Program that hides apps and files

Seems there is a program available from the hacker sites
that can hide games, p2p apps, mp3s, etc in the system
directory in folders that are not normally available to
the user .. even the admin. The program itself can reside
"off the computer" on a zip disk, and when run on the
system .. even as a low level user .. gives that person
access to these hidden resources. Does anybody have
any idea what program this is? If I can get the name of
the .exe, I can block it, but right now, it is sacking my
labs, and servers. IT Security can see the illicit traffic,
but then it is too late. I need to know what app this is.

thanks
johns

johns

In article <bsvahn$2ikq$>, x says...
> Seems there is a program available from the hacker sites
> that can hide games, p2p apps, mp3s, etc in the system
> directory in folders that are not normally available to
> the user .. even the admin. The program itself can reside
> "off the computer" on a zip disk, and when run on the
> system .. even as a low level user .. gives that person
> access to these hidden resources. Does anybody have
> any idea what program this is? If I can get the name of
> the .exe, I can block it, but right now, it is sacking my
> labs, and servers. IT Security can see the illicit traffic,
> but then it is too late. I need to know what app this is.
>
> thanks
> johns
>
>
>


pick your poison:

http://www.google.com/search?sourcei...UTF-8&oe=UTF-8
&q=hide+file+share+folder+files



--
Colonel Flagg
http://www.internetwarzone.org/

Privacy at a click:
http://www.cotse.net

Q: How many Bill Gates does it take to change a lightbulb?
A: None, he just defines Darkness? as the new industry standard..."

"...I see stupid people."

Colonel Flagg

> pick your poison:

http://www.sharing-file.com

Not funny is it. I wonder just how far this little stinker
can go to compromising system security. This little
rat is a p2p WEB BROWSER ?? Is that right?

johns

johns

In article <bt0886$4t5$>, x says...
>
> > pick your poison:
>
> http://www.sharing-file.com
>
> Not funny is it. I wonder just how far this little stinker
> can go to compromising system security. This little
> rat is a p2p WEB BROWSER ?? Is that right?
>
> johns
>
>
>


beats me. don't care. I don't allow my users to install anything, let
alone something like this.

actually, "allow" is harsh. Some clients are completely locked down due
to high turn-overs in employees, other clients, I advise not to, and
because they trust me explicitly, they won't and don't.



--
Colonel Flagg
http://www.internetwarzone.org/

Privacy at a click:
http://www.cotse.net

Q: How many Bill Gates does it take to change a lightbulb?
A: None, he just defines Darkness? as the new industry standard..."

"...I see stupid people."

Colonel Flagg

> beats me. don't care. I don't allow my users to install anything, let
> alone something like this.

You have more authority than I on my lan. I'm running all these
CAD programs, and the users have to be Power users with
admin rights to specific directories. On top of that, they are
assigned research projects that require access to Web resources
that can push this kind of junk. Really frustrated with this
garbage. Boneheads are hiding mp3 sharing under this sort
of thing, and the lawsuits are flying all over. And I can't even
see it happening until the lawyers are knocking on my office
door.

johns

johns

In article <bt2ial$22kr$>, x says...
>
> > beats me. don't care. I don't allow my users to install anything, let
> > alone something like this.
>
> You have more authority than I on my lan. I'm running all these
> CAD programs, and the users have to be Power users with
> admin rights to specific directories. On top of that, they are
> assigned research projects that require access to Web resources
> that can push this kind of junk. Really frustrated with this
> garbage. Boneheads are hiding mp3 sharing under this sort
> of thing, and the lawsuits are flying all over. And I can't even
> see it happening until the lawyers are knocking on my office
> door.
>
> johns
>
>
>


if you make an effort to stop it, chances are, the fault will fall
solely on the users. if you don't make an effort, then i'd say you'd be
more liable.....





--
Colonel Flagg
http://www.internetwarzone.org/

Privacy at a click:
http://www.cotse.net

Q: How many Bill Gates does it take to change a lightbulb?
A: None, he just defines Darkness? as the new industry standard..."

"...I see stupid people."

Colonel Flagg

> if you make an effort to stop it, chances are, the fault will fall
> solely on the users. if you don't make an effort, then i'd say you'd be
> more liable.....

I agree with that. I need some way to be able to see
this sort of thing right away. I can firewall against it
on my workstations ( WinXP ), and that has been
my focus because it was the main source of the problem
for years. Now, these programs seem to be able to
break through server security easily ( Win2000 Server ),
and even disable something like F-secure, as well as
delete all evidence of its activity. The guys writing this
stuff know much more than I do, and seem to be able
to get around my meager efforts while remaining totally
invisible. I'm not even sure it was students this time.
Usually their efforts are much more visible, and a simple
reimage fixes the mess. This one ate my server, and I
am not even sure ITS spotted it until the media snoopers
complained. I have got a real big problem here, and I
don't want to get involved in a lawsuit over it.

johns

johns

Would you then be looking for software that could enforce a rule such as
mp3's cannot be writen to disk and if already there cannot be opened for
reading?

Robert

"johns" <> wrote in message
news:bt2t6d$29f2$...
>
> > if you make an effort to stop it, chances are, the fault will fall
> > solely on the users. if you don't make an effort, then i'd say you'd be
> > more liable.....
>
> I agree with that. I need some way to be able to see
> this sort of thing right away. I can firewall against it
> on my workstations ( WinXP ), and that has been
> my focus because it was the main source of the problem
> for years. Now, these programs seem to be able to
> break through server security easily ( Win2000 Server ),
> and even disable something like F-secure, as well as
> delete all evidence of its activity. The guys writing this
> stuff know much more than I do, and seem to be able
> to get around my meager efforts while remaining totally
> invisible. I'm not even sure it was students this time.
> Usually their efforts are much more visible, and a simple
> reimage fixes the mess. This one ate my server, and I
> am not even sure ITS spotted it until the media snoopers
> complained. I have got a real big problem here, and I
> don't want to get involved in a lawsuit over it.
>
> johns
>
>

elsid

> Would you then be looking for software that could enforce a rule such as
> mp3's cannot be writen to disk and if already there cannot be opened for
> reading?

It would sure be worth testing. Add spraying yellow paint
all over the user, and I would pay bigtime Would gpedit.msc
create such a rule? What do you have in mind?

johns

johns

elsid spilled my beer when they jumped on the table and proclaimed in
<>

> For a complete description of our product see:
>
> http://www.crbn.com
>
> Attach a robot control module to it and it could very well paint the user
> yellow.

I prefer the verbal abuse and bludgeoning method... <G>

NOI

Thund3rstruc_N0i