sis file

Axis64 · 28 Aug 2006 at 23:03

My G/F's brother has had a sis file sent to his mobile should he leave delete this or is it something thats ok?

Dolph · 28 Aug 2006 at 23:39

If he has no idea who sent it to him or what it is, delete it. Treat unsolicited file transfers like you would unsolicited email attachments

vodkacokebloke · 29 Aug 2006 at 00:03

sis files are what symbian phones use. could either be an app or a game. depends on what phone you have as to whether you can install it or not. Usually a safe format, i only know of two sis files that have had viruses embedded into them.

Whats the phone, and whats the filename?

bluetech · 29 Aug 2006 at 00:21

vodkacokebloke said:
sis files are what symbian phones use. could either be an app or a game. depends on what phone you have as to whether you can install it or not. Usually a safe format, i only know of two sis files that have had viruses embedded into them.

Whats the phone, and whats the filename?

vodkacokebloke is quite right in what he says, a .sis file is an installation program for a Symbian based OS, like a .exe but for Symbian OS'. Try getting hold of a mobilephone antivirus system such as simworks antivirus, this will tell you for sure as I find them to be very good and not too resource hungry. I was testing this app for a while purposly sending the cabir virus to it, simworks warned me of the file about to infiltrate the phone. The cabir virus was a non-harmfull virus, it just jumped from your phone to another providing both phones had bluetooth turned on and the receiving phone to have it's bluetooth status set to "shown to all", not "hidden".

I would be weary of .sis files unless from a trustworthy source, there are a lot of virus' for the Sybian OS flying around in the air (via bluetooth), all a user with malicious intent needs to do is get hold of the .sis containg a malicios code, rename it to something a non-advanced user would find trustworthy (i.e nokia update.sis) and send it to a known Symbian OS victim, most phones are named as there model by default, i.e 6630 is a known nokia phone with a Symbian OS. If the malicious user sees this in the air then he/she knows that the victim is not up to date on phone technology (default name), he/she also would know it was Symbian based and "fire at will".

A little off topic I know but just thought I'd explain in detail...

*edit* It is also worth noting that .sis file are not sendable via normal methods, a third party app would be need to send the .sis file, i.e an advanced user would have had to have sent the app. So if your g/f's brother are not up to date with the advanced features of mobiles... I would be very weary of the .sis!

Atari · 29 Aug 2006 at 00:24

As said before, treat it like you would any other random file you find on the internet.

My dad's N70 or N80 (Can't remember which it was now) had something like this sent to him while he was at a cash machine. I only found out because his phone kept on sending my phone random files with a .sis extension. I'd guess that it was sending out personal information.

bluetech · 29 Aug 2006 at 00:28

Atari said:
As said before, treat it like you would any other random file you find on the internet.

My dad's N70 or N80 (Can't remember which it was now) had something like this sent to him while he was at a cash machine. I only found out because his phone kept on sending my phone random files with a .sis extension. I'd guess that it was sending out personal information.

Any chance the program was "cabir.sis"?, if not it could have been renamed, and installed all the same. A quick way to find out on a nokia is by holding down the menu button, 2 seconds later you can view background process' (like ctrl alt del), if "cabir" is there, use simworks or another Symbian Anti-Virus program to remove it. I know I keep going on about Cabir, but it is so readily available it was a HUGE problem about a year ago...

Atari · 29 Aug 2006 at 00:31

This one was called Connection Commander, or something similar.

It was sending out filenames like 'Ab249adbbksa.sis'. Very dodgy indeed.

Dolph · 29 Aug 2006 at 00:34

Comwarrior is the one that seems to be more prevelant at the moment, and it works out more expensive for the end user too, as commwarrior tries to replicate itself via MMS to other mobile numbers in your phone book, as well as via bluetooth.

As mentioned, there are plenty of antivirus solutions starting to appear now. (Orange users can even download an approved and supported version of the F-secure scanner via the Orange world wap site on a 7 day trial, followed by a small monthly charge (£1.50 a month) for updates if you opt in for it.) It's not a bad idea.

Tunney · 29 Aug 2006 at 13:33

Anonymously sent .sis files are usually the sign of a virus like Cabir.

If you're running a non-Symbian phone or a smartphone running Symbian OS v9.1 or higher then it's harmless. If you try to install it on an older Symbian phone, and ignore the security warnings, then you are likely to get infected by the virus. Removal details can usually be found on F-Secure's website.

The .sis file will only cause harm if you manually install it. The virus relies on people being curious enough to install the file. Just having the .sis file on your system can't do any damage, but there's no reason not to delete it.

bluetech · 29 Aug 2006 at 14:05

Tunney said:
Anonymously sent .sis files are usually the sign of a virus like Cabir.

If you're running a non-Symbian phone or a smartphone running Symbian OS v9.1 or higher then it's harmless. If you try to install it on an older Symbian phone, and ignore the security warnings, then you are likely to get infected by the virus. Removal details can usually be found on F-Secure's website.

The .sis file will only cause harm if you manually install it. The virus relies on people being curious enough to install the file. Just having the .sis file on your system can't do any damage, but there's no reason not to delete it.

Very well put there by the way...