Silk Road forums
Discussion => Security => Topic started by: IAmMeaty on March 19, 2013, 11:59 pm
-
I recently purchased his ATM hack with a few spare BTC, it came in three files, Two txt files (User manual for both types of atm) and a third word document that didn't seem to open at first.
When i did try to open the word file a few dialogue boxes just popped up denying me access so i chucked it onto my tab and it opened fine, i thought nothing of it other then maybe not having the wright codec or some shit.
After looking at the files on my tab i decided to delete the ATM files i downloaded onto my pc which then popped up with a dialogue saying one of the files was being used in another program and was therefore unable to delete, this instantly raised a red flag for me as txt and word documents should not be open unless..well they're open..
I went onto task manager and one process stuck out to me, it was in capitals and the name was badly concealed i cant remember what the process was called exactly (stupid of me to not take note i know) but someone had tried to blend it in with everyday processes.
I ended the process and deleted the file, but i thought id report my findings on the forums so a more tech savvy bredda could take a look at it, it might just be me but i thought i better warn as that listing is getting purchased very regularly now and im just waiting for multiple SR accounts to be reported stolen.
NO PARS INTENDED UK STEALTH, UNLESS IT IS MALWARE THEN PARS ARE INTENDED.
-
Apologies for late delay to busy in real life and usual stuff but just to quickly defend myself.
You purchased links which are TEXT based only download links which consist of 4 text document's
to cater for people on different operating systems.
Example
applemacs
linux
mobile phones
pc tablets ECT.
They are universal text only documents FOR
Microsoft word! one for Richtextformat one for Wordpad and one for Notepad.
IF your picking up malware threats from downloading a text link!.
you either are all ready infected or just ignorant about such things.
You should get a hammer smash ur hard drive and go buy a new one..
or Get your facts right or just unplug it from electricity. customer or not get it right.
you will be safer right?. providing you know how or what protection applications do on personal machines.
Which is obviously the point is that you dont as your moaning about a pc(maybe yours after a hard nights pornfilm)
saying u have an infected text note?.
Why not contact vendor/me and ask? why u might be getting a warning?..?..?
Quote
I recently purchased his ATM hack with a few spare BTC, it came in three files, Two txt files (User manual for both types of atm) and a third word document that didn't seem to open at first.
When i did try to open the word file a few dialogue boxes just popped up denying me access so i chucked it onto my tab and it opened fine, i thought nothing of it other then maybe not having the wright codec or some shit.
After looking at the files on my tab i decided to delete the ATM files i downloaded onto my pc which then popped up with a dialogue saying one of the files was being used in another program and was therefore unable to delete, this instantly raised a red flag for me as txt and word documents should not be open unless..well they're open..
I went onto task manager and one process stuck out to me, it was in capitals and the name was badly concealed i cant remember what the process was called exactly (stupid of me to not take note i know) but someone had tried to blend it in with everyday processes.
I ended the process and deleted the file, but i thought id report my findings on the forums so a more tech savvy bredda could take a look at it, it might just be me but i thought i better warn as that listing is getting purchased very regularly now and im just waiting for multiple SR accounts to be reported stolen.
NO PARS INTENDED UK STEALTH, UNLESS IT IS MALWARE THEN PARS ARE INTENDED.End Quote.
your fucking nuts . you said, After looking at the files on my tab i decided to delete the ATM files i downloaded onto my pc which then popped up with a dialogue saying one of the files was being used in another program and was therefore unable to delete. wow if i open a text note in word pad make changed while its still running in say notepad or microsoftword wtf do you think your pc is gonna say? its all ok i did it all for you just go back to bed?. you did not sleep long ?>I went onto task manager and one process stuck out to me, it was in capitals and the name was badly concealed i cant remember what the process was called exactly (stupid of me to not take note i know) but someone had tried to blend it in with everyday processes.
I ended the process and deleted the file, but i thought id report my findings.
WOW Professor and ur finding was ?.
??? could not repeat it i guess... iv
too much wacky backy or just another dumb * i get to deal with every day.
Or you got any idea why i still sell same stuff everyday and well out of 100s of
sales with this your defo the first one got me laughing my guts out.
NO PARS INTENDED MEATHEAD, UNLESS IT IS MALWARE THEN PARS ARE INTENDED.
-
Did i really offend you that much?
I tried deleting the word file which wouldnt open on my pc.. there were no word processes open so i had to search through processes that had no relevance to the file. I then ended a process that stuck out to me as being abnormal as it was named BOOTER.exe or something, the only process in capitals and was given a name to blend in.
After ending 2 processes prior that i thought may have been related to the word document i ended "BOOTER.exe" and i could then delete the word document. So my automatic assumption is that the word document had a file within it that was running malware or some sort of process that i had to find and stop manually before it could be deleted. I know you can hide files in JPEGs so why not word docs?
And yes i thought id post it on the forums and let it be a drifting bit of info for people rather then ask you the person i purchased it from if it had hidden malware. I posted this so people can have a look over it themselves im not claiming to have a degree in computer science... also your wright about the waccy baccy im usually high before 1am at night :)
Just to confirm my AV didnt pickup anything it was just me trying to delete your out of date "ATM Hack".
Only a guilty man would get that angry ;)
-
Rule number 1 - do not throw a vendor under the buss until he has spoken with you or you have decided that he has been ignoring you. He/vendor is most definately not over reacting by what he has posted, you stepped on his toes and he got pissed.
-
I have no clue who these people are, but for the record, a Microsoft Word document can easily contain malware. It's bullshit to say otherwise.
-
He didn't use a simple 3 ring rootkit to hide the process? Sheesh
-
Maybe i should of spoke to him first... this was more of an attempt to get someone to look the files over than it was to slander him.
-
Rule number 1 - do not throw a vendor under the buss until he has spoken with you or you have decided that he has been ignoring you. He/vendor is most definately not over reacting by what he has posted, you stepped on his toes and he got pissed.
This isn't fight club there is no rule #1 and if there were it would most likely be don't FE.
-
They are universal>>>>>> text only <<<<<<documents FOR
Microsoft word! one for Richtextformat one for Wordpad and one for Notepad.
GET IT text only!. maybe i did over react i personally don't think so.
I'm not here to infect people with anything!.
Otherwise my business would of died along time ago, as do sell alot of text based products.
Apologies if i offended anyone.
I am Meaty :) get ur machine checked cause your infected with something if your getting warnings, and as your on this side of the web your should BE protected cause you don't know what you could have inadvertently picked up.
I have seen this happen before! Only just recently a few poor bastards bought files from someone over at BMR and lost all there BTC.!
So listen up everyone! protect your self's on this side of the Dark Web!.