All That We Let In" on that list. I have that one loaded on my machine so I guess I'm infected. How do I get rid of it if it is one of EMI's root kits, not Sony's?

-di

I don't see "All That We Let In" on that list. I have that one loaded on my machine so I guess I'm infected. How do I get rid of it if it is one of EMI's root kits, not Sony's?

-di
Am I missing something? If you don't see it on the list then the chances are good that you are -not- infected to my way of understanding. Also, it should be noted that the list is probably not a complete list so I suppose you might be infected with something I guess. <shrug> Dunno..... In any case I'll keep my eyes peeled for instructions on how to get rid of it if you do indeed have it.

In the interim if you're feeling a bit "geeky" then have a look at this link. I had to dig for the things mentioned here at this link but all the items here -appear- to be free for the taking and the effort. Here's the link to the article and directions at Sophos Antivirus:

http://www.sophos.com/support/knowledgebase/article/3386.html

And within that article is a link (that I had to dig for) for program mentioned within it. Be warned though,.. that file is about 8 meg in size. The link is:

http://www.sophos.com/tools/esdz.exe

The link for the definition files for that thing is:

http://www.sophos.com/downloads/ide/

Well the list is certianly not complete. It depends partially on people reporting CDs. I know All that we let in has the nasty stuff because her in the UK, there is a sticker on the CD that warns it might not play in a MAC and on some PCs and that it has special software to protect it from being copied and it will only play on a Windows PC and that it installs something on your PC.

SO I assume that is The Rootkit.

As I said, it doesn't work because I downloaded the CD, out of protest, via WinMX. As soon as the new version is out, without the Rootkit, I will buy the CD because I like to support the artists I listen to.

Well the list is certianly not complete. It depends partially on people reporting CDs. I know All that we let in has the nasty stuff because her in the UK, there is a sticker on the CD that warns it might not play in a MAC and on some PCs and that it has special software to protect it from being copied and it will only play on a Windows PC and that it installs something on your PC.

SO I assume that is The Rootkit.

As I said, it doesn't work because I downloaded the CD, out of protest, via WinMX. As soon as the new version is out, without the Rootkit, I will buy the CD because I like to support the artists I listen to.
The fact that it has that sticker on it is a good first clue. Not ALL software installed in that manner is a rootkit necessarily but I would definitely think of it as "suspect".

There is at least one utility (free) that will look for and help you eliminate that kind of thing, and that's the one that spotted the Sony rootkit to begin with. It's called "RootkitRevealer" from Sysinternals. I can't run it on my current system because it requires at least Win2K and I don't have anything later than WinME. IF you have concerns AND you have at least Win2K or later then go have a look here:

http://www.sysinternals.com/Utilities/RootkitRevealer.html

The direct download link for RootkitRevealer is:

http://www.sysinternals.com/Files/RootkitRevealer.zip

It's reportedly only 210kb so it's a really small download. All the directions for using it are right there on the page. I'm thinking that the program only detects it and does not necessarily remove it, in which case you might need to inquire at their forum there. The link to their forum is:

http://www.sysinternals.com/Forum/forum_topics.asp?FID=15
.