Argonath RPG Police Department

General => Police Gallery => Pictures => Topic started by: Bueto_Fishcop on May 14, 2010, 17:33:13 pm

Title: Hacker on My PC ?
Post by: Bueto_Fishcop on May 14, 2010, 17:33:13 pm
I need your help, some seconds ago , i just watched an video on Youtube Suddenly an REMOTE CONSOLE called GHOSTCYBER  opened , Green font, black background where the following Dialog were :
Client : Muahaha
Server (me) : Are you a hacker ?
Client : No just an Remote Administrator.
....
After that my Computer Frozed .
i couldn't make an Screenshot so i just made a Photo wich i will upload soon.
Anyone know something about that :O ?
Title: Re: Hacker on My PC ?
Post by: RayCarter on May 14, 2010, 17:42:40 pm
Wake up, Bueto...

The Matrix Has You...

lol, but seriously, I can't figure out how YouTube could access your computer.
It sounds like Spyware which sometimes comes from websites with Warez Files.
Title: Re: Hacker on My PC ?
Post by: Sago on May 14, 2010, 21:04:25 pm
Hello Bueto. You sure have been a bad boy.. What you have is a malicious remote administration tool or RAT installed on your computer. These are usually associated by downloading pornographic content or pirated/backdoored software. I cannot help you much becuse I am on my iphone as we speak. However, please google "how to remove a RAT". I will help you when I am home in a few hours.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 14, 2010, 22:13:43 pm
Quote from: Kirby on May 14, 2010, 21:04:25 pm
Hello Bueto. You sure have been a bad boy.. What you have is a malicious remote administration tool or RAT installed on your computer. These are usually associated by downloading pornographic content or pirated/backdoored software. I cannot help you much becuse I am on my iphone as we speak. However, please google "how to remove a RAT". I will help you when I am home in a few hours.
Thanks Kirby <3
I just downloaded GTA SA No-Cd Crack .
Title: Re: Hacker on My PC ?
Post by: Chief J. Schappell on May 15, 2010, 00:08:06 am
Bueto, I think the timing was coincidence, but yes, you have a hacker on your system if a remote console is speaking with you.
Title: Re: Hacker on My PC ?
Post by: Sago on May 15, 2010, 00:49:37 am

Please download Malwarebytes' AntiMalware.

Double click mbam-setup.exe to install the application.

    * Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
      The scan may take some time to finish,so please be patient.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Make sure that everything is checked, and click Remove Selected.
    * When disinfection is completed, a log will open in Notepad and you may be prompted to restart. Restart if it tells you to.
    * The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    * Copy and paste the entire report in your next reply.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 11:38:49 am
Thanks i will. 
I also have Virtumonde ,
Trojan Background downloader,
Keylogger,
And some more found by spyware Doctor , wich can't be deleted.
At every startup it takes long time .
A message appears "Personal Options are loading". Any Solution how to remove that?
I will try the Program now.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 12:31:57 pm
I must restart my Computer now .
Don't wondering why i have Cheat engine :)
I have it for the Flash game : http://www.schuelervz.net/Gadgets/Canvas/101510/profileId/q9LU_f1jQiKUn131SUs8s5bDsuHkc0nytW5-Ap9BREM
Here is the Log :


Malwarebytes' Anti-Malware 1.46

Datenbank Version: 4103

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

15.05.2010 12:28:01
mbam-log-2010-05-15 (12-28-01).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 143797
Laufzeit: 27 Minute(n), 43 Sekunde(n)

Infizierte Speicherprozesse: 1
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 10
Infizierte Registrierungswerte: 19
Infizierte Dateiobjekte der Registrierung: 4
Infizierte Verzeichnisse: 29
Infizierte Dateien: 291

Infizierte Speicherprozesse:
C:\WINDOWS\system32\winhost.exe (Trojan.Agent) -> Unloaded process successfully.

