DeCripted

· Overview ·
· Origins ·
· Distribution ·
· Operation ·
· Detection and Removal ·
· Research ·

Overview

Summary:

 Yahoo! exploit.

Vendor Notes:

 from the doc: 'Well im back, and this is a tight ass prog from yours truly!

This works with the new ymsg11 protocol and should boot YTunnel, but if it doesn't then sorry and dont get mad bc i didnt say it absolutely will boot tunnel!

Included in this prog is a pretty tight iface, pretty much a send for every invite, a boot, and a tight ass Freezer that should freeze most people. When i tested the freezer, i let the counter go all the way to 1000 on the victim.. Yes it did take a little bit to get there but beleive me, they cant do anything while they are being hit with the lagger. (results may vary!).. so they where sitting there for a few minutes not being able to send messages or anything.. then after my lagger hit 1000 i stopped it, and for about another 2 minutes they where being lagged and never came out of it. Yahoo messenger stopped responding and crashed. Now is that tight or what? ;)

The boot will vary depending on the user. let the interval go to: about 400 for dialup users about 5000 (max) but most ppl even on high speed will be gone at about 4000 (so pretty much let the booter go till they are offline ;)

Well i hope you enjoy this prog, and i think its a record for me. i made this prog in about a day. Enjoy!'

Category:

DoS: An exploit whose purpose is to deny somebody the use of the service: namely to crash or hang a program or the entire system. Examples of DoS attacks include flooding the victim with more traffic than can be handled; flooding a service (like IRC) with more events than it can handle bomb; crashing a TCP/IP stack by sending corrupt packets; crashing a service by interacting with it in an unexpected way; or hanging a system by causing it to go into an infinite loop. For example, the Ping of Death exploit crashed machines by sending illegally fragmented packets at a victim. A common word for DoS is ""nuke"", which was first popularized by the WinNuke program.

Similar Pests:

 DoS

Origins

Author:

 CyberPunk

Group:

 Good Warez

Date of Origin:

 October, 2003

Distribution

Prevalence:
  • DeCripted: 0.1%
    • More Info

    Clot Factor:
  • DeCripted: < 1

    • The "Clot Factor" is a measure of how much a pest "gums up" a machine by adding registry entries, files, and directories. As more objects are placed in a machine, manual removal becomes more difficult and more error-prone.

    Countries Affected:

    		 In the past three months, we have received reports of DeCripted in Japan.

    Operation

    Storage Required:
  • DeCripted: at least 493 KB
    		•

    Detection and Removal

    Automatic Removal:

    PestPatrol detects this.

    PestPatrol removes this.

    Manual Removal:

    		 Follow these steps to remove DeCripted from your machine. Begin by backing up your registry and your system, and/or setting a Restore Point, to prevent trouble if you make a mistake.
    Stop Running Processes:

    Kill these running processes with Task Manager:

    Remove Files:

    Remove these files (if present) with Windows Explorer:

    Research

    File Analyses:

    More Info:
  • AllTheWeb, AltaVista, AOL Search, Ask Jeeves, Google, HotBot, Lycos, LookSmart, MSN, Yahoo!
    		•

    Research By:
  • PestPatrol's Pest Research Center
    		•

    Last Revised:

    		 April 02, 2005