SCI: Tech Fears Arise Over Norton and Pifts.exe

Norton forum users are asking for a shut down of new accounts.

Maybe a good idea.

Maybe someone should put a well thought out question about this on there and then we may get somewhere.

Please for the love of God make it stop

reply to post by m0r1arty


Slashdot picked up the 'story', and the reason the Norton forum server is up/down is due to the 'slashdot effect'. Plus the idiots with poor english skills that are spamming the board. As I stated earlier, it's all a ruse.

I deal with virii all day long. Hell, I used to write virii a long, long, time ago. There's a new suite of them out (I've dealt with four machines in as many days with the new version) that's based on the smitfruad suite, and I'd lay good money down that the people behind it are behind the whole pifts.exe outrage. It started on 4chan, I believe, top search engine rankings are infected sites, etc... Now, all they have to do is to let hysteria drive people to their infected servers.

As much as I detest Norton products, basically for killing operating systems dead with bad updates, I'm not going to blame Norton, or some shadowy conspiracy to steal our pr0n.

But, yeah, don't listen to me. I'm just some guy on the internet, and we all know the government aided by big business is out to get us.

So i checked the site about 6 minutes ago. this is what i got.

External Image
*warning profanity

Couple minutes after that.


External Image
*warning profanity


Site is still up just a bit slow.
People keep flocking to it.



[edit: embedded images changed to links]

[edit on 10-3-2009 by 12m8keall2c]


SORRY! ... Ill make sure to cover that stuff next time. I completly forgot!

[edit on 10-3-2009 by Armour For Victor]

Originally posted by SpacePunk
Hell, I used to write virii a long, long, time ago.

It's fortunate we are seperated by the interweb.

i think norton has been hacked!

Here are some pics of the 4chan raid that is currently taking place at the Norton Forums. It has devolved into trolling basically.


4chan Norton raid pic 1

4chan Norton raid pic 2
*warning profanity

4chan Norton raid pic 3
*warning profanity


-----
One of the Norton users TomiRed posted:

Symantec administrators, please shut down new user registrations temporarily..

The board is obviously under attack by spammers spreading lies. This will stop them, and I'm sure by this evening it will be clear to everybody that this was just a virulent defamation campaign..

........


He didn't recieve a warm reply from other posters:


WatPFFTS wrote:

"Lies? LIES?

Are you **bleep**ing retarded? Do you not realize that this company is logging your information via PIFTS.EXE and sending it offshores to an African IP? If you're that **bleep**ing blind then I hope you get all your info stolen.

God, ignorant **bleep**got. "

..........

and CyberKnights wrote:

Do a google search for PIFTS.exe, you'll see we're not spammers. This **bleep**less company is doing some shady **bleep**ing **bleep**, and we want answers. Don't be a **bleep**ing fanboy.

----------------------


I sure would hate to be a Norton mod right now...


[edit on 10-3-2009 by 12m8keall2c]

reply to post by Pompkinini


"JESUS CHRIST ITS A PIFT. GET IN THE CAR!"


This is getting out of hand.

Originally posted by Armour For Victor
reply to post by Pompkinini

 

"JESUS CHRIST ITS A PIFT. GET IN THE CAR!"

This is getting out of hand.

"Where can I download PIFTS.EXE?" Is my favourite.

ME to being as how im one of the posters they are aware of this thread allso and the alledged beleif that 4chan could be behind it in wich case its not because as we all know no one is meaner then everyone

Anonymous

Originally posted by Armour For Victor
reply to post by Pompkinini

 

"JESUS CHRIST ITS A PIFT. GET IN THE CAR!"

This is getting out of hand.

I was especially fond of

"WHERE CAN I DOWNLOAD PIFTS.EXE?"

I know this is off topic, but what happened to my ATS Avatar?

Originally posted by Armour For Victor
reply to post by Pompkinini

 

"JESUS CHRIST ITS A PIFT. GET IN THE CAR!"

This is getting out of hand.

Definitely the funniest thing I've read so far!

Great! looks like I'll have to completely re-format my computer in order to remove any previous history as well as make sure I remove Norton from the get go. Any good anti viruses that people can recommend that are NOT norton?

ISC has had contact with Symantec. The confirm the program is theirs. And not intended to do any harm. This does rule out it accidently does harm. And I guess it all depends on their definition of 'harm'.

UPDATE:

I just had a phone call from a Symantec employee confirming the program is theirs, part of the update process and not intended to do harm, more to follow, stay tuned.

source: isc.sans.org...

Mod Note: General ATS Discussion Etiquette – Please Review This Link.

[edit on 10-3-2009 by 12m8keall2c]

Originally posted by RE2505

Originally posted by Armour For Victor
reply to post by Pompkinini

 

"JESUS CHRIST ITS A PIFT. GET IN THE CAR!"

This is getting out of hand.

"Where can I download PIFTS.EXE?" Is my favourite.

So this is how the world ends. Not with a bang but with a pifts.

One of the digg comments.

[edit on 10/3/2009 by FreezeM]

i m raising the bull[snip] flag on that no harm post lol


Mod Edit - Mod Edit: Profanity/Circumvention Of Censors – Please Review This Link.


Mod Note: One Line Post – Please Review This Link.


[edit on 10-3-2009 by elevatedone]

reply to post by Armour For Victor



Did you update it to ATS Media?

It seems that the Symantec form's are down for maintenance ... seriously!

community.norton.com...

I would say this is a new, bad sign.

I have also read posts on this being deleted on yahoo answers.

I have read, but "not conformed" that symantech,yahoo and backupdrive are all owned by same corporation and all three are deleting posts in regards to this.

One of the IP's associated with this traces back to washington...

www.ip-adress.com...

[edit on 3/10/2009 by mrmonsoon]

Originally posted by mrmonsoon
It seems that the Symantec form's are down for maintenance ... seriously!

community.norton.com...

I would say this is a new, bad sign.

I have also read posts on this being deleted on yahoo answers.

I have read, but "not conformed" that symantech,yahoo and backupdrive are all owned by same corporation and all three are deleting posts in regards to this.

This was only for a few seconds, Forum became available after a few seconds again.

My guess is that they either edited something in the forum settings to either increase available bandwidth (like ATS has edited some settings to increase performance as well.) or they fulfilled the request of that user and temporarily prevented new people from registering.

[edit on 10/3/09 by -0mega-]