So, I'm at work this morning and a friend says have a listen to this new music CD they have bought by a band called Kasabian. OK, I thought, and popped it in the CD drive of my PC at work. Next thing I knew a message pops up on the screen saying something like, "files updated system about to reboot". Without warning my PC reboots, loosing all the work I was doing in progress (I work as web developer programmer). So, after PC comes back up I Explore the CD and find that the autorun.inf file on it points towards an executable (remember, this is a music CD). I look in the directory where the executable is and find the following files:
Yes, that's right, when the CD autoruns it executes a small program that overwrites your winaspi layer with the one on the CD (without any warning or asking for consent from user). Why does it do this? To install a crippled version that stops you from being able to rip CDs. I tried it - fired up CDEx and low and behold it would no longer rip Music CDs properly (only extracting the first 10 seconds). When I looked closely at the CD I saw it had a tiny logo on it saying 'Copy Control' and a link to http://www.bmg-copycontrol.info
Can you f'kin believe it?!?!?!?!
Code:
WOWPOST.EXE
ASPI32.SYS
WINASPI.DLL
WINASPI32.DLL
Can you f'kin believe it?!?!?!?!