Jul 7, 2008

Javascript Postamble(); What Is It? - when viewing a web source code it appears
Free Web Hosting, No Ads > CONTRIBUTE > Computers > Computer Security Issues & Exploits

free web hosting

Javascript Postamble(); What Is It? - when viewing a web source code it appears

BuffaloHELP
Dec 9 2006, 01:17 PM
I was paranoid!

After all that cleaning my computer from spyware I realized the following codes were showing up constantly (everywhere I go) when I viewed a page source.

Just before </head> ends
HTML
<script language='javascript' src='http://127.0.0.1:****/js.cgi?pca&r=*****'></script>


And after </html>
HTML
<script language='javascript'>postamble();</script>


WHAT DA HECK IS IT??

It looks like some java script was calling from within my computer and *'s were changing constantly with each time I refreshed a webpage for a source code.

After few hours of searching, I found a possible answer. It seems like if you have firewall programs such as Zone Alarm Security or Check Point Integrity (which I have) these programs insert the above codes automatically for every web page you view.

I turned off my firewall, refreshed a webpage and viewed the source code again and this time it did not show.

We can all relex now, whew~ I thought something was still present in my computer. Just sharing this information if you ever wondered about these codes.

 

 

 


Reply

shadowx
Dec 9 2006, 02:29 PM
strange! Do you know why these firewalls add the code? Is it some sort of security thing? I dont think mine does it but ill be checking now!

Reply

midnitesun
Dec 9 2006, 02:54 PM
did you take a look at the script , i am more interested in what the script does

Reply

BuffaloHELP
Dec 9 2006, 03:23 PM
No such script exists in my computer or does anything. I believe, by the looks of the code, that it references a site/code and stores it to my firewall's log.

Reply

truefusion
Dec 9 2006, 11:22 PM
QUOTE(BuffaloHELP @ Dec 9 2006, 08:17 AM) *

After few hours of searching, I found a possible answer. It seems like if you have firewall programs such as Zone Alarm Security or Check Point Integrity (which I have) these programs insert the above codes automatically for every web page you view.

I turned off my firewall, refreshed a webpage and viewed the source code again and this time it did not show.

Yeah, that was the problem when i had Zone Alarm Pro Firewall. Like you, i didn't know it was the firewall, cause i had never seen it before. But later found it was the firewall. It would get annoying when trying to check if my pages were 100% XHTML valid, through Opera, and find out i always had one thing to take care of, and it was what the firewall injected into all pages. I got rid of Zone Alarm.

Reply

coreymanshack
Dec 11 2006, 12:37 AM
It sounds to me as if Zone Alarm doesn't know what they are doing. They certainly aren't catering to the web developers in that aspect. I wonder why they would need to add that peice of javascrip to the end of the web pages?

Reply


Got an Opinion! Express your Views! (no registration):-
Add your Reply/ Opinion/ Views/ Comments/ Suggestion/ Questions/ Queries etc.
Posts with decent grammar & English will be accepted and please refrain from profanities.
For asking a Question, We recommend you to sign-up (for free) so that you can track the topic easily.

Nature of your Post*: Opinion/ Reply/ Comments
Question/Query
Feedback to us.
       
Name   Email
Title/Question*

(Maximum characters: 10,000)
You have characters left.
Confirm Code:

Recent Queries:-
  1. - 141.83 hr back.
  2. script "after " - 306.07 hr back.
  3. postamble - 228.88 hr back.
  4. postamble() - 233.99 hr back.
  5. postamble(); - 466.37 hr back.
  6. html defining javascript postamble - 510.48 hr back.
  7. javascript read webpage source code - 554.56 hr back.
Similar Topics

Keywords : javascript, postamble, viewing, web, source, code, appears

  1. Mozilla: Firefox Plugin Shipped With Malicious Code
    (3)
  2. Javascript Botnet Code Leaked To Internet
    Big time warning (1)
    Well lets start off by saying these 2 people are complete morons. The first guy who had this thing
    loaded up on the internet so it could be shown on how it works and not securing it so it
    couldn't be downloaded. Does a home server ring a bell? guess not. second guy for downloading
    it and then uploading it to his site with the excuse that "he thought it would be useful to other
    security professionals looking for ways to illustrate just how dangerous a scripting attack can be."
    Now this code has been found on several websites and now could be use to hijack web brow....
  3. Attack Through Javascript.
    Javascripts on a webpage is enough to attack. (14)
    Malicious JavaScript can be embedded in a Web page and will run without warning when the page is
    viewed in any ordinary browser. It will bypass security measures such as a firewall because it runs
    through the user's browser. So if you are suspecting any malicious ting while " simply
    browsing", just close the browser or go to another website. If the symptom stops, be sure that the
    site was attempting(or successfully done) an attack.....
  4. Microsoft Windows Dhcp Client Service Remote Code Execution Vulnerability
    (0)
    What it is A exploit in the buggy OS of XP has been found, this one concering DHCP. OS effected
    Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows
    2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced
    Server SP4 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Datacenter Server SP1
    Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP3 Microsoft
    Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Professional Microsof....
  5. Teenager Claims To Find Code Flaw In Gmail
    (23)
    QUOTE A teenage blogger claims to have discovered a flaw in Google's Gmail service that
    allows JavaScript to run, potentially allowing a malicious hacker to gather e-mail addresses or
    compromise an account. The supposed flaw may already have been fixed, however. Advertisement: The
    teenager identifies himself in his blog as a 14-year-old named Anthony. His entry about Gmail is
    here. He wrote that he was trying to e-mail JavaScript code from a Yahoo account to a G-mail
    account. The code will run in a preview pane, he wrote. But if the code is mailed from one Gma....
  6. S Si/e Found In Source Of Word-created Web Pages!
    URGENT ATTENTION REQUIRED if using word! (8)
    Major Security Issue Exists in Source of Word-Created Web pages! This is an URGENT
    news bulletin to anyone who owns a website!!! Problem: A serious security exploit
    exists in the source of these documents that allows anyone who is able to view the source of the
    page to gain personally identifiable information relevant to the document. This is due to Microsoft
    Word's method of dealing with web pages - Microsoft Word, despite being able to create Web
    Pages/Templates, does not actually understand their format, and so it stores the Word progra....
  7. Fix To Problem: Open Source
    (5)
    I've used various Open-source programs over time. I used Knoppix to revive an almost-dead
    computer; 7-Zip to open .tar.gz files under Window$; and the Mambo CMS under PHP, Apache and
    Linux for my web site. I've found most open-source programs to be faster, leaner and easie to
    use than their commercial counterparts. Here's my reccomendation: use open-source software. Bugs
    are patched faster, there have more features, and much lower price tags (actually, free). You might
    have to do a little research to find these products; but once you do, they are worth ....
  8. Exploits Refrence
    Available source codes on NET (13)
    Hi all, I prefer to create a post here and send exploits all here, not in different posts ... Hope
    to enjoy /smile.gif' border='0' style='vertical-align:middle' alt='smile.gif' /> :: ProZilla
    "ftpsearch" Results Handling Client-Side Buffer Overflow Exploit #include #include #include
    #define OVERFLOW (1 #define SLEDSIZ (1 #define RETADDR 0x806977a+SLEDSIZ/2 #define OUTPUT
    "AdvResults.asp" /* * prozilla bug, found while auditing for gentoo bug #70090 *
    -taviso@gentoo.org */ /* execve() /bin/id */ unsigned char shellcode =
    "\x33\xc9\x83\....
  9. [exploit] Phpbb 2.0.15 "viewtopic.php"
    Remote PHP Code Execution Exploit (3)
    phpBB 2.0.15 "viewtopic.php" Remote PHP Code Execution Exploit #!/usr/bin/pyth0n print
    "\nphpBB 2.0.15 arbitrary command execution eXploit" print " 2005 by rattle@awarenetwork.org"
    print " well, just because there is none." import sys from urllib2 import Request, urlopen from
    urlparse import urlparse, urlunparse from urllib import quote as quote_plus INITTAG = ' '
    ENDTAG = ' ' def makecmd(cmd): return reduce(lambda x,y: x+'.chr(%d)'%ord(y),cmd
    ,'chr(%d)'%ord(cmd )) _ex = "%sviewtopic.php?t=%s&highlight=%%27." _ex += ....


      10. Looking for javascript, postamble, viewing, web, source, code, appears
Searching Video's for javascript, postamble, viewing, web, source, code, appears
advertisement



Javascript Postamble(); What Is It? - when viewing a web source code it appears



 

 

 

 

ADD REPLY / Got an Opinion! Remove these ADs! RAPID SEARCH! Free Web Hosting [X]
Express your Opinions, Thoughts or Contribute more info. to help others.
Ask your Doubts & Queries to get answers, So that "Together We can help others!" 		Register FREE for AD-FREE forum, Create your own topics, Ask Questions, track topics, setup subscriptions & notifications and Get a Free Website w/ Email and FTP.
500MB Space *No Ads*, CPanel, FTP, PHP, MySQL, EMails - 100% FREE