hsncorrosion Posted January 13, 2007 Share Posted January 13, 2007 I got a troj. from HAK5! Plz tell me that somthing else caused this, I dont think Hak5 would ever try. Someone look at the screenshot and tell me what you think. Link below for better look http://haroldsearchnetworks.co.nr/hak5forums.JPG or http://freewebtown.com/haroldsflash/hak5forums.JPG Quote Link to comment Share on other sites More sharing options...
VaKo Posted January 13, 2007 Share Posted January 13, 2007 Given the state of your hosts file, its more likely that your pc was trying to do something to the forums. Given the linux hosting, that being a windows virus, and your on windows running a cracked UT2K4 server... Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 Given the state of your hosts file, its more likely that your pc was trying to do something to the forums. Given the linux hosting, that being a windows virus, and your on windows running a cracked UT2K4 server... 1st this screenshot is from a clean system, not my server 2nd my server is not cracked 3rd heres the host file from the pc I got the screenshot. # Copyright (c) 1993-1999 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost Quote Link to comment Share on other sites More sharing options...
Sparda Posted January 13, 2007 Share Posted January 13, 2007 Most likely your 'clean system' is also hosed. Quote Link to comment Share on other sites More sharing options...
VaKo Posted January 13, 2007 Share Posted January 13, 2007 Replicate it in a clean VM, and provide us with the replication details and logs. We need versions of everything on your PC, plus the results of a full sercurity audit at your end. If we can replicate it, we can fix it. If we can't replicate it, its you. Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 Replicate it in a clean VM, and provide us with the replication details and logs. We need versions of everything on your PC, plus the results of a full sercurity audit at your end. If we can replicate it, we can fix it. If we can't replicate it, its you. What should I use to audit? Quote Link to comment Share on other sites More sharing options...
VaKo Posted January 13, 2007 Share Posted January 13, 2007 Everything. Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 Everything. k Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 srry for double post look at this http://freewebtown.com/haroldsflash/hosts.JPG Quote Link to comment Share on other sites More sharing options...
Sparda Posted January 13, 2007 Share Posted January 13, 2007 You really should reinstall every OS on every computer on your network. If one computer gets hosed the others probably are as well (depending on how there set up). Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 You really should reinstall every OS on every computer on your network. If one computer gets hosed the others probably are as well (depending on how there set up). Ok thanx, that sucks but thanx. So no why to get rid of it other wise huh? Oh well, 2 winxp install. 1 long night Quote Link to comment Share on other sites More sharing options...
Darren Kitchen Posted January 13, 2007 Share Posted January 13, 2007 Did you go and piss off EvilServer or something? Quote Link to comment Share on other sites More sharing options...
DLSS Posted January 13, 2007 Share Posted January 13, 2007 Did you go and piss off EvilServer or something? haha look like it XD on the other hand why are you useing IE ? Quote Link to comment Share on other sites More sharing options...
hsncorrosion Posted January 13, 2007 Author Share Posted January 13, 2007 I don't know what the heck. Anyway I've got both my pc and game server back online. Virus free, thank god Quote Link to comment Share on other sites More sharing options...
MRGRIM Posted January 13, 2007 Share Posted January 13, 2007 Quite supprised no one has mentioned the fact that your running Limewire... that would be the first place I would look Quote Link to comment Share on other sites More sharing options...
DLSS Posted January 13, 2007 Share Posted January 13, 2007 Quite supprised no one has mentioned the fact that your running Limewire... that would be the first place I would look damn how did i not see that icon ? lol yeah thats deffonately to blame ppl useing p2p and ie deserve to be infected .... we've told em enough that they shouldn't and that they'll get infected n stuff ..... jeesh if ure allready doing those 2 wrong wtf u doing here ? if u go clean someone's pc the first 2 things i tell em are use firefox with adblock, a good av and antyspyware prog (i install everything 4 em) and dont use peer2peer , if i come back to clean ure pc and i find that u used ie or p2p i'm not going to clean it or charge u for it ! Quote Link to comment Share on other sites More sharing options...
VaKo Posted January 13, 2007 Share Posted January 13, 2007 P2P is fine, you just have to remember not to run the misc exe files that come thing downloadables. Quote Link to comment Share on other sites More sharing options...
Sparda Posted January 13, 2007 Share Posted January 13, 2007 P2P is fine, you just have to remember not to run the misc exe files that come thing downloadables. or download Microsoft formatted files (wma, wmv etc.), they're 'standard' usually specifies that they can run code. Not that I'm advocating file sharing of course ;) Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.