- This topic is empty.
-
AuthorPosts
-
January 4, 2006 at 11:23 pm #679861
Anonymous
InactiveGeez, what will they come up with next?
January 5, 2006 at 12:20 am #679864Anonymous
InactiveCan I know more about this, I don’t quite understand the concept. I know how to mask aff tags but the rest confuses me. greek39
January 5, 2006 at 12:33 am #679867Anonymous
InactiveI can’t seem to edit my posts. To me it looks like the fellow but a worm in the forum. The techchies at the forum should be able to figure this out. A worm plantation would give the person full reign over this forum in question if I understand the problem correctly. A worm would enable the persom to access the admin panel ect… greek39
January 5, 2006 at 12:49 am #679868Anonymous
InactiveHi Jeff,
I also got the same thing this morning.
Must be doing the rounds.
Trish
Affiliate Manager
Casino Profit Share.January 5, 2006 at 12:53 am #679869Anonymous
InactiveHey Guys
I got the same thing as well. It launches a .wmf file.. which is
Summary
PFV-Metasploit files are WMF documents containing exploit for Windows WMF SetAbortProc
flaw.
Detailed Description
PFV-Metasploit files are generated by the metasploit framework. These are highly
variable WMF documents containing exploit for Windows WMF SetAbortProc flaw. Some charasteristics of the files are:Random size, up to maximum frame size of underlying network
Random amount of random WMF records in the beginning and in the end of document
Highly polymorphic shellcode in between the random recordsThe shellcode itself is highly configurable by the metasploit framework, its functionality includes running any file on the infected machine, updloading and executing additional components and running the metasploit shell (“meterpreter”).
Cheers
RakeshJanuary 5, 2006 at 1:01 am #679870Anonymous
Inactivewhy would they such a thing
January 5, 2006 at 1:25 am #679874
vladcizsolMemberI wouldnt be surprised if it doesnt turn out to be another extortion scheme like we saw last year.
Remember when a syndicate group was threatening Mass Dos Attacks against the Sportsbooks during Super Bowl weekend?
January 5, 2006 at 1:35 am #679876Anonymous
InactiveIn simple terms a worm I would like to view the virus if anyone cares to sent me a copy. Not willing to go any futher than that. greek39
January 5, 2006 at 2:05 am #679878Anonymous
InactiveAdrichesManager wrote:Hey GuysI got the same thing as well. It launches a .wmf file.. which is
Summary
PFV-Metasploit files are WMF documents containing exploit for Windows WMF SetAbortProc
flaw.
Detailed Description
PFV-Metasploit files are generated by the metasploit framework. These are highly
variable WMF documents containing exploit for Windows WMF SetAbortProc flaw. Some charasteristics of the files are:Random size, up to maximum frame size of underlying network
Random amount of random WMF records in the beginning and in the end of document
Highly polymorphic shellcode in between the random recordsThe shellcode itself is highly configurable by the metasploit framework, its functionality includes running any file on the infected machine, updloading and executing additional components and running the metasploit shell (“meterpreter”).
Cheers
RakeshI do not know one thing your trying to say. Its a worm but the important question is what language is it in. A worm hijacks your system and some are very hard to get rid of. They can change forms directly from the person doing the deed, because there are in our system. You may delete it but it will come back, again over and over. Until you cut the source. greek39
January 5, 2006 at 2:49 am #679880Anonymous
InactiveI am sorry to be overly obsessive about this but I may have an answer. Its for sure a worm programming language is c.
What happens is you may delete by your anti virus program but the worm will metaphorlically change itself. The ext will remain the same. The malicious person comes back checks the ports sees the worm intact allowing him/her access to your system. In simple terms the forum has been hijacked.
One of several ways to get rid of this worm would be to reformat your drives. If this answer is a little sensitive please delete. Most people just chuck there computers out.greek39
January 5, 2006 at 2:59 am #679882Anonymous
GuestGreek39,
Send me an email to jeff at wager profits dot com and I’ll forward the email I got to you. Don’t click the link in the email unless you feel protected enough.January 5, 2006 at 3:27 am #679884Anonymous
InactiveI am comfortable receiving viruses of the worst nature. Once I find out who did it, I will turn it into a hand grenade and throw it back at the person who created it.
January 5, 2006 at 5:24 am #679887Anonymous
InactiveI have your answer Jeff this virus was launhced On January 4, 2005. Its a Trojan worm that exploits wmf. Its a scary one because the email will address you by Your first name.
What happened a couple of months ago Microsoft finally found a hole in their firewall, which has been there for years. I knew about this long before microsoft. Microsoft released a patch for it in December, 2004 for those people who did not updated are acceptable to theses kinds of attacks. After some malcious hackers heard the announcement from microsoft they lauched a new virus campaign. The automatic update feature for this patch does not work. You have to go right to Microsoft.
The hole allowed access to would be malcious hackers, spyware distributors to totally take over your computer.
I have the newest patch also but after running some checks it too has holes. But install the newest patch, Go back to your anti virus program find the virus it deleted. Get the path name run a search to make double sure its gone.
The program I use copied many IP’s but I will not post them here. I believe the Virus was lauched in the U.S from a School Campus. I hope this helps. greek39
January 5, 2006 at 5:25 am #679888Anonymous
Inactivedamn that sucks
January 5, 2006 at 5:39 am #679890Anonymous
InactiveChalk one up for Team Canada, and the Greek
There’s a reason Canada is the biggest country in the world, it’s full of smart guys
I’m gettin about 100 e-mails per day, most offering advice on how i can make my wang bigger, how do i get rid of these wangheads
I just ignore em and delete em right away, but i’m really starting to believe i might need a bigger wang after getting 1000+ notices
-
AuthorPosts