|
Printer-friendly format Email this thread to a friend Bookmark this thread |
This topic is archived. |
Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 01:49 PM Original message |
Caught my computer cheating on me this morning. |
Printer Friendly | Permalink | | Top |
Mutineer (659 posts) Send PM | Profile | Ignore | Tue Oct-09-07 01:55 PM Response to Original message |
1. I'm going to say this very respectively. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:01 PM Response to Reply #1 |
2. Someone put a root kit on my system. |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:06 PM Response to Reply #2 |
3. "logs into" or "my web browser goes to the website of"? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:11 PM Response to Reply #3 |
4. It's very discreet. |
Printer Friendly | Permalink | | Top |
againes654 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:17 PM Response to Reply #4 |
5. Sounds fishy |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:19 PM Response to Reply #5 |
6. What do you mean, "sounds fishy"? |
Printer Friendly | Permalink | | Top |
againes654 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:22 PM Response to Reply #6 |
7. Actually I do believe you |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:50 PM Response to Reply #7 |
48. I'm chillin' |
Printer Friendly | Permalink | | Top |
againes654 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 07:59 PM Response to Reply #48 |
64. "Cool" |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 07:04 AM Response to Reply #64 |
74. Is that "cool", like in "cool your jets?" |
Printer Friendly | Permalink | | Top |
donsu (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 11:25 AM Response to Reply #6 |
83. yes, I know |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:22 PM Response to Reply #4 |
8. How are you logging onto DU before xwindows comes up? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:36 PM Response to Reply #8 |
12. They are connected long before the browser comes up. |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:39 PM Response to Reply #12 |
15. How did you become aware of the problem? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:48 PM Response to Reply #15 |
21. usually soon after posting something inflammatory or controversial |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:49 PM Response to Reply #21 |
24. "spike" your connection? after posting but before xwindows comes up? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:54 PM Response to Reply #24 |
27. After I log onto DU. |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:56 PM Response to Reply #27 |
29. but before you were saying it started befre xwindows started. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:04 PM Response to Reply #29 |
34. The connection is made before Xwindows finishes coming up |
Printer Friendly | Permalink | | Top |
sicksicksick_N_tired (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:12 PM Response to Reply #21 |
41. Okay. Yes,...I had the same experience before my 'puter crashed. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:35 PM Response to Reply #41 |
45. I would guess that al lot of Du'ers have gone away out of frustration. |
Printer Friendly | Permalink | | Top |
wildbilln864 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:22 PM Response to Reply #41 |
54. I've had similar problems. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 06:16 AM Response to Reply #54 |
72. It sounds like someone is screwing with you. |
Printer Friendly | Permalink | | Top |
wildbilln864 (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 12:11 PM Response to Reply #72 |
86. Yes they frequently mess with me.... |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 12:24 PM Response to Reply #86 |
87. Ya never know |
Printer Friendly | Permalink | | Top |
Occulus (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:05 PM Response to Reply #12 |
37. Does this occur when using a text browser like lynx, |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:33 PM Response to Reply #37 |
44. Haven't tried it. |
Printer Friendly | Permalink | | Top |
skids (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 05:55 PM Response to Reply #44 |
56. Can you collect a pcap? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 06:20 PM Response to Reply #56 |
59. I'm sure they're working on it right now |
Printer Friendly | Permalink | | Top |
lapfog_1 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:37 PM Response to Reply #4 |
14. So let me see if I can recap |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:45 PM Response to Reply #14 |
18. I jjust happened to catch the tail end of the logging sequence |
Printer Friendly | Permalink | | Top |
lapfog_1 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:08 PM Response to Reply #18 |
50. Sorry, had to take a lunch break and do "real work" |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 06:35 PM Response to Reply #50 |
60. It didn't take them long to catch up |
Printer Friendly | Permalink | | Top |
vogonity (283 posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:54 PM Response to Reply #4 |
26. Curious how you found it... |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:56 PM Response to Reply #26 |
30. FreeBSD 6.2 n/t |
Printer Friendly | Permalink | | Top |
The Doctor. (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:40 PM Response to Reply #4 |
47. It's simple... |
Printer Friendly | Permalink | | Top |
Mutineer (659 posts) Send PM | Profile | Ignore | Wed Oct-10-07 10:57 AM Response to Reply #4 |
82. Oh, okay. Now I understand. |
Printer Friendly | Permalink | | Top |
Blue-Jay (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:23 PM Response to Reply #2 |
9. Is this your home computer? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:33 PM Response to Reply #9 |
11. A little of both. |
Printer Friendly | Permalink | | Top |
MyNameGoesHere (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:43 PM Response to Reply #11 |
17. Kind of weird to boast about a much more secure system when it's been hacked. n/t |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:05 PM Response to Reply #17 |
36. FreeBSD is known to be secure. |
Printer Friendly | Permalink | | Top |
MyNameGoesHere (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 10:43 AM Response to Reply #36 |
81. Still someone hacked you on your "most secure freeBSD" |
Printer Friendly | Permalink | | Top |
Blue-Jay (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:49 PM Response to Reply #11 |
23. Soooo... Someone broke into your house, installed spyware, |
Printer Friendly | Permalink | | Top |
Zywiec (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 06:34 AM Response to Reply #23 |
73. Agreed. Most likely a script kiddie from a bad link |
Printer Friendly | Permalink | | Top |
Bum Whisperer (97 posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:26 PM Response to Original message |
10. Privacy is an antiquated concept |
Printer Friendly | Permalink | | Top |