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0djy06x7-r48m-0ch3-6575-nb785g0mvuy3} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0mmpa7d4-fmg2-mxm4-81nc-qg7h7a287nq0} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{b3k0o322-v13l-k3ei-307p-fjk0ri4q4gae} (Generic.Bot.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{dqpl3h5i-16nr-80j5-mg3d-4eglyv8yjrnp} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{q8xsp2k5-1el4-q2an-1q82-etvrqefi0f3l} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Cheat Engine (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Refog Software (Refog.Keylogger) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ntndis (Rootkit.Agent) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\windows task runner (Worm.P2P) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows task runner (Worm.P2P) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winlogon (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows firewall (Spyware.Passwords) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\shell (Worm.AutoRun) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows firewall (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows firewall (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\aarc (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\policies (Backdoor.Bot) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\policies (Backdoor.Bot) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\microsoft host (Trojan.Agent) -> Delete on reboot.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\microsoft windows hosting service login (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\uid (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Backdoor.IRCBot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Backdoor.IRCBot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Backdoor.IRCBot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\microsoft windows hosting service login (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\microsoft windows hosting service login (Backdoor.Bot) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Rootkit.Agent) -> Data: c:\windows\system32\drivers\ntndis.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Rootkit.Agent) -> Data: system32\drivers\ntndis.exe -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (explorer.exe,C:\RECYCLER\S-1-5-21-7662903068-7285210882-692705969-3770\rundll32.exe) Good: (Explorer.exe) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (Explorer.exe C:\WINDOWS\system32\drivers\ntndis.exe) Good: (Explorer.exe) -> Quarantined and deleted successfully.

Infizierte Verzeichnisse:
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\1 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\2 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\CPDA (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\CPDM (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\bin (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\bin2 (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Save (Adware.WhenU) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kazaabackupfiles (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lowsec (Stolen.data) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Images (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi (Backdoor.Bot) -> Quarantined and deleted successfully.

Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 12:33:17 pm
Infizierte Dateien:
C:\Programme\Windows Update\Graphic.exe (Generic.Bot.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\install\server.exe (Generic.Bot.H) -> Quarantined and deleted successfully.
C:\WINDOWS\install\server.exe (Generic.Bot.H) -> Delete on reboot.
C:\WINDOWS\system\services.exe (Generic.Bot.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\makes.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\BoTtTTT.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\lsass.exe (Spyware.Passwords) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\avscantest.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\bntzrmy.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\dcpcrkp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\dqgjfhh.exe (Spyware.Passwords) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\ysnirmf.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1644491937-1383384898-1957994488-1004\Dc466.exe (Worm.Autorun) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1644491937-1383384898-1957994488-1004\Dc204\pGc.Privat.ESP.for.CLV.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1644491937-1383384898-1957994488-1004\Dc298\instanthook.dll (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-7662903068-7285210882-692705969-3770\rundll32.exe (Worm.Autorun.B) -> Delete on reboot.
C:\WINDOWS\system32\lusgs.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Drivers\ntndis.sys (Backdoor.Sdbot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\administrator.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\angelina.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\AquaNox2 Crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\AVP_Crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\Battlefield1942_bloodpatch.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\britney_spears.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\C&C Generals_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\celeb.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\cracker_jack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\cracking_tools.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\FIFA2003 crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\free_root.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\free_shell.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\get_admin.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\hacking.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\hotmail_hack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\kazza_hack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\McAfee.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\msn.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\NBA2003_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\norton.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\password_stealer.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\phreaking.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\phreaking_tools.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\Porn.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\remoter.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\root.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\serial.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\sms.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\soldier_of_fortune_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\Sygate_all_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\sygate_firawall_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\tiny_personal_firewall_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\Unreal2_bloodpatch.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\UT2003_bloodpatch.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\xxx.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KazaaBackupFiles\zoneallarm_pro_crack.exe (Worm.P2P) -> Quarantined and deleted successfully.
C:\WINDOWS\Drivers.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\BotTtTtT.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\M0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\1\D0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\1\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\2\D0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\2\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\All Users.WINDOWS\Anwendungsdaten\MPK\CPDM\cpfm.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\ad.dat (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\bbchk.exe (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\ntdat.trn (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\ub.dat (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\uninst.exe (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\bin\apuc.dll (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Bargain Buddy\bin\bargains.exe (Adware.Bargain.Buddy) -> Quarantined and deleted successfully.
C:\Programme\Save\ReadMe.txt (Adware.WhenU) -> Quarantined and deleted successfully.
C:\Programme\Save\Save.exe (Adware.WhenU) -> Quarantined and deleted successfully.
C:\Programme\Save\save.htm (Adware.WhenU) -> Quarantined and deleted successfully.
C:\Programme\Save\SaveUninst.exe (Adware.WhenU) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lowsec\local.ds (Stolen.data) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lowsec\user.ds (Stolen.data) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lowsec\user.ds.lll (Stolen.data) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\French.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\German.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\icon_1.ico (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Mpk.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\MPK.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Mpk64.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\MPK64.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\MPKView.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Romanian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Spanish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\sqlite3.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\unins000.dat (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\unins000.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\need_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 12:35:23 pm
C:\WINDOWS\system32\MPK\Help\English\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\update.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\English\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\need_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\update.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\German\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Help\Spanish\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Images\english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Images\german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Images\russian.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\MPK\Images\vista_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 12:36:55 pm
C:\WINDOWS\system32\MPK\Images\xp_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\allochook.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Black.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\CEHook.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\ceregreset.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Cheat Engine.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\CheatEngine.chm (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\commonmodulelist.txt (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\dbk32.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\dbk32.sys (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\dbk64.sys (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\dxhook.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\EmptyDLL.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\EmptyProcess.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Kernelmoduleunloader.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\LockedString.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Locktexture.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\movementtexture.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\speedhack.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Systemcallretriever.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\systemcallsignal.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\targettexture.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\TextureString.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Tutorial.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\ucc12.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\undercdll.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\unins000.dat (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\unins000.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\UnLockedString.bmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\vmdisk.img (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\changeregtest.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\gettime.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\sleepcall.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\step10.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\testscript.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\example scripts\timermess.CEC (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\algorithm (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\assert.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cctype (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\classlib.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cmath (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cstdarg.txt (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cstdio (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cstdlib (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\cstring (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\foreach2.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\for_each.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\fstream (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\fstream.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\glib.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\header.cpp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\io.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\iostream (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\iostream.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\list (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\list.new (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\listx (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\malloc.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\map (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\math.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\new-stdlib.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\old-string (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\regexp.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\rx++.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\self.imp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\sstream (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\stdarg.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\stddef.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\stdio.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\stdlib.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\string (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\string.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\strstrea.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\strstream.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\test-stdarg.uc (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\time.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\turtle.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\ucri.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\uc_except.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\uc_save.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\uc_timer.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\vector (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\vector.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\winbase.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\windows.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\wininet.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\winuser.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\yawl.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\_end_shared.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\include\_shared_lib.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\cepluginsdk.h (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\cepluginsdk.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\DebugEventLog.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\DebugEventLog.cfg (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\DebugEventLog.dpr (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\DebugEventLog.res (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\exportimplementation.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\frmEventLogUnit.dfm (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\DebugEventLog\src\frmEventLogUnit.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\cepe.cfg (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\cepe.dof (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\cepe.dpr (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\cepe.res (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\filterform.dfm (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\filterform.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\hexedit.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\mainunit.dfm (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\mainunit.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\inject\src\packetfilter.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\injector.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\packeteditor.cfg (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\packeteditor.dof (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\packeteditor.dpr (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\packeteditor.res (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example packet editor\src\Unit1.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c\example-c.c (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c\example-c.def (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c\example-c.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c\example-c.sln (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-c\example-c.vcproj (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\exampleplugin.cfg (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\exampleplugin.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\exampleplugin.dof (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\exampleplugin.dpr (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\exampleplugin.res (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Programme\Cheat Engine\Plugins\example-delphi\Unit1.pas (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\mdll.dll (Malware.Trace) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Eigene Dateien\SYS\syshost.exe (Trojan.Agent) -> Delete on reboot.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\cglogs.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Lokale Einstellungen\Temp\IEPASS.abc (Malware.Trace) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Lokale Einstellungen\Temp\removeMe4785.bat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Lokale Einstellungen\Temp\XxX.xXx (Malware.Trace) -> Delete on reboot.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\csrss.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Norman.NORMAN-D096F012\Anwendungsdaten\lsass.exe (Trojan.Delf) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sdra64.exe (Spyware.Zbot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\winhost.exe (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\winupdater.exe (Backdoor.Rbot) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\explorer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\alg.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Drivers\ntndis.exe (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\infocard.exe (Backdoor.IRCBot) -> Quarantined and deleted successfully.
C:\WINDOWS\wintybrd.jpg (Malware.Trace) -> Quarantined and deleted successfully.
Title: Re: Hacker on My PC ?
Post by: GiacJr on May 15, 2010, 12:39:10 pm
WTF!!!
You SERIOUSLY need to take better care of your computer!!!
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 12:47:00 pm
Quote from: GiacJr on May 15, 2010, 12:39:10 pm
WTF!!!
You SERIOUSLY need to take better care of your computer!!!
Why?
*scared* :cry:
Kirby? I love you :)
My Computer is running perfect now :) .
Title: Re: Hacker on My PC ?
Post by: Pazienza on May 15, 2010, 13:10:27 pm
Quote from: GiacJr on May 15, 2010, 12:39:10 pm
WTF!!!
You SERIOUSLY need to take better care of your computer!!!
LOL +1

