When I seen the update on the front page, I downloaded it (from the Download link here at TPFC) and installed it as portable.
Originally I was going to do a post this weekend about how it has a startup web-interface of some kind now, builtin websearch and logs data/play list and uploads it when you start the program to 'log.kmplayer.com'
Firewall wrote: The application: C:\Documents and Settings\Owner\My Documents\Downloads\KMPlayer_3.6.0.87_h.exe try to launch another application: C:\Documents and Settings\Owner\Desktop\Stuff\kmp\KMPlayer.exe to go to remote host log.kmplayer.com
Well it turns out it also installed, basically a virus called 'temp33.exe'.
I know it was KMPlayer because my firewall picked it up during the install
Which also comes with 'npf.sys':Firewall wrote: 7/31/2013 3:47:15 AM Blocked 10 Outgoing TCP 188.233.30.230 C:\WINDOWS\Temp\temp33.exe 7/31/2013 3:46:11 AM 7/31/2013 3:46:11 AM
Now I was going to say the first bit was enough to either have it removed or reverted to a previous version, but if it actually installs this junk and the link or their download wasn't hacked/hijacked. Then i think it should be removed completely.Firewall wrote: 7/31/2013 3:47:09 AM Blocked 10 Incoming UDP C:\WINDOWS\system32\drivers\NPF.sys 1 7/31/2013 3:46:08 AM 7/31/2013 3:46:08 AM
So now I'm off to try to remove this crap. >.<
But just thought I should let you guys know first.