Infection method?
Results 1 to 4 of 4

Thread: Infection method?

  1. #1

    Infection method?

    Take a look at my profile, there is an animated gif of soda popinsky laughing at you. Right click it, and on windows at least, it will tell you its a jpeg. Navigate to the address its at,
    and it has a jpg file extension, yet its still animated. AFAIK, animated jpegs don't exist. So I downloaded it to see, but the extension changes to gif in the download window.

    I was just wondering, is that a server configuration by AO to make it appear to be a jpeg, or am I just weird? Couldn't a server make the extension of a file on their server appear to be jpeg and change to exe during the download, similar to how this shows it to be jpeg then switches to gif?

    I think I'm missin something here, just an idea

  2. #2
    Senior Member
    Join Date
    Jun 2004
    after reading your post, i got interested so i tried to replicate it here on my computer and here are the results of my 4 experiments...

    Experiment 1:
    renamed a jpeg to gif (my aim buddy icon)
    opened it in internet explorer

    the picture was still animated...

    the picture files have a header in it telling programs what type of picture data that they contain...

    Experiment 2:
    rename an exe to a jpg

    internet explorer did not open anything, rather, it gave me the white box with a red "x" in it saying that a picture could not be found/displayed

    Internet explorer looked at the file looking for picture data (based on the file extension) and was not able to find any picture data

    Experiment 3:
    rename an html to a jpg

    Internet explorer once again did not open anything...

    microsoft must have realized that people would eventually try this so they made it so that internet explorer would look only for data based on the extension... furthermore, because jpg and gif are both in the Picture "family" and both can be handled by internet explorer and the picture is animated

    Experiment 4:
    rename an exe to html

    the compiled machine code was shown

    file types are defined in the registry as well as what to do with them...

    as you can see i typed this while i was doing my experiments, so you can see the progression of my thoughts and opinions.

    if someone could, please replicate these experiments with firefox/mozilla/netscape/safari/anything else that i forgot
    [gloworange]find / -name \"*your_base*\" -exec chown us:us {} \\;[/gloworange] [glowpurple]Trust No One[/glowpurple][shadow] Use Hardened Gentoo [/shadow]

  3. #3
    Flash M0nkey
    Join Date
    Sep 2001
    heh I been using a gif for a while and never noticed that
    I know your only suppoused to be able to upload .jpg so maybe that has something to do with it? because it is the only acceptable file type AO automatically changes the extension if you upload another graphic type?


  4. #4
    AntiOnline n00b
    Join Date
    Feb 2004

    I don't think file Extensio would matter much.......I mean you can make a .gif file just a File(test.gif ro just test) without Extension and open it in Explorer it would Still Work.......Convert it to any other file extension that is not currently in use like pic.soda and it will still animate in the's just that a few file extensions are made to behave differently for example if you make a .gif a .htm and open it in the IE it wouldn't would make IE behave it would do with a Htm it's content........i mean give a gif any new extension or any file extension except those like .exe, .dll,.htm etc it will still work......

    And AO Converting it from .gif to jpg i am with valhallen ..until someone gives a better reason e.g mnstgrl...............and Firefox is showing it as .jpg and downloading it as .jpg

    and Never Trust Internet Explorer with Picture File Formats.........try this trick it will make a .jpg download as .bmp in Internet any web page containing a .jpg picture.....let the IE window open .....Goto Tools--> Internet Options now in the "Internet Options" Dialog Box........Press the Three Buttons First "Delete Cookies" , "Delete File" ,"Clear History" press ok rhen return to the page contaning the .jpg picture try to save the pic to your computer and see would just let you save the picture as .bmp........

    --Goo Luck--

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts