Attention to infinity supporters !!! - GSM-Forum

the_laser · 06-23-2009, 16:47

Greetings.

sadly to say, but all your modules (at least ChineseMiracle 2.83, MT62xx_lp_editor 1.26, DongleManager 1.29,QCModule2 1.05 and most probably all latest version) contains some source level virus type program, which are targeted for delphi programmers.

what that addon doing:

1. each time poisoned software run, it checks if delphi installed on machine by checking registry keys
HKLM\Software\Borland\Delphi\4.0
HKLM\Software\Borland\Delphi\5.0
HKLM\Software\Borland\Delphi\6.0
HKLM\Software\Borland\Delphi\7.0

if such key exists, it getting RootDir property and check for
HKLM\Software\Borland\Delphi\x.0\RootDir\source\rt l\sys\SysConst.pas

then it appends itself to that file and running in hidded mode HKLM\Software\Borland\Delphi\x.0\RootDir\bin\dcc32 .exe, which replacing original sysconst.dcu compiled module.

after that EACH software, which will be compiled on that machine will contain that thing.

i want to mention, that it not deleting or damaging anything, but it leave a huge security hole for possible infections.

of course, i believe that you do not know about that thing.

please check and fix all modules ASAP.

thanks for understanding.

the_laser · 06-23-2009, 17:07

yes, forgot to post most important thing.

workaround is very simple.

just need to create file HKLM\Software\Borland\Delphi\x.0\RootDir\Lib\sysco nst.bak

after that "thing" will think that it already done its job.

free1600 · 06-24-2009, 01:57

mmmmmmm thanks for your knowledge share

I can confirm this even if I'm not a programmer(I play) i have delphi on my pc...
yes a fix for this...

br,
free1600

hans salim · 06-24-2009, 05:39

@THE LASER
IS THIS CAUSE NY BOX THIS PROBLEM?

it was working fine sudenly start to show dongle damaged error code 65!!!, plz i need help?

http://forum.gsmhosting.com/vbb/show...96&postcount=1

CONCORDIA GSM · 06-24-2009, 05:51

Still no ansure or response from infinity team even the laser pointout all with details.

farihabest · 06-24-2009, 06:08

With due respect

Infinity Team please reply... My kaspersky also detected viruses(trojan) in calculater.exe that I have download from Infinity support area

cel_phon · 06-24-2009, 06:34

Quote:

Originally Posted by the_laser

Greetings.

sadly to say, but all your modules (at least ChineseMiracle 2.83, MT62xx_lp_editor 1.26, DongleManager 1.29,QCModule2 1.05 and most probably all latest version) contains some source level virus type program, which are targeted for delphi programmers.

what that addon doing:

1. each time poisoned software run, it checks if delphi installed on machine by checking registry keys
HKLM\Software\Borland\Delphi\4.0
HKLM\Software\Borland\Delphi\5.0
HKLM\Software\Borland\Delphi\6.0
HKLM\Software\Borland\Delphi\7.0

if such key exists, it getting RootDir property and check for
HKLM\Software\Borland\Delphi\x.0\RootDir\source\rt l\sys\SysConst.pas

then it appends itself to that file and running in hidded mode HKLM\Software\Borland\Delphi\x.0\RootDir\bin\dcc32 .exe, which replacing original sysconst.dcu compiled module.

after that EACH software, which will be compiled on that machine will contain that thing.

i want to mention, that it not deleting or damaging anything, but it leave a huge security hole for possible infections.

of course, i believe that you do not know about that thing.

please check and fix all modules ASAP.

thanks for understanding.

.........................................

thanks for sharing and point out the problem

hope infinity will take action at their best

pankaj_gsm · 06-24-2009, 07:42

dere is no problem in infinity box setup working very fine
i think its anti virus problem which shows virus in many exe file

ABDULMANAN · 06-24-2009, 07:50

some antivirus show good file virus and damage files

Barabaka · 06-24-2009, 18:07

@ all who not uderstand.
Antivirus dosn't show this kind of problem. Its very special weapon.
Do not panic. It's not for us.

s.Mobi · 06-24-2009, 19:02

Yes, this virus not for all. Now my system cleaned and after some time i make next version of China Editor without this ****ing insecticide.

To the_laser - very big TNX for info!!!

**InfinitySupport** · 06-24-2009, 19:04

Quote:

Originally Posted by ~ Nawab Traders ~

Still no ansure or response from infinity team even the laser pointout all with details.

I did not understand well, what kind of "response" you want to see ?

**InfinitySupport** · 06-24-2009, 19:07

Quote:

Originally Posted by farihabest

With due respect

Infinity Team please reply... My kaspersky also detected viruses(trojan) in calculater.exe that I have download from Infinity support area

Please, check FAQ thread in current forum, you will see detailed information.

