Jump to content
View in the app

A better way to browse. Learn more.

Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Featured Replies

Posted

In an effort to keep my system safe from hidden modules (i.e. modules that have been manually unlinked from PEB->LDR_MODULE), I coded up a little tool that scans the memory of my process and attempts to identify any dll's that do not resolve using normal toolhelp API. See below (apologies for large image);

malwarespyer.png

This immediately aroused my suspicions, so I checked out the code section of this phantom module. See attachment.

Here's my plea. I'm confident this is some kind of trojan periodically sending off critical information pertaining to my browsing. Suffice to say, this is of gross concern.

How can I permanently delete this omnipresent module.

Regards,

Ksb

NB: If anyone takes the time to analysis the attached code, I would be very eager to hear how it functions.

potential_virus.txt

  • 2 weeks later...

Mind PM-ing me the file? Or just a dump of it?

It seems to me it's identifying certain strings inside the link you are navigating (e.g.: "google." with strstr), then I see some encrypted strings, that do get decrypted in those CALLs.. and I lost interest, since I can't run through it :-P PM PLOX!

Create an account or sign in to comment

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.