Bueto, you had keyloggers, trojans, backdoors, worms, bots and every known virus on your computer.. Seems like half earth could know what you were doing at any time of the day..
Title: Re: Hacker on My PC ?
Post by: Lionel Valdes on May 15, 2010, 13:15:54 pm
OMG YOU HAVE MORE THAN 4K VIRUSES ON YOUR COMPUTER?

LOLWTF
Title: Re: Hacker on My PC ?
Post by: Leroy Hudson on May 15, 2010, 13:50:13 pm
One long word.

LOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOL  :rofl:
Title: Re: Hacker on My PC ?
Post by: Cruel Cooking Chef Curry Alterlis on May 15, 2010, 14:19:10 pm
OMGWTFBBQ  :eek:
I vote you to be in Guiness Book!
Title: Re: Hacker on My PC ?
Post by: J. Prilo on May 15, 2010, 14:40:45 pm
Maybe that's how the hacks got installed on your computer?
I woke up a few days ago and noticed a strange map in my GTA, I've deleted it, tho.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 15:29:36 pm
Don't know ..
But guys, do you want to help me in This Topic or just laugh?.
My computer is clear now , but wayne.
Title: Re: Hacker on My PC ?
Post by: Sago on May 15, 2010, 16:47:41 pm
 :wow: Bueto that is a unbelievable amount of viruses. I recommend you download ESET NOD32 Antivirus 4 or Smart Security 4 to replace your current anti virus program to prevent this from happening again in the future..

Please scan again with malwarebytes with a FULL SCAN and post the log here once again.

