06-28-2007, 12:02 AM | #1 |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
WARNING: to BT users..
.. and to anyone else for that.
if you see dns.sysip.net in your status bar, be very afraid. http://www.techimo.com/forum/showthread.php?t=188184 |
|
06-28-2007, 12:21 AM | #2 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
So, if it doesn't say "Done" at the bottom, you have it? I have no idea what they are talking about, unless there is a pic somewhere or something.
|
|
06-28-2007, 12:24 AM | #3 |
Join Date: Mar 2007
Posts Rated Helpful 1 Times
|
Is this in Brazil already?
Seems to affect only American ISP's @edit: I read in that thread that a guy has been getting constant disconnects by this.. Now this is happening to me, any chance to be this? |
|
06-28-2007, 12:49 AM | #4 |
Rifle
|
[Edited]
Last edited by A drunken retard; 06-28-2007 at 01:41 AM. |
|
06-28-2007, 01:12 AM | #5 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
BT is British Telecommunications, right?
If so, I don't have to worry about it since I'm in the US, right? |
|
06-28-2007, 01:12 AM | #6 |
The 1337est
D&A Member
Join Date: Mar 2007
Location: Omagosh Canada.
Posts Rated Helpful 9 Times
|
I was going for bit torrent.
__________________
James, while John had had 'had', had had 'had had' ; 'had had' had had a better effect on the teacher. |
|
06-28-2007, 01:14 AM | #7 | |
Join Date: Mar 2007
Posts Rated Helpful 1 Times
|
Quote:
Oh fuck... |
|
|
06-28-2007, 01:17 AM | #8 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
Aight, I don't ever use bit torrent so I wouldn't know.
|
|
06-28-2007, 01:37 AM | #9 | |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
Quote:
|
|
|
06-28-2007, 02:08 AM | #10 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
So I was right. I'll watch out for it.
|
|
06-28-2007, 02:12 AM | #11 |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
i think this code comes into play:
Code:
<html> <head> <noscript><meta http-equiv="Refresh" content="0; URL=http://dns.sysip.net/services/nojscript?orig=http%3A%2F%2Fwww.youtube.com%2Fbrowse%3Fs%3Dmp&request-id=1182995443_981191"/></noscript> <script type="text/javascript" src="http://dns.sysip.net/services/bind?request-id=1182995443_981191"></script> <script type="text/javascript"> try { var domain = location.hostname, cookie_str = "ps-uid=" + UID; if (!domain.match(/^(\d{1,3}\.){3}(\d{1,3})$/)) { var h = domain.split("."), l = h.length; if (l >= 2) { domain = "." + h[l - 2] + "." + h[l - 1]; if (l >= 3 && (h[l - 2] == "com" || h[l - 2].length < 3)) domain = "." + h[l - 3] + domain; } cookie_str += "; domain=" + domain; } var d = new Date(); if (UID != "OPTED_OUT") { d.setTime(d.getTime() + 1000 * 60 * 60 * 24 * 3); } else { // set to 4 hours d.setTime(d.getTime() + 1000 * 60 * 60 * 4); } cookie_str += "; path=/; expires=" + d.toGMTString(); document.cookie = cookie_str; } catch(e) { } window.location = "http://www.youtube.com/browse?s=mp"; </script> </head> <noscript><iframe src="http://dns.sysip.net/services/frame?orig=http%3A%2F%2Fwww.youtube.com%2Fbrowse%3Fs%3Dmp&request-id=1182995443_981191" width="1px" height="1px" style="visibility:hidden;"></iframe></noscript> </html> |
|
06-28-2007, 03:14 AM | #12 |
Join Date: Mar 2007
Posts Rated Helpful 0 Times
|
I don't get it. It's a computer virus that is activated by javascript?
|
|
06-28-2007, 03:22 AM | #13 |
Cool Cat
Join Date: Mar 2007
Location: Dutchelandae
Posts Rated Helpful 0 Times
|
Common Sense Antivirus 2007 has not failed me yet 8D
|
|
06-28-2007, 02:37 PM | #14 | |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
Quote:
|
|
|
06-28-2007, 05:54 PM | #15 |
Fear teh crowbar.
Retired FF Staff
|
Man, thats some sophisticated shit, only a few of the people attacked would have any idea of what to look for, much less where to look. I don't think I'll be using Trendmicro any more.
|
|
06-28-2007, 09:11 PM | #16 |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
okay, so i put my old router back in, and told it to block and log anything outgoing to sysip.net.... the results were interesting, and mostly looked like this:
Sun, 2002-09-08 15:47:11 - TCP Packet - Source:192.168.0.3,38851 Destination:64.127.103.40,80 - [BLOCK] that IP is aparently based in Kirkland, WA |
|
06-28-2007, 11:53 PM | #17 |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
okay so i think i've extinguised this whole thing..
i had to disconnect any windows based machines from the network, flush the router's dns cache, flush the windows machines' caches, clear all the information held in any installation of firefox or IE on all the machines, then start everything back up using a different dns server. so far so good... |
|
06-29-2007, 12:14 AM | #18 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
Thats good Mervaka. Keep us posted.
|
|
06-29-2007, 01:31 AM | #19 | |
A Very Sound Guy!
Fortress Forever Staff
Join Date: May 2005
Location: UK
Posts Rated Helpful 15 Times
|
Quote:
EDIT: nevermind, i just whoised it, and msplinks.com is owned by myspace... DUH |
|
|
06-29-2007, 01:42 AM | #20 |
Custom User Title
D&A Member
Join Date: Mar 2007
Location: New Jersey
Class/Position: Scout Offence Gametype: Capture The Flag Affiliations: None Posts Rated Helpful 0 Times
|
You have windows? Try a System Restore and maybe it might fix it, unless you've already done that or someone else said it won't work.
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
|
|