I think racefreak tried to put a link to a virus....interesting.

Mods, if he did, post his ip.

I already deleted the post and am trying to find out what the file is.

His account has been deleted and the post removed.

We won't post his IP (he's behind a proxy in a US school actually...)


What I want to know is why we're getting crap like this so early in the game.

what was the file name bol?

Originally posted by redline
what was the file name bol?

thetoolv3.exe

if it has a virus it's not in any definition that exists
thinking it might be a dialer or something

I think that is a backdoor hacking tool. I will check on that.

Originally posted by redline
I think that is a backdoor hacking tool. I will check on that.


heh good thing the box i tested it on is behind a firewall/nat :thumbsup:

gives a message saying it couldn't be executed (but not in proper win2k format for a message like that) so that could be what it is

I could not find anything on that name but it is easy enough to rename one or recompile another one. But put Zone alarm on and see if something on the machine is trying to go to the net all by itself.

then rebuild to be safe.


and if you want to, you can send it to a few differnet places to have it ripped apart to see what it does / tries to do.

i don't even understand why people do these kinds of things... i mean why be a dink?!

Originally posted by bol
We won't post his IP (he's behind a proxy in a US school

Definatly a fucker, school proxys are classic to use when doing less than honerable things, that sounds like a trojan for sure.....most schools do not offer *anonymous* proxys so his true ip should still be in the http header somewhere, unless he's chained a bunch.

I'd lay odds its a zombie script of some kind.