i’m gonna start with an apologize to google 😀

i thought they had a stupid bug in thier chrome

but some how they were not the stupid … neither were I 😀

i’m gonna show you what happened every time i use chrome to navigate to any website

and i remember i saw this screen on every navigation i perform on any web site

even google.com

what i thought of at the begining that this is a bug in the chrome beta version


but a week ago i gave a friend of mine a password for an FTP server, then in the next day i found some pages on this server have been altered with chinese pages

so i thought i have a sniffer in my network who uses a software to read all the packets in his network and extract such information

but when i checked the hacked web site i found just chinese text which meant some meaningless crap and a couple of names

so that sniffer is not in my network and even not an egyptian as egyptian hackers has a distinguished style

“a black background or red with some marquee moving text with the biggest possible font where the hacker specify his name and the names of some of his friends , regardless his mobile number and how to contact that hacker and most of the time he’ll write “don’t mess with the <His NickName>” where that nickName must contain “scorpion” or “black” 😀 ”


so how could that happen ?!!..

and in that day when i was browsing through the internet i had that red screen in chrome again

so i managed to notice it deeply and i found that thing during the normal browsing

this is the status bar that appears at the bottom left of the chrome browser during any activity

and every time i navigate to any page i find this waiting pops up

as when i open google.com the status bar shows “Resolving Host” then “Connecting to google” then “Waiting for google” and then it shows that waiting message

and for the coincidence that site ends with “.cn” which is China 😀

so i figured out that this sniffer is just a trojan in my network that sniffes the data and sends it to a guy in china

and also when i checked the current arp table i found that the MAC addrress of the getway is not the one i know

which means that all the browsing, chat or anything i do on the internet is through that guy 😦

he might be reading this post right now 😛


i really dont know what to do except not making any activity on the internet while i’m here as i’m busy to research in that 

just chat 😀

except praying to god that the guy on my network who have the trojan installs or update his Antivirus and AntiSpyware on his machine or trying to get that person kicked of the network i cant find a solution 

can u ?