psssst.. Somebody's watchin'
well i'm gonna start with an apologize to google :D
I thought they had a stupid bug in thier chrome but some how they were not the stupid...
Neither were I :D
I'm gonna show you what happened every time i use chrome to navigate to any website
and i remember i saw this screen on every navigation i perform on any web site even google.com
what i thought of at the begining that this is a bug in the chrome beta version ..
but a week ago i gave a friend of mine a password for an FTP server,
then in the next day i found some pages on this server have been altered with chinese pages
so i thought i have a sniffer in my network who uses a software to read all the packets in his network and extract such information
but when i checked the hacked web site i found just chinese text which meant some meaningless crap and a couple of names so that sniffer is not in my network and even not an egyptian
as egyptian hackers has a distinguished style "a black background or red with some marquee moving text with the biggest possible font where the hacker specify his name and the names of some of his friends , regardless his mobile number and how to contact that hacker
and most of the time he'll write "don't mess with the <His NickName>" where that nickName must contain "scorpion" or "black" :D " anyway..
so how could that happen ?!!..
and in that day when i was browsing through the internet i had that red screen in chrome again so i managed to notice it deeply and i found that thing during the normal browsing
this is the status bar that appears at the bottom left of the chrome browser during any activity
and every time i navigate to any page i find this waiting pops up as when i open google.com the status bar shows "Resolving Host" then "Connecting to google" then "Waiting for google"
and then it shows that waiting message and for the coincidence that site ends with ".cn"
which is China :D
So i figured out that this sniffer is just a trojan in my network that sniffes the data and sends it to a guy in china
and also when i checked the current arp table i found that the MAC addrress of the getway is not the one i know which means that all the browsing, chat or anything i do on the internet is through that guy :(
he might be reading this post right now :P ..
I really dont know what to do except not making any activity on the internet while i'm here as i'm busy to research in that just chat :D
except praying to god that the guy on my network who have the trojan installs or update his Antivirus and AntiSpyware on his machine or trying to get that person kicked of the network i cant find a solution
can u ?