Bebe1911 Posted July 7, 2010 Report Share Posted July 7, 2010 foto http://ow.ly/287IF?=http://www.facebook.com/photo.php Nu am analizat nimic, doar am primit vreo cateva massuri. Vad ca s`au smecherit...pun facebook acu. Quote Link to comment Share on other sites More sharing options...
phantomas90 Posted July 7, 2010 Report Share Posted July 7, 2010 Deja il detecteaza Eset Nod32 ca IRC/SDBot.il sterge direct. Quote Link to comment Share on other sites More sharing options...
Moderators Dragos Posted July 7, 2010 Moderators Report Share Posted July 7, 2010 L-am primit si eu.Lavinia: foto http://ow.ly/28bYj?=http://www.facebook.com/photo.phpSynthesis: vezi ca trimiti mass cu virusiAveti grija ce mai downloadati. Quote Link to comment Share on other sites More sharing options...
AlStar Posted July 7, 2010 Report Share Posted July 7, 2010 Si Comodo il detecteaza:) Apare avertizarea inaintea ferestrei cu Save/Open with P2PWorm.Win32.Palevo.GZA@105173109 Quote Link to comment Share on other sites More sharing options...
begood Posted July 7, 2010 Report Share Posted July 7, 2010 malware backup : Multiupload.com - upload your files to multiple file hosting sites!pass rstcenter.com Quote Link to comment Share on other sites More sharing options...
icebird Posted July 7, 2010 Report Share Posted July 7, 2010 Cum se fac virusurile astea ce se transmit pe Yahoo? Adica ce au la baza? Care e principiu? Quote Link to comment Share on other sites More sharing options...
begood Posted July 7, 2010 Report Share Posted July 7, 2010 (edited) principiul e urmatorul : prostia omeneasca care da pe afaracel care a facut malware-ul trimite la o lista cat mai mare de idioti un link via messenger.ei intra pe link crezand ca deschid o poza (habar nu au ca are extensia .exe) si se infecteaza.malware-ul preia controlul computerului victima si citeste contactele din lista, trimitand mai departe linkul.ai 1 botmaster.el trimite la 300k persoane linkul, 20% se infecteaza (60k), aia 60 k au fiecare cate 100 persoane in lista, 20% se infecteaza => 60k*100*0.2= 1 200 000 computere infectate la a doua generatie, la a treia creste la 24 000 000.evident in realitate rata de infectie e mult mai mica, de ordinul 1-5 %, dar daca totul depinde de IQ-ul oamenilor, la copii evident procentul creste (am calculat eu) chiar si la 40% Edited July 7, 2010 by begood Quote Link to comment Share on other sites More sharing options...
curiosul Posted July 7, 2010 Report Share Posted July 7, 2010 Credeti ca s-ar prinde google daca as face reclama la un site cu Adsense pe el prin aceasta metoda?Din calculele lui begood ar iesi ceva. Quote Link to comment Share on other sites More sharing options...
begood Posted July 7, 2010 Report Share Posted July 7, 2010 sunt estimari, si sunt foarte grosolane, poti visa tu mult si bine la 300k boti, da mai 24 milioane Quote Link to comment Share on other sites More sharing options...
N-W-A Posted July 7, 2010 Report Share Posted July 7, 2010 oricum, botul in sine e destul de primitiv, nu e deloc "silent" Quote Link to comment Share on other sites More sharing options...
begood Posted July 7, 2010 Report Share Posted July 7, 2010 pare fi facut mai mult de dragul de a testa niste functii decat pentru a face "ravagii"daca n-as stii mai bine, as zice ca doar pentru statistici a fost facut Quote Link to comment Share on other sites More sharing options...
dragosh1904 Posted July 7, 2010 Report Share Posted July 7, 2010 mda si eu l am primit de 30 de ori pe ziua de azi mi s a luatX( Quote Link to comment Share on other sites More sharing options...
AlStar Posted July 8, 2010 Report Share Posted July 8, 2010 trebuie sa va dati seama cat de prabusiti sunteti dupa cate massuri cu virusi primiti. aveti numai lesinati in lista.Ai dreptate:)) Quote Link to comment Share on other sites More sharing options...
Andblood Posted July 10, 2010 Report Share Posted July 10, 2010 Si eu am avut cativa , dar au intrat imediat in black listNu sunt sigur dar stiu de prima oara cum il stergeai, intri in task manager si cauti numele care ti se pare mai suspect (ar trebuii sa iti dai seama ce ai in pc) il stergi si dupa il cauti in c:windows sau c:windows:system32 , intra in amandoua si verifica. Quote Link to comment Share on other sites More sharing options...
CyberWolf08 Posted July 10, 2010 Report Share Posted July 10, 2010 Cam cum functioneaza:Se deschide, face niste modificari la setarile internetului(net.exe si net.exe), se adouga la firewall exceptions, creeaza fisierul C:\Windows\jusched.exe daca nu exista sau il inlocuieste pe cel deja existent si apoi il porneste iar fisierul original isi cam termina treaba.Jusched.exe apoi porneste un IE si sc.exe se adauga la start-up ca serviciu.Se conecteaza apoi la 205.234.138.152:2345(IRC server) de unde isi ia comenzi. Quote Link to comment Share on other sites More sharing options...