Ouch the PhF is for real!!!! :(

Toggle sidebar Toggle sidebar
T

TwoFace

Golden Member
May 31, 2000
1,811
0
0
While talking to Hawkeye in the IRC channel he discovered an update from DNet...

DNet discovery

this is really bad news people!

The gist is this: There's a trojan that randomly selects an IP and then installs the client on that machine...

All stats cracked by this has been discredited!

This is really bad!

The good thing is that they've found out what it is...

Keep up the excellent work people, now that the PhF is gone the contest suddenly got a lot more exciting to me at least!

With love and respect your fellow TA member

Two-Face
 
P

Poof

Diamond Member
Jul 27, 2000
4,305
0
0
Thanks for the info TwoFace! This is why I won't make winblows my firewall nor will I crack RC5 on it (I'm cracking on a K6-2/450 NetBSD box).

Talk about a clever but nasty way to up your dnet stats in a hurry.... :(
 
Michael

Michael

Elite member
Nov 19, 1999
5,435
234
106
I don't think that this is the "PhF" as the blocks showed up quite a while ago and the growth (and end of the growth) was too controlled.

I use a W98 machine as my "connection" to the web (I run NAT32 on it). I do not have file/printer sharing turned on for it so I would not be vulnerable to the most recent worm.

Michael
 
D

Dale

Senior member
Oct 9, 1999
503
0
0
I agree with Michael , this is not our PhF, ours is a controlled installation and shows no tendency to spread at all.

..Dale
 
M

MWalkden

Golden Member
Dec 7, 1999
1,082
0
0
I agree with dvch, it's not the PhF. I agree with Michael that it is a matter of security practice that allows WinX to operate securly.:)
 
S

sciencewhiz

Diamond Member
Jun 30, 2000
5,885
8
81
I'm pretty sure that it was bymer (the person DVCH referred to). Both his stats and the ICQ team (who he was the sole member of) disapeared.

Does the work that the trojan do still count?
 
R

Russ

Lifer
Oct 9, 1999
21,093
3
0
Note the word "recently" in the .plan. You guys are right, this is not our PhF. I have to ask, though, if they jumped all over this one, why do they seem so reticent to check in to ours?

Russ, NCNE
 
ViRGE

ViRGE

Elite Member, Moderator Emeritus
Oct 9, 1999
31,516
167
106
Because the solution for this one is easy, kill the guy's email addy. The only way they can get our's is to track him down machine-by-machine.:(
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom