Gnutella Forums  

Go Back   Gnutella Forums > Gnutella News and Gnutelliums Forums > General Gnutella / Gnutella Network Discussion
Register FAQ The Twelve Commandments Members List Calendar Arcade Find the Best VPN Search Today's Posts Mark Forums Read

General Gnutella / Gnutella Network Discussion For general discussion about Gnutella and the Gnutella network.
For discussion about a specific Gnutella client program, please post in one of the client forums above.


Welcome To Gnutella Forums

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, fun aspects such as the image caption contest and play in the arcade, and access many other special features after your registration and email confirmation. Registration is fast, simple and absolutely free so please, join our community today! (click here) (Note: we use Yandex mail server so make sure yandex is not on your email filter or blocklist.)

If you have any problems with the Gnutella Forum registration process or your Gnutella Forum account login, please contact us (this is not for program use questions.) Your email address must be legitimate and verified before becoming a full member of the forums. Please be sure to disable any spam filters you may have for our website, so that email messages can reach you.
Note: Any other issue with registration, etc., send a Personal Message (PM) to one of the active Administrators: Lord of the Rings or Birdy.

Once registered but before posting, members MUST READ the FORUM RULES (click here) and members should include System details - help us to help you (click on blue link) in their posts if their problem relates to using the program. Whilst forum helpers are happy to help where they can, without these system details your post might be ignored. And wise to read How to create a New Thread

Thank you

If you are a Spammer click here.
This is not a business advertising forum, all member profiles with business advertising will be banned, all their posts removed. Spamming is illegal in many countries of the world. Guests and search engines cannot view member profiles.



           Deutsch?              Español?                  Français?                   Nederlands?
   Hilfe in Deutsch,   Ayuda en español,   Aide en français et LimeWire en françaisHulp in het Nederlands

Forum Rules

Support Forums

Before you post to one of the specific Client Help and Support Conferences in Gnutella Client Forums please look through other threads and Stickies that may answer your questions. Most problems are not new. The Search function is most useful. Also the red Stickies have answers to the most commonly asked questions. (over 90 percent).
If your problem is not resolved by a search of the forums, please take the next step and post in the appropriate forum. There are many members who will be glad to help.
If you are new to the world of file sharing please do not be shy! Everyone was ‘new’ when they first started.

When posting, please include details for:
Your Operating System ....... Your version of your Gnutella Client (* this is important for helping solve problems) ....... Your Internet connection (56K, Cable, DSL) ....... The exact error message, if one pops up
Any other relevant information that you think may help ....... Try to make your post descriptive, specific, and clear so members can quickly and efficiently help you. To aid helpers in solving download/upload problems, LimeWire and Frostwire users must specify whether they are downloading a torrent file or a file from the Gnutella network.
Members need to supply these details >>> System details - help us to help you (click on blue link)


Moderators

There are senior members on the forums who serve as Moderators. These volunteers keep the board organized and moving.
Moderators are authorized to: (in order of increasing severity)
Move posts to the correct forums. Many times, members post in the wrong forum. These off-topic posts may impede the normal operation of the forum.
Edit posts. Moderators will edit posts that are offensive or break any of the House Rules.
Delete posts. Posts that cannot be edited to comply with the House Rules will be deleted.
Restrict members. This is one of the last punishments before a member is banned. Restrictions may include placing all new posts in a moderation queue or temporarily banning the offender.
Ban members. The most severe punishment. Three or more moderators or administrators must agree to the ban for this action to occur. Banning is reserved for very severe offenses and members who, after many warnings, fail to comply with the House Rules. Banning is permanent. Bans cannot be removed by the moderators and probably won't be removed by the administration.


The Rules

1. Warez, copyright violation, or any other illegal activity may NOT be linked or expressed in any form. Topics discussing techniques for violating these laws and messages containing locations of web sites or other servers hosting illegal content will be silently removed. Multiple offenses will result in consequences. File names are not required to discuss your issues. If filenames are copyright then do not belong on these forums & will be edited out or post removed. Picture sample attachments in posts must not include copyright infringement.

2. Spamming and excessive advertising will not be tolerated. Commercial advertising is not allowed in any form, including using in signatures.

3. There will be no excessive use of profanity in any forum.

4. There will be no racial, ethnic, or gender based insults, or any other personal attacks.

5. Pictures may be attached to posts and signatures if they are not sexually explicit or offensive. Picture sample attachments in posts must not include copyright infringement.

6. Remember to post in the correct forum. Take your time to look at other threads and see where your post will go. If your post is placed in the wrong forum it will be moved by a moderator. There are specific Gnutella Client sections for LimeWire, Phex, FrostWire, BearShare, Gnucleus, Morpheus, and many more. Please choose the correct section for your problem.

7. If you see a post in the wrong forum or in violation of the House Rules, please contact a moderator via Private Message or the "Report this post to a moderator" link at the bottom of every post. Please do not respond directly to the member - a moderator will do what is required.

8. Any impersonation of a forum member in any mode of communication is strictly prohibited and will result in banning.

9. Multiple copies of the same post will not be tolerated. Post your question, comment, or complaint only once. There is no need to express yourself more than once. Duplicate posts will be deleted with little or no warning. Keep in mind a forum censor may temporarily automatically hold up your post, if you do not see your post, do not post again, it will be dealt with by a moderator within a reasonable time. Authors of multiple copies of same post may be dealt with by moderators within their discrete judgment at the time which may result in warning or infraction points, depending on severity as adjudged by the moderators online.

10. Posts should have descriptive topics. Vague titles such as "Help!", "Why?", and the like may not get enough attention to the contents.

11. Do not divulge anyone's personal information in the forum, not even your own. This includes e-mail addresses, IP addresses, age, house address, and any other distinguishing information. Don´t use eMail addresses in your nick. Reiterating, do not post your email address in posts. This is for your own protection.

12. Signatures may be used as long as they are not offensive or sexually explicit or used for commercial advertising. Commercial weblinks cannot be used under any circumstances and will result in an immediate ban.

13. Dual accounts are not allowed. Cannot explain this more simply. Attempts to set up dual accounts will most likely result in a banning of all forum accounts.

14. Video links may only be posted after you have a tally of two forum posts. Video link posting with less than a 2 post tally are considered as spam. Video link posting with less than a 2 post tally are considered as spam.

15. Failure to show that you have read the forum rules may result in forum rules breach infraction points or warnings awarded against you which may later total up to an automatic temporary or permanent ban. Supplying system details is a prerequisite in most cases, particularly with connection or installation issues.

Violation of any of these rules will bring consequences, determined on a case-by-case basis.


Thank You! Thanks for taking the time to read these forum guidelines. We hope your visit is helpful and mutually beneficial to the entire community.


Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old December 27th, 2005
Apprentice
 
Join Date: December 27th, 2005
Posts: 5
Rel007 is flying high
Default ISPs that fish for p2p users

I'm noticing something interesting. During more than a few searches, the very title that I search under (a person's name) comes up in first position and the linked file is not what I'm looking for. Not only that, there is no file description. All of these files link back to different Road Runner IP addresses (rr.com) and they appear to be trojans. The IP addresses also seem to come from a wide variety of rr.com addresses and not just one or two.

Considering this and what I've been reading about road runner, it makes me wonder if rr.com has gone rogue and is fishing for p2p users to infect. Has anyone else seen this sort of deliberate fishing from an ISP?

I have filtered out all IP addresses from rr.com as well.

Last edited by Rel007; January 1st, 2006 at 02:55 AM.
Reply With Quote
  #2 (permalink)  
Old December 27th, 2005
flame-retardant
 
Join Date: November 22nd, 2005
Posts: 196
Hyper-kun is a great assister to others; your light through the dark tunnel
Default

This is nonsense. No ISP is "fishing" users on Gnutella. Why do you think the ISP has anything to with that? The IP addresses in results on Gnutella can be trivially forged and
in spam results most of them are really forged. The files are
really trojans or just spam. The hosts that emit these results are either infected hosts or owned by the spammers themselves. As it is so easy to forge IP addresses in Gnutella, filtering IP addresses is not clever at all. It is useless and in the end you will have trouble downloading or finding anything at all because you are filtering everything out. The only IP addresses you might want to filter are those of hosts which really upload these files. However if those are dynamic IP addresses of infected machines, that's useless as well. Filtering only makes some sense for IP ranges that belong to server farms used by spammers.

Assuming that any ISP would try to infect the machines of Gnutella users is very weird though. I really wonder how you get that idea. The infected machines would cause them a lot more trouble than the already have. The legal consequences would be devastating for them. Only business people who consume coke would consider treating their customers this way.
Reply With Quote
  #3 (permalink)  
Old December 27th, 2005
Apprentice
 
Join Date: December 27th, 2005
Posts: 5
Rel007 is flying high
Default

Nonsense? I tracked the IP addressed back to rr.com. If you check spamhaus.com you will see the increase in spam operations coming out of rr.com as well. It is real. Where do you think zombie machines come from?

All I know is what I've observed. I've noticed that certain ISPs that have financial difficulties do resort to spamming and supporting spam operations. I even see Disney doing spaming on the sly. This is the current "demi monde" of making money.

Perhaps you a bit uninformed about all this if not naive.

I just found another one that links back to rr.com. These guys are blackhats!

Last edited by Rel007; December 27th, 2005 at 06:52 AM.
Reply With Quote
  #4 (permalink)  
Old December 27th, 2005
On Holiday
 
Join Date: April 20th, 2005
Posts: 3,279
Only A Hobo is a great assister to others; your light through the dark tunnel
Default

hmm I don't quite follow this, but I do notice that RR is part of Time Warner ... so ...I wonder ..........
__________________
To get Phex Click on the Fox
Reply With Quote
  #5 (permalink)  
Old December 27th, 2005
flame-retardant
 
Join Date: November 22nd, 2005
Posts: 196
Hyper-kun is a great assister to others; your light through the dark tunnel
Default

You should really have a little more evidence before you call someone uninformed, naive, a spammer or a blackhat. If you're so clever, Mr Bond, why don't you sue RoadRunner or at least inform the New York Times?

I would have assumed a good amount of RR.com users are as smart as bread but your explanation makes much more cents.
Reply With Quote
  #6 (permalink)  
Old December 27th, 2005
Apprentice
 
Join Date: December 27th, 2005
Posts: 5
Rel007 is flying high
Default

Quote:
Originally posted by Hyper-kun
You should really have a little more evidence before you call someone uninformed, naive, a spammer or a blackhat. If you're so clever, Mr Bond, why don't you sue RoadRunner or at least inform the New York Times?
. . . and you *know* what you are talking about?
I know what I have seen by tracking back files which are suspicious and repeatedly come up as the first file found in a search through Limewire. I began doing this to determine what content was pushed by Loudeye (perhaps you know nothing of them either?) and I have now observed a pattern of trojans that match my exact search string, all coming from various IP addresses that are rr.com. Again, if you had the time to do your homework, you would notice that Spamhaus has listed rr.com as one of the top sources of spam in the world. If you had taken the trouble to read their listings instead of trolling on this forum, you would also see they have multiple reports against them for being the source of trojans (injection?). http://www.spamhaus.org/sbl/listings.lasso?isp=rr.com .
rr.com actually has at least one ROKSO spammer and that is a clear indication that something fishy is going on at roadrunner.

I think you should do a little more homework before you dismiss these observations as fantasy and yes, I appear to be more clever than you are. I am still hoping that someone with more knowledge about such might post about this.

Last edited by Rel007; December 27th, 2005 at 06:25 PM.
Reply With Quote
  #7 (permalink)  
Old December 28th, 2005
flame-retardant
 
Join Date: November 22nd, 2005
Posts: 196
Hyper-kun is a great assister to others; your light through the dark tunnel
Default

Oh you tracked back the files. What do you mean with "track"? Did you click the "track" button, or what? Do you think you're some ub3rh4x0r? Can't you talk plain English and say that you used the "whois" tool and found out the IP address
was assigned to RoadRunner?

I also wonder what's your obsession with RoadRunner. If you opened your eyes for half a second, you'd see that spam originates from a lot of places, not just RoadRunner.

You have proven yourself that you jump to conclusions without having any facts at all. For example, you claim I haven't looked at spamhaus. Well, funny, I believe I did. Maybe you are the spammer though, because you gave an invalid domain name. It is spamhaus.ORG not .COM. But thanks, it shows how sloppy you are. Furthermore, I have already told you that big ISPs are likely to have more spammers and hijacked machines in their network than small ISPs. That is not really that difficult to figure out, is it? What about the other ISPs in the list? And keep in mind that spamhaus can only see what they are looking at. I cannot confirm their values at all. Certain spam comes mostly from Russia, other ongoings originate usually from China or Korea.

Regarding your search strings, it is trivial to return results that match exactly your search terms. This is far from being new, that has been happening since the first days of Gnutella. Trojans and spam in Gnutella are nothing new either. That has been going on for at least 2 years if not longer. There was even a widely known worm called "mandragor"
(or the like) during its first days.

You wonder why spammers choose RoadRunner. That's simply, they offer mostly end-user accounts. End-users are stupid, they cannot take of the security and integrity of their systems. At least the majority cannot. Next, RoadRunner offers solely fast cable access. Spammers need bandwidth, there's no point in hacking machines of 56K-modem users which are online 2 hours a day. You want a machine with permanent internet connectivity and a lot of bandwidth. RoadRunner offers this and their users are obviously easy bait. Maybe there's a flaw in their hard- or software which makes it even easier than usual.

What you still don't grasp is that RoadRunner or whatever ISP is not liable or responsible for their users' actions. You really sound like stome dumbass attorney who managed to get Compuserve's boss into jail. You'd probably blame the mail service if someone sent you anthrax. A lot of people received anthrax per mail. Don't you think UPS behind this? There was surely something fishy going on.

By the way, yesterday some AOL user around here murdered someone and I remember some month ago, another AOL user also killed the someone. I'm sure AOL is behind this. That's the only explanation.

You think someone brighter will read this or even answer you?
Man, you're really funny. As I told you before, if you have evidence, tell the newspaper or rather the police. Don't go to a random forum and make up some stupid conspirancy.
Reply With Quote
  #8 (permalink)  
Old December 28th, 2005
Apprentice
 
Join Date: December 27th, 2005
Posts: 5
Rel007 is flying high
Default

Quote:
Originally posted by Hyper-kun
. . . You think someone brighter will read this or even answer you?
Apparently not. If you have any information that is relevant you could just post it and help educate people without being an *** with no class.

Perhaps you don't think it is odd that one might turn up virii in more than a few searches, all originating from a wide range of IP addresses from within one ISP. Over time, I have learned that certain ISPs employee people that work closely with spammers to infect other machines and what I have seen in spam and now virii from rr.com is enough to make me wonder what is going on there and if anyone else has observed the same.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Dead fish eluria Windows 2 February 9th, 2006 06:00 PM
Gnutella and ISPs CD 1986 General P2P Network Discussion 1 April 11th, 2005 02:32 PM
song on the Big Fish Trailer.. supersgirl Tips & Tricks 1 June 3rd, 2004 10:24 AM
Is Gnotella like dead fish in the water? Unregistered Gnotella (Windows) 5 November 27th, 2002 04:28 AM
Bear and Fish Unregistered Support 3 April 10th, 2002 09:00 PM


All times are GMT -7. The time now is 06:32 PM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
SEO by vBSEO 3.6.0 ©2011, Crawlability, Inc.

Copyright © 2020 Gnutella Forums.
All Rights Reserved.