You can find it ESET here: www.eset.com
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 16:55:58 pm
:O Thanks that you helped me out ,
Without you my Identity would be everywhere.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 18:38:17 pm
Omg , I really thought the Virus is gone,
Some seconds ago i just played CSS and suddenly my game closes and An Txt Data opened with following message :
Couldn't copy because my Computer frozed.
You've been hacked By : ******
Visit my Facebook : *********
Title: Re: Hacker on My PC ?
Post by: J. Prilo on May 15, 2010, 18:43:27 pm
Re-formate the computer. Worked for me.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 18:45:49 pm
Re-Formate 4TB :)
Title: Re: Hacker on My PC ?
Post by: Sago on May 15, 2010, 18:46:39 pm
If all other attempts fail, please reformat your OS.
Title: Re: Hacker on My PC ?
Post by: Cane on May 15, 2010, 19:35:03 pm
LOL wow that's a shitload
Title: Re: Hacker on My PC ?
Post by: AndrewT on May 15, 2010, 20:42:25 pm
lol Bueto you suck, ever heard of re-installing Windows? I tough so ...

I highly doubt you were a FBI Division Assistant.

Grow up kid...
Title: Re: Hacker on My PC ?
Post by: J. Prilo on May 15, 2010, 21:12:16 pm
Quote from: AndrewT on May 15, 2010, 20:42:25 pm
lol Bueto you suck, ever heard of re-installing Windows? I tough so ...

I highly doubt you were a FBI Division Assistant.

Grow up kid...

I wouldn't take the easiest choice either. It may happen he got some information or items he want's to have.
Anyhow, he actually was an FBI Division Assistant.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 15, 2010, 21:52:17 pm
Quote from: Almeida on May 15, 2010, 21:12:16 pm
Quote from: AndrewT on May 15, 2010, 20:42:25 pm
lol Bueto you suck, ever heard of re-installing Windows? I tough so ...

I highly doubt you were a FBI Division Assistant.

Grow up kid...

I wouldn't take the easiest choice either. It may happen he got some information or items he want's to have.
Anyhow, he actually was an FBI Division Assistant.
Actually i was an FBI Division Chief, But nevermind ,
AndrewT You are the kid, Insulting like an Not teached "Ganqsta" i have 4 Hard drives with 4 TBytes ,The most of the Thing is very recommoned for my Following IRL Career  ,Ever heard something from that?
Title: Re: Hacker on My PC ?
Post by: Lionel Valdes on May 16, 2010, 14:44:45 pm
Why the hell is this topic on Pictures board?

requesting a move.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 16, 2010, 19:26:52 pm
Quote from: Fc. Arnold Jason Shwanzi on May 16, 2010, 14:44:45 pm
Why the hell is this topic on Pictures board?

requesting a move.
Picture will come soon .
Title: Re: Hacker on My PC ?
Post by: Sago on May 17, 2010, 17:34:29 pm
Please do a full scan..and post theresults once again
Title: Re: Hacker on My PC ?
Post by: Chief J. Schappell on May 18, 2010, 09:52:22 am
Quote from: Pazienza on May 15, 2010, 13:10:27 pm
Quote from: GiacJr on May 15, 2010, 12:39:10 pm
WTF!!!
You SERIOUSLY need to take better care of your computer!!!
LOL +1

Bueto, you had keyloggers, trojans, backdoors, worms, bots and every known virus on your computer.. Seems like half earth could know what you were doing at any time of the day..
Holy f**k! In all my years as a computer security specialist, I've NEVER seen a computer so badly infected...and I've seen some pretty f**ked up systems! Damn dude, get some security software, turn on automatic updates, and stay off those bad sites!

Personally, this works for me, but I say get Avast 5, Windows Defender, and make sure Windows is up to date, although at this point I would also recommend the format and reinstall of Windows. Your system is so badly infected that I don't think it would be safe to trust it anymore. Your Windows has obviously been corrupted and hacked to all hell, and repairing from this may still leave dangerous traces around that could potentially cause you IRL issues in the future if they attempt to use it to steal your identity.

