lol

nah we don't hate these "sectret tricks" since we can hide absolutely everything and bypass every single antivirus

they hate a rescue disc more

@@RubenDeJong1207 we get to keep your informations '-'

@@stylite1637 every single antivirus ? geez lol. wait.. are you a malware author lol

and get exposed step by step

Leo: It sounded cool.

its most likely a bot programmed to send malware to youtubers mail

@@Nogardtist yeah, they could easily compile a script that crawls KZfaq for channels over certain subscriber threshold, and set up a pipeline that compiles the malware and emails with the channel name and send them to the channel's email. Perhaps the initial mail and the reply sent by the channel was the trigger that fires up the pipeline. Obviously they want to minimize the number of specimens sent out instead of spamming them all over the place and risk them being automatically flagged.

@@kyouhyung wont making verified email by the brand or company with a mark or something to easier filter out these parasites then lets say a newcomer starts their channel most tutorials or guides are either wasting time or useless they dont give all the problems and tips a creator might face like quality of the videos why algorithm hates small creators ironically they say most updates are for smoll creators safety there bigger problems then the dislike ratio and its comment bots and fake sponsors then what google themselves provide with search results but asking google or youtube directly most likely gonna feel like talking to the void or a bot imagine if in youtube studio there was an option to directly talk them instead relaying on other sites for a chance to get a respond

They hope you don't notice because it's packed so small.

Talking about a 700mb "word document", is it a good idea to just make a text file just 500mb and just shatters anyone with potato pc when opening it, aka spam E since why not, notepad did crash me at 250mb since my pc isn't the greatest as well, but it's funny and i did ruin my friend's pc, don't worry nothing is damaged the cpu is just broken. This reply is really long and probably as long as 1 paragraph of a wikipedia page

Did my KZfaq just crashed?

@@_auser_ at least ur reply isnt tons of E's

@@HuntingKingYT but its as big as one wikipedia paragraph

@@synthlord6575 how is it cringe

This thread is cringe.

@@synthlord6575 I’m confused how you’re confused

Lmao

On the other hand, they say a professional cook does not really likes to cook at home on his spare night, you sometimes hear. Or in the case of Seinfeld when he had girlfriends that was a masseuse, but she refused to give him a neck massage. Meanwhile Kramer did get one I believe... kzfaq.info/get/bejne/sLKfZs6TzM27iqc.html

You mean those GB's of torrent download files? This is why torrent is dead.

@@dp6123 Lol

@@dp6123 Lol

@@dp6123 Lol

@@dp6123 Lol

i actually got hacked few days, ago and my mc afe subscription got over, and i was pretty much downloading a filmora file, and dont know what had happend, my yt an all other accs got data breached online :/, i deleted that file, but im still scared

@@Steveson lol who told download cracked

@@Steveson Immediately change your google and other necessary passwords like Facebook, netbanking passwords, etc

or/and DELETE! 🗑

@@RubenDeJong1207 My first rule of security is: unless it came with Windows, don't trust it! And even if it did, still don't!!

First rule of security: don't store your precious data on Windows

first rule of security: just don't

First rule of security: n o

Great tip! Thank you!

The ZIP-Archive he downloaded was shown as only ~400 kb, which was a pretty clear indicator the the file was bloated w/o any other tricks.

@@themasterofdisastr1226 yo bro

VirusTotal still wouldn't take the file in regardless of compression tactics. Besides that, the original zipped files are still encrypted.

The point isn’t to get the antivirus to find it. The point is to be able to see its a bloated file which is a dead giveaway of a virus program. An executable shouldn’t compress very much as it should have lots of important, non-compressing calls

Try it and tell us! 😉

Windows defender is shit You sadly are fucked if you solely rely on anything microsoft makes XD

@@whocares7078 cringe

Happend to me you don't want that 😅

@@whocares7078 windows defender is honestly underrated because most people think that Microsoft software is pure trash.

I'm not qualified to answer, but guess would be because it's essentially dead space, it shouldn't effect the program, which is why he just did a general delete of the zeros and didn't fine time it

@@randomdude12370 It must be for the same reason they could add all the zeros just in that place, the program is behaving the same anyway

The zeros were after the main PE sections, in between let's say the .rsrc section and the overlay(the zeros could also be in the overlay or in their own custom named section) and they don't affect any offsets as no code or data points to that zero section, and the overlay is mostly for display(most RedLine payloads use corrupted certificates from big companies to try to further deceive the user into executing the payload). Any other offset used by the program's internals is calculated at runtime with regard to the image base and different srctions in the PE.

They do it because scanning huge data takes longer and it's vulnerable to zip bombs or people sending huge packets to cause a server outage

its a pain in the ass to develop a code to scan large files, the thing is even malware coders evade bloating with gibberish data since they are heavier to transport, you can easily write a way less file to transport easy and do what it has to do being fast and delete itself.

most have such limit but it can be disabled actually that setup is for low performance hardware imagine if you would remove the limmit a pc with a 1 5 ghz and 4 ram would become unresponsive freze on high end flagships you will have diffrent features than on low resources so most infected machines are those that are not that performant, on high end hardware you will have hardware av wich will bloch the execution if the code is not a standard behavior rootkit won't even run at boot times due to secure boot deep is als there and on some motherboards they have also a special procesor for pre processing the code and only valide code is passed to main cpu such configuration is bulet prof

did you actually run the file or no

@@jello3064 yes, but it wasn't a contract like here, but instead a game demo

@@Aci_yt Any game that comes with no textures are dll files are fake because then it couldn't display anything

@@pengwino828 it supposedly was the installer

@@Aci_yt wow, they really thought that far ahead. At least you got your channel back.

Zoomers are the new Boomers. We gotta help them so they have basic tech skills and aren't vulnerable.

thats implying the mid 2000's weren't god awful haha limewire ruined so many pcs

Adding to the IT illiteracy comes, that people just want to monetize themselves on YT without merit or talent on "character" alone. And who can blame them, once the Pauls succeeded with this crap. Be vigilant, but if you get screwed over, maybe it's time for a real job.

Agree! More!

And knowing is half the battle.

For real if I get a virus I would probably breakdown or something idk I have bad anxiety lol

He was probably in a VM

@@kamilo1175 yeah most likely pretty much every person that deals with stuff uses vm

@@kamilo1175 Indeed, or he's just experienced, or even both.

@@orbitalonyx I trust people and download files all the time, and that’s why I get nervous even when I know someone is on a VM. I do creative projects with people, so you just have to hope no one gets hacked or sends anything malicious 🙃

Linux probably

@@elevul huh???????????

Pup finders tend to do a better job at this. Most antivirus’s now are just bloatware sadly.

It's part Microsoft - part stupid people renaming the file _including_ the extension and complaining why Office won't load their files.

I'm pretty sure he was wrong about antivirus software skipping large exe's (or similar).

Yes. If you execute malware they can hijack sessions, spy on you indefinitely, etc. That's how they defeated Linus's hardware keys.

Wow... From a Chrome Extension that seemed legitimate and good reviews.. I'm often suspicious of Extensions for browsers, Google Office and MS Office products..

@@joemama3372 Should also be suspicious about PlayStore apps as Google doesn't do good job when it comes to auditing.

Which is why I trust only extensions that have been available for 2+ years, and have plenty of downloads and plenty of reviews. Very easy to get a few hundred fake reviews.

I always knew something was off with that Pipe Dream screensaver....

That's a screensaver file...

@@nevergonnagiveyouup4189 I didnt know that, I thought they were limited to animations

Oh gosh does that username have RTL in it or something? Edit: it only appears weird on mobile

@@AlfiesFuntime why did you write backwards

@Appu26j wouldn't some sort of cookie stealer need to be used though? Work computer was a Mac, windows computer that was powered off since I wasn't home and an Android phone not rooted or anything sideloaded/modded apps

@Appu26j at the time it occurred, the live stream they were doing I searched the title of and noticed there were about a dozen other KZfaq channels streaming the same thing. It was some Bitcoin scam. I could understand exploiting live streaming with something like somehow guessing the stream key, but it's so long and convoluted I highly doubt that. Also if you guess the stream key that doesn't give you access to change things like channel name private videos and change channel layout

lol

Oh, antiviral software do indeed detect this, it's just....if a file is behind a password protected thingy, no dice.

A single repeatitive 0s is easy but once it gets to repeatitve sequence that just impossible to split and detect easily

@@tronghungnguyen8716 to my thinking, not really; break it into equal parts, doesn't matter where the zeros are, then look for all zeros in each part. When done, put it back together and run the scan. Just like he did manually.

@@Emilia-fl5ii I'm not a programmer, but I still say you can break any file apart anywhere you like, scan the smaller files, and then put them back together again. If he could do it manually, it can be done in whatever software code they used, and look for patterns. Whether or not they used 0's or "junk" might make it harder to figure out the malicious intent, it doesn't stop the ability to do the scan; he said file size is preventing the scan, so that's where I said it should start, rather than leaving users totally exposed. As with most things new, people lose sight that you can't take step 2 until you take step 1.

@@Emilia-fl5ii Well, look back then; the original poster broke the file apart, eliminated the 0's, put it back together, ran the virus scan on smaller file, all that manually. I read what you say, and see nothing you say that overrides what he did manually, meaning it should be possible to replicate his manual process. I wish he would come back in to the thread and get in this discussion with you. As I said, I'm not a programmer. However, on my job, I was usually the designated spec writer, working with programmers, who automated our manual reports. We never found anything that couldn't be done with software. Took time occasionally to get the right software, but nothing stopped us. I think this situation is a hole not being fixed. It's fixable, somehow. Address further questions to the original poster please, not me. You two can talk it out, I'll read your discussion with him.

@@Emilia-fl5ii Again, I said talk the technicals with the original poster, not directly to me. But from my point of view, if someone can do it manually, then it's do-able with programming. At least it would make it more difficult for the hacker to do mischief. Enough said.

I mean.. he got hacked a few years ago-

but I'm shocked that he is on the thumbnail on this vid...

u log in and it makes a cookie and when u exploit a cookie by injecting it (if u really wanna know and want an example id look up how to log into discord using discord token its the exact same) because when u inject a cookie the device/account thinks: "oh hey i know this one he doesnt need to do 2FA cuz i trust him :D"

but that trust wouldn't extend to sensitive operations like password changes? So how would they steal the account/lock you out?

@@flyhtz Aren't cookies linked to specific devices? If not, yes, that's quite a big security hole!

@@nickwoodward819 no it would not but as soon as they have the cookie they can change the password and email

@@javiTests they are not they are linked to browsers so u can inject them

@Appu26j I didn't do it on purpose lol I was one of the content creators that was tricked by the collaboration proposal emails about doing an ad for a game (more than 15k content creators got hit) Normally I ignore spam but this one seemed legit as the last one that seemed sketchy was legit and made a decent amount of money from doing it so it seemed like it was possibly real .......... Guess it wasn't 🤣