| Author |
Message |
FireWyrm
Master Baiter
Joined: 09 Jun 2007
Posts: 213
Location: Caesar si viveret, ad remum dareris
|
 Posted:
Fri Sep 28, 2007 8:53 pm |
  |
| swordfish wrote: |
| Steve Gibson has written some good stuff: |
Any relation to William Gibson..?. |
_________________
Diagonally parked in a parallel universe
"SCHOOLS FOR THE DEAF/DUMPS" - Frank
"I will not live long since my ailment has defiled all forms of medical treatment" - Victoria
PLEASE IGNORE ANY FURTHER MESSAGE FROM CHARLES OR WHATEVER FOR GOODNESS SAKE.!!! - FRANK AGAIN
so how do you want me to beat trust in you now??? (I think I've annoyed him - Frank again)
 |
|
|
|
|
harrya
Elite Baiter
Joined: 23 Jul 2006
Posts: 1489
Location: Not Happy
|
| Posted:
Sat Sep 29, 2007 12:57 am |
|
| Quote: |
| The next question, how can I tell I'm clean |
Apart from the mentioned anti virus tests have a look at network monitor in task manager if you have windows.
If it's shows constant activity when you aren't doing anything then further investigation will be required. Shut down everything that uses the network.
browsers, mail clients etc. |
_________________
 |
|
|
|
|
Pastor Frank
Baiting Guru
Joined: 31 Jan 2007
Posts: 12237
|
| Posted:
Sat Sep 29, 2007 1:12 am |
|
***Copied from a previous post I made in another thread.
Since we are all taking a crash course on Computer Security 101 I thought I would share this.
It is a slick (Windows) application that will tell you what open connections you have to the internet and who your computer is talking to. Nice for sniffing out nasties on your computer that scans may miss. (Good for spyware/adware/trojans) It doesn't actually "fix" anything, but should alert you to any problems, like a persistent open TCP connection to a server that is unfamiliar to you.
Edit: (It is just a nice GUI for netstat, for those that are familiar with that command)
http://www.microsoft.com/technet/sysinternals/Networking/TcpView.mspx
Unzip it and run Tcpview.
Here is another good resource...
http://www.processlibrary.com/
Do a Ctl+Alt+Del and click on the "Processes" tab
Now enter some of those processes by name (in the left hand column) into the data base to find out what that particular process is doing on your computer. It will alert you to any processes that are dangerous.
Beware when disabling processes, if you nix the wrong one... well, lets just say, its not a good thing if you don't know what you are doing.
If you have any questions, feel free to ask. I will help the best I can. |
_________________
"Father Juan are sure that you are man of God,because your behaviors showed you as unbeliever" -Mary R |
|
|
|
|
DrWho
Baiting Guru
Joined: 14 Jan 2004
Posts: 5486
Location: Where ever I go, there I am
|
| Posted:
Sat Sep 29, 2007 4:17 am |
|
To answer a question way back in the thread. The bot owners operate under capitalism. The cost is not what you get. The cost is what the customer is willing to pay. Just because it takes no real work to operate the bot network or much work to distribute it, doesn't mean it isn't worth a great deal of money for criminals to employ it.
But, my theory is that this attack is not a paid-for bot attack. We are being attack by a group that owns their own botnet. And is in the scam/spam/criminal element. It essentially costs them nothing to run their own bots. This only my opinion. |
_________________
"i think you people do not know whom you are talking of,i am not in any terrorist organization or planning any such of terrorist activities."
"i am not a terrorist and your america cia cna also investigate me."
"i am not a terrorist.send the shit stuff and let me get it fillied."
 x12
"To Serve Man" |
|
|
|
|
mike hunter
Master Baiter
Joined: 11 Nov 2006
Posts: 199
|
| Posted:
Sat Sep 29, 2007 4:30 am |
|
well even then, if it is owned by them they are losing income not being able to rent it out while attacking... so they are losing money either way I guess. |
_________________
- "so whats the meaning of what you are saying?Are you out of your mind?" - Mike Davies
- "You are much more aware of the harm this will exhibit to the United States economy if you do not comply to the law binding this" - Jack McDonald Internal Revenue Service
 x7 |
|
|
|
|
Rodus
Baiting Guru
Joined: 13 Dec 2006
Posts: 3685
Location: Back under the cold shower
|
| Posted:
Sat Sep 29, 2007 11:45 am |
|
^^Depends on the size of the botnet. Some run into millions of computers and they never use the full power of them. If DrWho is right then chances are it's a group using a small part of the net and renting the other machines out as per usual. |
_________________
I will kiss you romance u,suck and penetrate u - Williams Muyeke
now am as poor as a church rat - Lou1s Mar1on
I AM FINANCIALLY DEAD RIGHT AWAY - Louis in Accra
u can keep sending money to Gomer and leave me alone - Agent Smith cracks up
 Lou1s Mar1on - Lagos to Accra (satellite IP) - "so, what i need to do to get out of these place?"
 - 18 mths: Louis
The*Catb1ngo Hotel*
*My Church*
  x23  |
|
|
|
|
harrya
Elite Baiter
Joined: 23 Jul 2006
Posts: 1489
Location: Not Happy
|
| Posted:
Sat Sep 29, 2007 12:31 pm |
|
OK the worst situation is where :
10 start virus
20 don't care
30 start virus just in case
40 check if boss hog has called.
50 create new me somewhere
60 who cares if boss called
70 asshole never called
80 goto 10 |
_________________
|
|
|
|
|
mike hunter
Master Baiter
Joined: 11 Nov 2006
Posts: 199
|
| Posted:
Sat Sep 29, 2007 11:58 pm |
|
Wish I had a copy of this bot code... would be interesting to pick apart... |
_________________
- "so whats the meaning of what you are saying?Are you out of your mind?" - Mike Davies
- "You are much more aware of the harm this will exhibit to the United States economy if you do not comply to the law binding this" - Jack McDonald Internal Revenue Service
x7 |
|
|
|
|
DrWho
Baiting Guru
Joined: 14 Jan 2004
Posts: 5486
Location: Where ever I go, there I am
|
| Posted:
Sun Sep 30, 2007 1:44 am |
|
Get yourself a cheap computer, install win xp, do not update it, turn off all scanners and protection, connect it directly to the internet, click on every link you find and install every helpful link sent to you. In a few days you will have all the virus and bots you could want. How to get this specific one, I don't know. |
_________________
"i think you people do not know whom you are talking of,i am not in any terrorist organization or planning any such of terrorist activities."
"i am not a terrorist and your america cia cna also investigate me."
"i am not a terrorist.send the shit stuff and let me get it fillied."
x12
"To Serve Man" |
|
|
|
|
|
|
SmartFeed
