GoFuckYourself.com - Adult Webmaster Forum - View Single Post

DutchTeenCash · 10-13-2005, 09:02 AM

Reply by: Dan Shackelford -- Mar 24, 2004 09:10:51

On Wed, 24 Mar 2004 09:40:40 +0100, DH wrote:

= I see my firewall notifying me that cp.exe is attempting to contact
= someone. I assume this is related to a mp3 service my wife just tried to
= use to download a particular tune. I also rec'd info that a program Swi-2
= was involved.
=
= Just to be safe I went to dos mode (I'm running Win 98) and removed both
= instances of cp.exe.
=
= I've googled both, to include the suspect DNS address 80.69.160.78 , and
= have come up with nothing.
=
= I tried to restore my registry from two days ago (using scanreg / restore
= also from command prompt from the initial boot up), but could not succeed.
= Everything seems OK. You guys have anything to add? Thanks, Dave
Have you scanned your drive with a uptodate antivirus program?
Have you scanned your drive with both AdAware and Spybot?

cp.exe usually is a program for copying files ... unless infected perhaps.

As for the IP address, it is from the Netherlands:
% This is the RIPE Whois server.
% The objects are in RPSL format.
%
% Rights restricted by copyright.
% See http://www.ripe.net/ripencc/pub-serv...copyright.html

inetnum: 80.69.160.0 - 80.69.167.255
netname: NLNETSERV
descr: NetServices BV
country: NL
admin-c: TBNS1-RIPE
tech-c: TBNS1-RIPE
tech-c: JHNS1-RIPE
status: ASSIGNED PA
notify: hostmaster(at)switchworld.nl
mnt-by: NETS-MNT
changed: hostmaster(at)switchworld.nl 20021127
source: RIPE

route: 80.69.160.0/21
descr: Netservices
origin: AS25179
notify: hostmaster(at)switchworld.nl
mnt-by: NETS-MNT
changed: hostmaster(at)switchworld.nl 20020912
source: RIPE

person: Terry Bosch
address: Netservices BV
address: Saffierborch 12
address: NL-5241 LN, Rosmalen
address: The Netherlands
phone: +31 73 5230470
e-mail: hostmaster(at)switchworld.nl
nic-hdl: TBNS1-RIPE
mnt-by: NETS-MNT
changed: hostmaster(at)switchworld.nl 20020814
source: RIPE

person: Jesse Heitlager
address: Netservices BV
address: Saffierborch 12
address: NL-5241 LN, Rosmalen
address: The Netherlands
phone: +31 73 5230470
e-mail: hostmaster(at)switchworld.nl
nic-hdl: JHNS1-RIPE
changed: hostmaster(at)ripe.net 20021128
source: RIPE

Have no idea what swi is ... what directory is it located in?

10-13-2005, 09:02 AM
DutchTeenCash I like Dutch Girls Join Date: Feb 2003 Location: dutchteencash.com Posts: 21,684	Reply by: Dan Shackelford -- Mar 24, 2004 09:10:51 On Wed, 24 Mar 2004 09:40:40 +0100, DH wrote: = I see my firewall notifying me that cp.exe is attempting to contact = someone. I assume this is related to a mp3 service my wife just tried to = use to download a particular tune. I also rec'd info that a program Swi-2 = was involved. = = Just to be safe I went to dos mode (I'm running Win 98) and removed both = instances of cp.exe. = = I've googled both, to include the suspect DNS address 80.69.160.78 , and = have come up with nothing. = = I tried to restore my registry from two days ago (using scanreg / restore = also from command prompt from the initial boot up), but could not succeed. = Everything seems OK. You guys have anything to add? Thanks, Dave Have you scanned your drive with a uptodate antivirus program? Have you scanned your drive with both AdAware and Spybot? cp.exe usually is a program for copying files ... unless infected perhaps. As for the IP address, it is from the Netherlands: % This is the RIPE Whois server. % The objects are in RPSL format. % % Rights restricted by copyright. % See http://www.ripe.net/ripencc/pub-serv...copyright.html inetnum: 80.69.160.0 - 80.69.167.255 netname: NLNETSERV descr: NetServices BV country: NL admin-c: TBNS1-RIPE tech-c: TBNS1-RIPE tech-c: JHNS1-RIPE status: ASSIGNED PA notify: hostmaster(at)switchworld.nl mnt-by: NETS-MNT changed: hostmaster(at)switchworld.nl 20021127 source: RIPE route: 80.69.160.0/21 descr: Netservices origin: AS25179 notify: hostmaster(at)switchworld.nl mnt-by: NETS-MNT changed: hostmaster(at)switchworld.nl 20020912 source: RIPE person: Terry Bosch address: Netservices BV address: Saffierborch 12 address: NL-5241 LN, Rosmalen address: The Netherlands phone: +31 73 5230470 e-mail: hostmaster(at)switchworld.nl nic-hdl: TBNS1-RIPE mnt-by: NETS-MNT changed: hostmaster(at)switchworld.nl 20020814 source: RIPE person: Jesse Heitlager address: Netservices BV address: Saffierborch 12 address: NL-5241 LN, Rosmalen address: The Netherlands phone: +31 73 5230470 e-mail: hostmaster(at)switchworld.nl nic-hdl: JHNS1-RIPE changed: hostmaster(at)ripe.net 20021128 source: RIPE Have no idea what swi is ... what directory is it located in? __________________ ICQ 16 91 547 - SKYPE dutchteencash bob AT dutchteencash DOT com ... did you see our newest Sweet Natural Girl Priscilla (18)?