catmandu57 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:36 PM Response to Original message |
13. So is there a way for a simpleton |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:40 PM Response to Reply #13 |
16. A slight increase in CPU overhead |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:46 PM Response to Reply #16 |
19. Explain what you mean by "the stub of a file in /var/log" |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:55 PM Response to Reply #19 |
28. A file with a name and time stamp but 0 bytes. n/t |
Printer Friendly | Permalink | | Top |
lapfog_1 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:12 PM Response to Reply #19 |
51. The malware opened the file with O_TRUNC set. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 05:54 AM Response to Reply #51 |
69. Another stupid mistake |
Printer Friendly | Permalink | | Top |
kestrel91316 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:04 PM Response to Reply #16 |
33. There are times when my CPU sounds very "busy" making its |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:07 PM Response to Reply #33 |
38. Same here. |
Printer Friendly | Permalink | | Top |
alfredo (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:47 PM Response to Original message |
20. google csis rootkit |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:58 PM Response to Reply #20 |
31. The wolf guarding the sheep. |
Printer Friendly | Permalink | | Top |
alfredo (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:40 PM Response to Reply #31 |
46. What did they say about the rootkit? |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:54 PM Response to Reply #46 |
49. I change my passwords on a regular basis. |
Printer Friendly | Permalink | | Top |
lapfog_1 (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:17 PM Response to Reply #49 |
53. No, highly unlikely they have your root password. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 06:18 PM Response to Reply #53 |
58. It's a script |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 10:00 PM Response to Reply #58 |
66. You've spewed more gibberish in this thread than i've seen in a long time. |
Printer Friendly | Permalink | | Top |
skids (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 05:28 AM Response to Reply #66 |
67. Sceptical too... |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 06:13 AM Response to Reply #67 |
71. I'm no UNIX expert, just a user for about 10 years |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 07:27 AM Response to Reply #71 |
76. Well, I'm not ignorant... |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 08:02 AM Response to Reply #76 |
77. Funny boy. |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 07:01 PM Response to Reply #77 |
88. So are you. |
Printer Friendly | Permalink | | Top |
alfredo (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 09:01 PM Response to Reply #49 |
65. A clean install I guess is the only sure way to clean it out. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 05:57 AM Response to Reply #65 |
70. That's the nice thing about FreeBSD |
Printer Friendly | Permalink | | Top |
alfredo (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 08:47 AM Response to Reply #70 |
80. That's what I like about Linux. This machine will be my Linux |
Printer Friendly | Permalink | | Top |
sicksicksick_N_tired (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:49 PM Response to Original message |
22. I am a novice at that security stuff but got a new firewall,... |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:10 PM Response to Reply #22 |
40. Take Big Brother on a ride. |
Printer Friendly | Permalink | | Top |
Megahurtz (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 07:31 PM Response to Reply #40 |
63. Rofl! n/t |
Printer Friendly | Permalink | | Top |
nadinbrzezinski (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 02:53 PM Response to Original message |
25. Free clue here, since 2002, if not earlier |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:00 PM Response to Reply #25 |
32. They're not intimidating me |
Printer Friendly | Permalink | | Top |
nadinbrzezinski (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:05 PM Response to Reply #32 |
35. That's the attitude |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:08 PM Response to Reply #35 |
39. If it's Windows. |
Printer Friendly | Permalink | | Top |
sicksicksick_N_tired (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:16 PM Response to Reply #39 |
42. That's what I've been told. |
Printer Friendly | Permalink | | Top |
nadinbrzezinski (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 05:56 PM Response to Reply #39 |
57. Nah it's mac, got tired of fighting windows |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 06:46 PM Response to Reply #57 |
61. Read #60. n/t |
Printer Friendly | Permalink | | Top |
hunter (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 11:36 AM Response to Reply #39 |
84. There are back doors built right into the hardware. |
Printer Friendly | Permalink | | Top |
absyntheminded (110 posts) Send PM | Profile | Ignore | Tue Oct-09-07 03:24 PM Response to Original message |
43. Scrub your box/GUID |
Printer Friendly | Permalink | | Top |
high density (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:14 PM Response to Original message |
52. This thread reminds me of "Jurassic Park" |
Printer Friendly | Permalink | | Top |
ret5hd (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 04:24 PM Response to Reply #52 |
55. My thoughts EXACTLY! |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Tue Oct-09-07 06:50 PM Response to Reply #55 |
62. It probably is some pimply-faced geek |
Printer Friendly | Permalink | | Top |
Cessna Invesco Palin (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 05:43 AM Response to Original message |
68. Got the hell beat out of me doing community service. |
Printer Friendly | Permalink | | Top |
formercia (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 07:20 AM Response to Reply #68 |
75. Thanks for the kick. |
Printer Friendly | Permalink | | Top |
lonestarnot (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 08:09 AM Response to Reply #68 |
78. Heh. |
Printer Friendly | Permalink | | Top |
Zywiec (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 08:16 AM Response to Original message |
79. Maybe this will help you block them out |
Printer Friendly | Permalink | | Top |
ecstatic (1000+ posts) Send PM | Profile | Ignore | Wed Oct-10-07 11:42 AM Response to Original message |
85. How might I found out if my computer is cheating on me? nt |
Printer Friendly | Permalink | | Top |
DU AdBot (1000+ posts) | Wed May 15th 2024, 02:54 AM Response to Original message |
Advertisements [?] |
Top |
Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) |
Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators
Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.
Home | Discussion Forums | Journals | Store | Donate
About DU | Contact Us | Privacy Policy
Got a message for Democratic Underground? Click here to send us a message.
© 2001 - 2011 Democratic Underground, LLC