Also, enlighten yourself. Begin that here:
http://netsecurity.about.com/cs/disasterrecovery/a/aa061603.htm
READ IT.
Title: Re: Hacker on My PC ?
Post by: battle on May 18, 2010, 11:51:12 am
And a note to sugars, the virus or whatever it is virtumonde, downloads shitload of viruses and f**ks up your're computer too, the best way to get rid of it, i still do think it's in the system, i will recommend a format and i mean a TOTAL format.
Title: Re: Hacker on My PC ?
Post by: Chief J. Schappell on May 18, 2010, 11:57:36 am
Quote from: battle on May 18, 2010, 11:51:12 am
And a note to sugars, the virus or whatever it is virtumonde, downloads shitload of viruses and f**ks up your're computer too, the best way to get rid of it, i still do think it's in the system, i will recommend a format and i mean a TOTAL format.
I agree. Virtumonde, also known as Vundo virus, is a f**king PAIN IN THE f**kING ASS to get rid of. Had to deal with it once and holy shit, what a bad girl to remove.
Title: Re: Hacker on My PC ?
Post by: [R*]EliteTerm on May 18, 2010, 12:32:10 pm
http://en.wikipedia.org/wiki/Vundo

Reformatting is the only option..
Title: Re: Hacker on My PC ?
Post by: battle on May 18, 2010, 18:02:25 pm
Side note i HAD virtumonde on my old comp and i got it becuse a hacker planted it. I got rid of it tro when i formatted the comp. And a note about antivirus/firewall, i haven't had any problems since i started using comodo antvirus/firewall even the free version is good! the save i am on now i haven't been needed to format for the past 6 months! And i haven't seen a SINGLE virus either.
Title: Re: Hacker on My PC ?
Post by: Sago on May 18, 2010, 19:41:19 pm
I haven't had any serious threats on my computer since 2008
Title: Re: Hacker on My PC ?
Post by: Pazienza on May 20, 2010, 20:53:52 pm
Quote from: Kirby on May 18, 2010, 19:41:19 pm
I haven't had any serious threats on my computer since 2008
I haven't since 2007, once before 2007 I got a keylogger, but never had any trojan or such. Maybe it's because I have 3 Antivirus (:
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 21, 2010, 07:34:15 am
I couldn't get online last 2 days .
They got my Online-Bank Account .
And stole 57,83 € From my Online Banking account.
I re-formated my Computer once.
Title: Re: Hacker on My PC ?
Post by: battle on May 21, 2010, 08:12:27 am
Quote from: Bueto_Fishcop on May 21, 2010, 07:34:15 am
I couldn't get online last 2 days .
They got my Online-Bank Account .
And stole 57,83 € From my Online Banking account.
I re-formated my Computer once.

If that happend go to your're bank and find out where it went, they should be able to get the money back.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 21, 2010, 12:08:19 pm
I already phoned to it, it gone to "australia"
But It was an Company, wich they won't tell me :O
Title: Re: Hacker on My PC ?
Post by: Oliver Daniels on May 23, 2010, 10:18:28 am
Quote from: battle on May 21, 2010, 08:12:27 am
your're bank

wut
Title: Re: Hacker on My PC ?
Post by: Ed_Lane on May 23, 2010, 10:41:38 am
ok well idk about where you live but in Canada

it is the LAW for the bank to tell all your info to you of where you money went as soon as you say "Money" "gone or went" in the same sentance it puts up a red flag on your acct and they check stuff


Title: Re: Hacker on My PC ?
Post by: Chief J. Schappell on May 24, 2010, 06:10:52 am
Quote from: Ed_Lane on May 23, 2010, 10:41:38 am
ok well idk about where you live but in Canada

it is the LAW for the bank to tell all your info to you of where you money went as soon as you say "Money" "gone or went" in the same sentance it puts up a red flag on your acct and they check stuff



I agree. I suggest contacting your country's equivalent to the FBI or FDIC.
Title: Re: Hacker on My PC ?
Post by: Bueto_Fishcop on May 26, 2010, 21:00:09 pm
I can't get only for some days, hardware is damaged because of the hacker. if someone asks , please tell him the reason.
SimplePortal 2.3.7 © 2008-2025, SimplePortal