T G S has released public hacks for combat arms but
There is a Win32:IRCBot-AND [Wrm] in ca_dll_public.flt
I'd look to remove it if you ran this program so that your connection isn't being used to DDoS people and or websites. Which may lead to your IP address being reported.
HEUR/Crypted : One of the T G S used a known binder / crypter to hide the main functions of the program to make the virus less noticeable. Failed obviously because it detected the binder. WHY do you think only 9/36 virus scans on VirusTotal detected it, because they crypted it. (Well, tried) Seriously, go compile an RBot right now and Win32:IRCBot-AND would show up and Backdoor.Win32.Rbot.boq would show up and it would be detected by every virus scanner since it is extremely old. Norton sucks but not so much that it won't detect RBot, the only reason it doesnt detect it here is because like I said, they used a binder to hide the virus and sadly it worked with Norton, and 27 other virus scanners. All they used was a somewhat decent binder to work on 27 virus scanners and only 25% showed that it is a virus. In this situation all someone from *** can say is : Virus is showing up because its a game hacking tool, it isn't dangerous, why do you think 27 virus scanners don't detect it as anything bad? That is how they got you, game over, literally.
PAK_Generic.001 : WOW, how obvious can you get. Usually this is an email trojan. In this situation this part that detected here is the fact that the bot is sending mails out from your computer to the person that infected you with logs of your passwords, etc.
This has been provided with proof i looked to in that file and i was like wtf IT WAS TRUE
You guys are the second forum that knows it now be happy and ban all those TGayS from the forum ^^
If you do not believe me download it your self and check it out
if you still do not believe than that is bad luck for you
Last edited by Hadouch; 10-07-2008 at 10:18 AM.
The Following 2 Users Say Thank You to Hadouch For This Useful Post: