Results 1 to 4 of 4

Thread: Yet Another P2p Worm

  1. #1
    Poster
    Join Date
    Jan 2003
    Location
    TN
    Posts
    127
    http://www.theregister.co.uk/content/56/29323.html
    be advised guys
    This detection is for a remote access trojan whose server component is a worm, intended to propagate via two channels:

    KaZaa P2P file-sharing networks (under various enticing filenames)
    mIRC channels (as RealWayToHack.exe)
    The worm terminates processes relating to a significant number of anti-virus and security products if they are running.

    Once running on the victim machine, the worm opens a port (default = 31337, but this is configurable) which enables the hacker to connect (using the client component, described below). A public script library is used in order to send a notification to the hacker via HTTP. The noification contains the following information (obviously IP address and port number will vary):

    from=iGLOO
    [email protected]
    subject=iGLOO
    body=iGLOO
    Remote IP : A.B.C.D
    Remote Port : 31337

  2. Lounge   -   #2
    aite thankz for the tipz / info...

  3. Lounge   -   #3
    smellycat's Avatar Egalitarian BT Rep: +3
    Join Date
    Aug 2002
    Location
    Wales
    Age
    56
    Posts
    233
    Just to clarify the issue.

    They aren't pics but executables.

    eg.

    sarah_michelle_gellar_nude.jpg.exe
    sarah_michelle_gellar_naked.jpg.exe
    sandra_bullock_nude.jpg.exe
    sandra_bullock_naked.jpg.exe
    anastasia_anal.jpg.exe
    anastasia_naked.jpg.exe

    If the filename has the extension .jpg you are okay.
    If the filename has the extension .jpg.exe it's probably a virus.

    What you could do is go to
    Options, Kazaa Lite Options, Filter, and
    add .jpg.exe to the Blocklist
    All my invites I give freely.

    File sharing and invite sharing
    File trading and invite trading

  4. Lounge   -   #4
    Poster
    Join Date
    Feb 2003
    Location
    Your Moms House,Texas
    Posts
    200
    LOL

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •