Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
I hit my first 10,000 points in one Day!!
- Thread starter jethroted
- Start date
- Sort by reaction score
Cprossu said:
A few people have emailed me saying that they had it on their machine and wanted it off. Naturally I told them how to remove it, but I don't know where they are getting it from. I have it on too many machines at work to be able to keep track of what the users might be doing with it. I'll start asking around to see if anyone knows anything.
well I'm starting to formulate a theory...since no one remembers installing it
what if one of the computers you gave that file was infected with email virus which relied on a installer file named the same as yours......when this person with your email got the msi file, it happened to be named the same as the viruses own msi file, so the viruses msi got overwrit and the virus is instead spreading your folding msi and installing it instead of the viruses code....
just a thought since almost nothing else adds up
which isnt good
what if one of the computers you gave that file was infected with email virus which relied on a installer file named the same as yours......when this person with your email got the msi file, it happened to be named the same as the viruses own msi file, so the viruses msi got overwrit and the virus is instead spreading your folding msi and installing it instead of the viruses code....
just a thought since almost nothing else adds up
which isnt good
How often do government machines get sold?
Who else did you send the folding.msi installer to?
Did you put it anywhere on the internet? in other words: could someone have downloaded it and modified it? Does anyone else have the source?
Who else did you send the folding.msi installer to?
Did you put it anywhere on the internet? in other words: could someone have downloaded it and modified it? Does anyone else have the source?
cjc343 said:
All of the machines we are putting folding on are either brand new machines we are installing right now, or older ones that are being re-imaged. None of the ones that are being shipped out will get folding on them. They are gone before I get there, and the old ones go into storage for years before they are distributed out again.
There are a some other people out there who I gave it to, I should be able to trust those people though. However I am the only one with the source msi files.
cjc343 said:
This is the third this week. I didn't think much of it at first, but now I really don't like what I see. For now I am not going to be installing anymore at work until I can figure out exactly what the problem is here. That means that we will not be able to catch team mac osx, but I don't want to take any chances right now.
jethroted said:
Good call. Don't worry about the team's position - making sure your stuff is on the up-and-up takes priority.
We've got lots of time to work on passing other teams.
If anyone catches wind of anything please let me know asap. Send an email if you hear anything related to it.
Thanks.
Thanks.
well, with your help we have already lost one of the teams trailing us.... and added another on the takeover list.
Cprossu: I (and probably Jethroted too) will try to keep you all up to date on what is happening... although it feels more as though the majority of the discussion is now on your boards.
Cprossu: I (and probably Jethroted too) will try to keep you all up to date on what is happening... although it feels more as though the majority of the discussion is now on your boards.
jethroted said:
Check with the other two and ask if they have installed all of the latest security patches.... if not, that could clear things up a little in that it would tell us that a ex-vulnerability in Windows is being exploited.
cjc343 said:
Actually one guy was under the impression that he was installing a crack for some illegal software he was trying to pirate. He refused to tell me where he got it from. He wrote me and got mad at me because it wasn't the crack, and that he couldn't crack his software. I didn't know where to start with him. The other guy was cryptic and sounded crazy. I thought it was one of my friends playing tricks on me. This is the actual email:
"I neither ACQUIRED nor INSTALLED folding@home.
As best I could ascertain, the S/W was surreptitiously foisted onto my
system via "GOOGLE". This is NOT meant to imply or accuse GOOGLE of
being
naughty -
Some 'factor' has tricked GOOGLE into doing the work ... somehow.
I started combing my registry and discovered references to "FAH" and
some
of the directories / files I discovered in "C:\WIN32".
"FahCore_65.exe" was running for quite a while until I tracked it down.
Unfortunately I trashed all sorts of registry entries and 'temp' files
in
order to expunge all traces of that crap from my system - I have no
idea of
how / how long the thing was installed. I never ran a prog caleed
'folding.msi' - I would have seen it in a registry search when I looked
for
"folding", "home", "folding @ home" early in the saga.
Maybe "Al Qauida" is behind the whole affair ???
- I do live in Israel.
I might add that your using the E-name of JethroTed coupled
with
the stated 'functionality' of your master-work could cause some folks
to
surmise that thou hast a slightly criminal mind.
In any case, I hope that all the oncological surgery I've had to
perform
for the last several hours has "gotten all the malignancy". A real PITA
'twas.
Since you say YOU didn't "do it", perhaps we should contact the FBI,
Interpol, CERT, SWAT, ACLU, SPCA, et. al. ... there may be a conspiracy
in
process.
BTW, what's all that crud re: Stanford U. and protein pooh ???
Regards,
BR"
ok... so not very cooperative.... that doesn't help...
Have you tried something like "I did not make this application do this, I believe someone else has. It is critical that I know where you downloaded this so that I can stop whoever is doing this."?
I don't know whether the person would be very nice about it, but that information could REALLY help.
Have you tried something like "I did not make this application do this, I believe someone else has. It is critical that I know where you downloaded this so that I can stop whoever is doing this."?
I don't know whether the person would be very nice about it, but that information could REALLY help.
cjc343 said:
I tried to get any info I could from the guy, but I got no response at all. That is why I thought he was someone I knew just pulling my leg. Anyway, I'm headed to bed for the night. Check back with you guys in the morning.
futhermore there is evidence it is a cool edit pro 2.1 keygen....since i didnt find in either adobe (in any download i found) and the fact he mentioned that he only noticed it after the cool edit one...
jethroted- is there any chance that someone at your work is running bearshare?
jethroted- is there any chance that someone at your work is running bearshare?
You just hit your first 20,000 in one day... good job... now all we need is for this mess to be cleaned up so you can work towards 30,000