What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » Skype & Technology » Tech Talk » Block-Checker

Block-Checker
Author: Message:
segosa
Community's Choice
*****


Posts: 1407
Reputation: 92
Joined: Feb 2003
RE: RE: Block-Checker
quote:
Originally posted by saralk
Is this a virus that connects to a botnet?

If it is, then can't someone find out what channel all these viruses are connecting to, find out the password of the virus, and then tell all the bots to download a tool that will uninstall the virus.


No, and no.

Botnets have far better protection from outsiders than that.

First the channel is set +u (if the IRCd is UnrealIRCd) so that anyone who isn't an op (all the bots, and you if you joined the channel) can only see ops in the channel. If you joined the botnet channel you'd only see people who were op, and that'd be only a couple of people.

Then there's a password to login to the bots, that is easily found if you have the trojan's exe, but it is almost useless in a case like this because the bots will only allow people with a certain hostmask to login.

A hostmask is something like this:

myles@dsl181-113-076.dfw1.dsl.speakeasy.net

That's ident@hostname and hostname is something your ISP will give you. The problem is, since the bot owners own the server and are administrators of the IRC server, they can set their hostname to be anything they want. Usually it's something stupid like fbi.gov, something no one could get.

So no, it's not that easy...

ShawnZ: Windows' task manager won't give you any clue which csrss.exe is the trojan one.

This post was edited on 08-24-2005 at 02:51 PM by segosa.
The previous sentence is false. The following sentence is true.
08-24-2005 02:50 PM
Profile PM Find Quote Report
« Next Oldest Return to Top Next Newest »

Messages In This Thread
Block-Checker - by mwe99 on 08-17-2005 at 03:29 PM
RE: Block-Checker - by absorbation on 08-17-2005 at 03:31 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 03:32 PM
RE: Block-Checker - by ~INVASION~ on 08-17-2005 at 03:34 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 03:36 PM
RE: Block-Checker - by Millenium_edition on 08-17-2005 at 03:41 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 04:04 PM
RE: Block-Checker - by toddy on 08-17-2005 at 04:05 PM
RE: Block-Checker - by segosa on 08-17-2005 at 04:17 PM
RE: Block-Checker - by Concord Dawn on 08-17-2005 at 04:33 PM
RE: Block-Checker - by zaher1988 on 08-17-2005 at 04:36 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 04:41 PM
RE: Block-Checker - by segosa on 08-17-2005 at 04:45 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 04:47 PM
RE: Block-Checker - by zaher1988 on 08-17-2005 at 04:48 PM
RE: Block-Checker - by guanako on 08-17-2005 at 05:14 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 05:16 PM
RE: Block-Checker - by Millenium_edition on 08-17-2005 at 05:29 PM
RE: Block-Checker - by mwe99 on 08-17-2005 at 06:06 PM
RE: Block-Checker - by CookieRevised on 08-17-2005 at 06:07 PM
RE: RE: Block-Checker - by kipper2258 on 08-20-2005 at 03:31 PM
RE: Block-Checker - by Joa on 08-17-2005 at 06:51 PM
RE: Block-Checker - by Fergy on 08-19-2005 at 05:50 AM
RE: Block-Checker - by segosa on 08-19-2005 at 09:40 AM
RE: RE: Block-Checker - by CookieRevised on 08-19-2005 at 12:06 PM
RE: Block-Checker - by Fergy on 08-19-2005 at 02:44 PM
RE: Block-Checker - by Val on 08-21-2005 at 04:11 AM
RE: Block-Checker - by Fergy on 08-21-2005 at 04:06 PM
RE: Block-Checker - by CookieRevised on 08-21-2005 at 04:41 PM
RE: Block-Checker - by Fergy on 08-21-2005 at 04:54 PM
RE: Block-Checker - by CookieRevised on 08-21-2005 at 05:19 PM
RE: RE: Block-Checker - by selene on 08-26-2005 at 02:56 PM
RE: Block-Checker - by Fergy on 08-21-2005 at 05:29 PM
RE: Block-Checker - by qgroessl on 08-22-2005 at 01:46 AM
RE: Block-Checker - by mwe99 on 08-22-2005 at 02:10 AM
RE: Block-Checker - by qgroessl on 08-22-2005 at 03:23 AM
RE: Block-Checker - by Lou on 08-22-2005 at 03:35 AM
RE: Block-Checker - by ~INVASION~ on 08-22-2005 at 03:56 AM
RE: Block-Checker - by qgroessl on 08-22-2005 at 04:07 AM
RE: Block-Checker - by Fergy on 08-22-2005 at 04:19 AM
RE: Block-Checker - by CookieRevised on 08-22-2005 at 09:35 AM
RE: Block-Checker - by Sunshine on 08-24-2005 at 10:12 AM
RE: Block-Checker - by Idium on 08-24-2005 at 10:34 AM
RE: Block-Checker - by saralk on 08-24-2005 at 10:47 AM
RE: RE: Block-Checker - by segosa on 08-24-2005 at 02:50 PM
RE: Block-Checker - by Idium on 08-24-2005 at 02:15 PM
RE: Block-Checker - by ShawnZ on 08-24-2005 at 02:29 PM
RE: Block-Checker - by CookieRevised on 08-24-2005 at 03:34 PM
RE: Block-Checker - by Fergy on 08-24-2005 at 04:34 PM
RE: Block-Checker - by Idium on 08-24-2005 at 05:50 PM
RE: Block-Checker - by kipper2258 on 08-24-2005 at 09:35 PM
RE: Block-Checker - by lui2603 on 08-24-2005 at 11:51 PM
RE: Block-Checker - by Fergy on 08-25-2005 at 04:34 AM
RE: RE: Block-Checker - by CookieRevised on 08-25-2005 at 04:48 AM
RE: Block-Checker - by kipper2258 on 08-25-2005 at 03:49 PM
RE: Block-Checker - by Fergy on 08-26-2005 at 03:55 PM
RE: Block-Checker - by selene on 08-26-2005 at 04:05 PM
RE: Block-Checker - by segosa on 08-26-2005 at 04:37 PM
RE: RE: Block-Checker - by selene on 08-31-2005 at 01:31 AM
RE: Block-Checker - by benjyrama on 08-27-2005 at 11:53 AM
RE: Block-Checker - by CookieRevised on 08-27-2005 at 04:06 PM
RE: Block-Checker - by underacloud11 on 09-04-2005 at 10:01 PM
RE: RE: Block-Checker - by CookieRevised on 09-05-2005 at 04:46 AM
RE: Block-Checker - by daveok on 09-19-2005 at 06:06 AM
RE: Block-Checker - by jiz on 03-07-2006 at 01:04 AM
RE: Block-Checker - by Ladylibra_10 on 04-12-2006 at 05:30 AM
RE: Block-Checker - by NiteMare on 04-12-2006 at 06:16 AM
RE: Block-Checker - by adam9106 on 05-21-2006 at 07:15 PM
RE: Block-Checker - by Beabees on 08-03-2006 at 06:57 PM
RE: Block-Checker - by ryxdp on 08-09-2006 at 06:32 AM


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts
HTML is Off
myCode is On
Smilies are On
[img] Code is On