**InfinitySupport** · 06-24-2009, 19:08

Quote:

Originally Posted by hans salim

@THE LASER
IS THIS CAUSE NY BOX THIS PROBLEM?

it was working fine sudenly start to show dongle damaged error code 65!!!, plz i need help?

http://forum.gsmhosting.com/vbb/show...96&postcount=1

How to repair "Error code #32, #65":

. uninstall any kind of usb-sharing software
. reboot PC
. make "Read S/N" operation via DongleManager
. contact to [email protected] and explain the problem so detailed as possible, attach full dongle details in your mail
. after you have got a confirmation that your dongle is not blocked forever (hope you will be able to get this confirmation): upgrade your dongle firmware with DongleManager
. never use any kind of usb-sharing software with Infinity-Box to avoid FOREVER BLOCKED dongle !

**InfinitySupport** · 06-24-2009, 19:11

@Laser
Thanks for warning, we will check it.

@all
Thread closed to avoid tons of posts from people who did not understand what this thread talk about.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
to infinity support , pls we need alcatel 203ex simfree file in support	segun4u	Infinity-Box	21	11-22-2009 14:33
Attention for infinity support team plz !!!	Mobile_plus	Infinity-Box	4	01-25-2009 22:20
*Attention To Jaf Support Team*	unlock trigger	J.A.F. By Jafsupport.com	1	12-30-2008 23:37
how to send file to infinity supporter	jignesh269	Infinity-Box	1	03-06-2008 19:28
to infinity support	vascof1	Infinity-Box	2	06-15-2005 08:33

06-23-2009, 17:07	#2 (permalink)
the_laser No Life Poster Join Date: Feb 2002 Location: Russia Age: 44 Posts: 2,681 Member: 9519 Status: Offline Thanks Meter: 2,150	yes, forgot to post most important thing. workaround is very simple. just need to create file HKLM\Software\Borland\Delphi\x.0\RootDir\Lib\sysco nst.bak after that "thing" will think that it already done its job.

06-24-2009, 01:57	#3 (permalink)
free1600 No Life Poster Join Date: Mar 2007 Location: /Fr/Ch\Ro\ Age: 39 Posts: 1,334 Member: 467911 Status: Offline Thanks Meter: 351	mmmmmmm thanks for your knowledge share I can confirm this even if I'm not a programmer(I play) i have delphi on my pc... yes a fix for this... br, free1600

06-24-2009, 05:39	#4 (permalink)
hans salim No Life Poster Join Date: Jun 2006 Location: in this world Posts: 2,535 Member: 292087 Status: Offline Sonork: 1575183 Thanks Meter: 194	@THE LASER IS THIS CAUSE NY BOX THIS PROBLEM? it was working fine sudenly start to show dongle damaged error code 65!!!, plz i need help? http://forum.gsmhosting.com/vbb/show...96&postcount=1

06-24-2009, 05:51	#5 (permalink)
CONCORDIA GSM No Life Poster Join Date: Dec 2005 Location: Roof of the world Posts: 3,580 Member: 209722 Status: Offline Thanks Meter: 818	Still no ansure or response from infinity team even the laser pointout all with details.

06-24-2009, 06:08	#6 (permalink)
farihabest No Life Poster Join Date: Oct 2007 Location: MX-Key and me ...The Best Posts: 798 Member: 617692 Status: Offline Thanks Meter: 306	With due respect Infinity Team please reply... My kaspersky also detected viruses(trojan) in calculater.exe that I have download from Infinity support area

06-24-2009, 07:42	#8 (permalink)
pankaj_gsm Freak Poster Join Date: Mar 2009 Posts: 121 Member: 983750 Status: Offline Thanks Meter: 26	dere is no problem in infinity box setup working very fine i think its anti virus problem which shows virus in many exe file

06-24-2009, 07:50	#9 (permalink)
ABDULMANAN No Life Poster Join Date: Apr 2008 Location: LOVE A L L AH LOVE ALQURAN Posts: 1,944 Member: 754324 Status: Offline Sonork: LOVE MOHAMMAD (S.A.W) Thanks Meter: 500	some antivirus show good file virus and damage files

06-24-2009, 18:07	#10 (permalink)
Barabaka Insane Poster Join Date: Apr 2005 Age: 49 Posts: 67 Member: 140289 Status: Offline Thanks Meter: 11	@ all who not uderstand. Antivirus dosn't show this kind of problem. Its very special weapon. Do not panic. It's not for us.

06-24-2009, 19:02	#11 (permalink)
s.Mobi Product Supporter Join Date: Nov 2001 Location: Donetsk, DPR Age: 42 Posts: 721 Member: 7436 Status: Offline Thanks Meter: 400	Yes, this virus not for all. Now my system cleaned and after some time i make next version of China Editor without this ****ing insecticide. To the_laser - very big TNX for info!!!

06-24-2009, 19:11	#15 (permalink)
InfinitySupport Product Manager Join Date: Mar 2005 Location: infinity-box Posts: 38,635 Member: 130995 Status: Offline Thanks Meter: 35,227	@Laser Thanks for warning, we will check it. @all Thread closed to avoid tons of posts from people who did not understand what this thread talk about.