Item Search
     
BG-Wiki Search
Page 3 of 3 FirstFirst 1 2 3
Results 41 to 49 of 49

Thread: Iframe on FFXIAH     submit to reddit submit to twitter

  1. #41
    Command Prompt Kitty
    C:\_

    Join Date
    Feb 2008
    Posts
    46
    BG Level
    1
    FFXI Server
    Odin

    Infected myself via Virtual Machine (Windows XP SP2; Latest Adobe Flash Updates)
    Infection Method - Direct (Visited the Offending URL)

    • Tested in IE6 and WAS infected.
    • Tested in IE7 and was NOT infected.
    • Tested in IE8 and was NOT infected.
    • Tested in Firefox 3.5.6 (no add-ons) and was NOT infected.


    [ Virus Scanner Information ]
    Code:
    http://www.virustotal.com/analisis/b6b03bccffe571af796e3a110c9ec0291d08ccee666597e3273d6033e583ac9c-1261435112

    [ Virus Files and Names ]
    • c:\windows\system32\<randomly-generated-name>.exe


    [ Manual Virus Detection ]

    - If you visited FFXIAH.COM during the infected period and are worried about whether or not you are infected, please go to Microsoft TechNet (Sysinternals) and download the Autoruns tool :
    Code:
    http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
    - Extract the files to a directory and run 'autoruns.exe'.

    NOTE : When you initially run the program, it will begin a scan. Tap the Escape button once and it will cancel the scan. Make sure that 'Verify Code Signatures' and 'Hide Signed Microsoft Entries' are selected in the 'Options' menu of the program, then execute another scan by clicking the Refresh icon.

    - If you are infected, you will see the highlighted entry under the 'UserInit' section :

    http://www.moofah.com/temp/media/ima...ffxiah-trj.jpg

    - The filename the trojan uses is randomized, but is always placed in the 'C:\Windows\System32' file folder.


    [ Prevention ]
    • SandBoxie (www.sandboxie.com)
    • DropMyRights (http://www.bluegartr.com/forum/showp...4&postcount=98)

  2. #42
    wotg torrent kitty :3
    Join Date
    Jun 2007
    Posts
    1,624
    BG Level
    6

    come on guys. beeing a mod on a board doesn't equal knowing anything about web technologies at all. she misunderstood the cause and didn't understand the problem, you can blame her for giving a false advise based on that. however beating the dead horse, taking funny pictures of it and /ranting on a different board is so 4chan.

    @kuuh nvm, saw your code line too late

  3. #43
    Ridill
    Join Date
    Oct 2006
    Posts
    18,369
    BG Level
    9
    FFXIV Character
    Sath Fenrir
    FFXIV Server
    Cactuar
    FFXI Server
    Fenrir

    So don't comment on shit you don't know about with info that could potentially put the people you mod at risk?

    Are you that fucking stupid?

  4. #44
    Ridill
    Join Date
    Oct 2006
    Posts
    18,369
    BG Level
    9
    FFXIV Character
    Sath Fenrir
    FFXIV Server
    Cactuar
    FFXI Server
    Fenrir

    Also, from now on just read everything I post in Jack McCoy's voice.

  5. #45
    wotg torrent kitty :3
    Join Date
    Jun 2007
    Posts
    1,624
    BG Level
    6

    i wonder who you're talking to in jack mccoy's voice

  6. #46
    E. Body
    Join Date
    Mar 2006
    Posts
    2,333
    BG Level
    7

    if you have passed CPR class, this does not give you credibility as a doctor. if you've passed the "i can find the on button on my computer" test, this does not make you qualified to give tech advice. well, outside of geek squad. there they say that linux will make your AC adapter break and void your warranty.

    http://digg.com/linux_unix/Installin...voids_warranty

  7. #47
    Bagel
    Join Date
    Aug 2008
    Posts
    1,419
    BG Level
    6
    FFXI Server
    Lakshmi

    Quote Originally Posted by Kuuhalee View Post
    Spoiler: show
    Infected myself via Virtual Machine (Windows XP SP2)
    Infection Method - Direct (Visited the Offending URL)

    • Tested in IE6 and WAS infected.
    • Tested in IE8 and was NOT infected.
    • Tested in Firefox 3.5.6 (no add-ons) and was NOT infected.


    [ Virus Scanner Information ]
    Code:
    http://www.virustotal.com/analisis/b6b03bccffe571af796e3a110c9ec0291d08ccee666597e3273d6033e583ac9c-1261435112

    [ Virus Files and Names ]
    • c:\windows\system32\<randomly-generated-name>.exe


    - If you visited FFXIAH.COM during the infected period and are worried about whether or not you are infected, please go to Microsoft TechNet (Sysinternals) and download the Autoruns tool :
    Code:
    http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
    - Extract the files to a directory and run 'autoruns.exe'.

    NOTE : When you initially run the program, it will begin a scan. Tap the Escape button once and it will cancel the scan. Make sure that 'Verify Code Signatures' and 'Hide Signed Microsoft Entries' are selected in the 'Options' menu of the program, then execute another scan by clicking the Refresh icon.

    - If you are infected, you will see the highlighted entry under the 'UserInit' section :

    http://www.moofah.com/temp/media/ima...ffxiah-trj.jpg

    - The filename the trojan uses is randomized, but is always placed in the 'C:\Windows\System32' file folder.

    Very good information. Thanks.

  8. #48
    Command Prompt Kitty
    C:\_

    Join Date
    Feb 2008
    Posts
    46
    BG Level
    1
    FFXI Server
    Odin

    For those of you who are very nervous using FFXI community sites, even with Firefox and add-ons, I would suggest using SandBoxie (www.sandboxie.com) or using DropMyRights (Windows XP and Below : http://www.bluegartr.com/forum/showp...4&postcount=98). These add another very solid layer of protection and are very difficult to penetrate.

  9. #49
    Yoshi P
    Join Date
    Nov 2006
    Posts
    5,074
    BG Level
    8
    FFXI Server
    Quetzalcoatl
    WoW Realm
    Proudmoore

    Wow that's messed up. People should really have a security token by this time.

    This shit can come out anywhere :/

Page 3 of 3 FirstFirst 1 2 3

Similar Threads

  1. Economic Index on FFXIAH
    By Tename in forum FFXI: Everything
    Replies: 1
    Last Post: 2009-04-17, 03:42
  2. iFrame Warning from antivirus on FFXIAH.com
    By Morbo666 in forum FFXI: Everything
    Replies: 24
    Last Post: 2009-01-29, 12:55
  3. Firefox with noscript and iframes disabled on somepage
    By Regal in forum FFXI: Everything
    Replies: 4
    Last Post: 2008-06-29, 15:23
  4. Questionable iframe on guildportal?
    By zhan in forum FFXI: Everything
    Replies: 14
    Last Post: 2007-12-18, 19:32
  5. Dynamis Sandoria on 15/07/04 [5 Pics]
    By Medic in forum FFXI: Everything
    Replies: 6
    Last Post: 2004-07-19, 13:49
  6. Dynamis Sandoria on 18/07/04 [7 Pics = 2.91MB] [Part 2]
    By Medic in forum FFXI: Everything
    Replies: 3
    Last Post: 2004-07-19, 08:32
  7. Dynamis Sandoria on 18/07/04 [9 Pics = 2.62MB] [Part 1]
    By Medic in forum FFXI: Everything
    Replies: 0
    Last Post: 2004-07-19, 02:19