chrissy (06-08-2009),GoogleCanada (06-08-2009),Mat17 (06-08-2009),NeverBorn (06-07-2009),twisizz (06-07-2009)
As you already know you've basically been keylogged...I don't know where the keylogger goes because I opened it with sandboxie but I do know the name of it and what it logs.
I believe the file is called RegHive, you cannot scan or open because it is "protected", and there is a hidden .txt that comes along with that.
(Sorry for the length) I do not know how to delete yet but I am working on it. ^^
============================
Password Stealer
============================
Firefox Password
============================
--------------------
--------------------
============================
IE7 Password
============================
============================
MSN Password
============================
-----------------------------
Username:
Password:
============================
NOIP Password
============================
USERNAME: Password:
============================
STEAM ACCOUNT
============================
============================
ICQ
============================
============================
Trillian
============================
============================
Miranda
============================
============================
AndRQ
============================
============================
Bat
============================
============================
RAS
============================
============================
Windows Total Commander
============================
============================
AIM PASSWORD
============================
USERNAME: Password:
============================
File Zilla
============================
============================
CDKEY
============================
Microsoft
ProductName:
CSDVersion:
RegisteredOwner:
RegisteredOrganization:
--------------------
CALL OF DUTY
Serial:
United Offensive:
Call of Duty 2:
Call of Duty 4:
Call of Duty 5:
Call of Duty WAW:
--------------------
ZoneAlarm
Serial:
Username:
Company:
--------------------
WS FTP
Serial:
--------------------
Winamp
regname:
Serial:
--------------------
Westwood Alarmstufe Rot 2
Serial:
--------------------
VMware
VMware Workstation 5.0:
VMware Workstation 6.5.1:
VMware Server:
--------------------
Unreal Tournament
Unreal Tournament 2004:
Unreal Tournament 2003:
--------------------
Tuneup
TuneUP 2009:
TuneUP Company:
TuneUP UserName:
TuneUP 2008:
TuneUP Company:
TuneUP UserName:
TuneUP 2007:
TuneUP Company:
TuneUP UserName:
TuneUP 2006:
TuneUP Company:
TuneUP UserName:
--------------------
@Stake L0pht CrackLC5
@Stake Serial:
--------------------
3D Mark
Username:
Key:
--------------------
Acronis True Image
Serial:
--------------------
ACDSee
Username:
licency:
Username:
licency:
Username:
licency:
--------------------
Adobe Acrobat
Adobe Acrobat 6:
Adobe Acrobat 7:
Adobe Acrobat 8:
Adobe Acrobat 9:
--------------------
Borland
Delphi 6:
Delphi 6:
Delphi 7:
Delphi 7:
--------------------
Photoshop 7.0
Serial:
--------------------
Adobe Premiere
Serial:
--------------------
Advanced Direct Remailer
2.20:
2.18:
--------------------
After Effects
Username:
Company:
Serial:
--------------------
Alcohol
Username:
Password
Company:
Serial:
--------------------
Anno1701
Serial:
--------------------
Autocad
serial 2000:
serial 2002:
serial LT 2000:
serial LT 2005:
serial LT 2002:
serial 2008:
serial LT 2008:
serial 2007:
serial LT 2007:
serial LT 2006:
serial Electrical 2007:
serial Electrical 2006:
serial Electrical 2005:
serial Mechanical 2007:
serial Mechanical 2006:
serial Mechanical 2005:
3ds Max 8:
3ds Max 7:
serial Architectural Desktop 2007:
serial Architectural Desktop 2006:
serial Architectural Desktop 2005:
Building Systems 2007:
--------------------
Axailis IconWorkshop 6.0
Serial:
--------------------
Battle Field
Serial 1942:
Serial 1942 The Road to Rome:
Serial Battlefield 2:
Serial Battlefield 2142:
Serial 1942 Secret Weapons of WWII:
Serial Vietnam:
--------------------
SnapStream
Serial Beyond TV:
Serial Beyond Media:
--------------------
BitComet Acceleration Patch
Serial:
--------------------
Black and White
Serial:
--------------------
Chrome
Serial:
--------------------
Generals
Serial:
ZeroHour:
Command and Conquer:
--------------------
tiberian sun
Serial:
--------------------
Red Allert
Serial :
Serial red allert 2:
Serial Yuri's Revenge:
--------------------
Company of Heroes
Version:
Serial:
--------------------
Act Of War High Treason
Serial:
Serial:
--------------------
Splinter Cell
Chaos Theory:
Pandora Tomorrow:
--------------------
AnyDVD
Serial:
--------------------
Dawn of War
Dawn of War:
Dawn of War II Beta:
Dawn of War - Dark Crusade:
Dawn of War Soulstorm:
Dawn of War Winter Assault:
--------------------
Medieval Total War
Serial:
--------------------
Nero
Nero 8:
Nero 7:
Nero 9:
--------------------
Edit: Now im not sure if it is RegHive, that might just be a file that sandboxie creates....suspicious that it does not delete though, can somebody double check for me?
Last edited by mastowns; 06-07-2009 at 02:11 PM.
chrissy (06-08-2009),GoogleCanada (06-08-2009),Mat17 (06-08-2009),NeverBorn (06-07-2009),twisizz (06-07-2009)
If you have downloaded this hack,
try system restoring.
it could work.
sytem restoring will do no anything in the slightest bit, i downloaded this too but i have a bunch of antiviruses and got rid of it
yeah i did download this,
but i got anti virus on and it detected it the minute i was going to open it,
it came with file secuirity then anti virus found it.
well i didnt download cuz i aint stupid yeah me
[IMG]https://img.photobucke*****m/albums/v344/eondestiny/1zx6ttt.gif[/IMG]
MY BRUTES
https://monstaking1234.mybrute.com
https://eefwqt.mybrute.com
THANK ME IF I HELP
Sighhh poor choobies. Just wait for a trusted member to release...
Dested (06-07-2009)
The .txt is binded with the .exe, and another copy in your system32 file for vista.
Hope this helps xP
i warned everyone they never listen lol
Well just enable seeing hidden files disable the process or go to the prefetch folder and delete the viruses name end the process(again) and delete the file
That easy
I told everyone that it was bullshit, just wait till people dont read the posts on the topic and just download it strad away and get pwnt. Lol
Anthh.
can we have the name of the key logger so I can search my comp...?
Lol after reading this i did a spyware scan and found it.. it was called h@tkeysh@@k and da other 1 was called Grokster..find it in c:\windows\system32 and put view hidden files..be very careful on wut u delete...or you could always just get a good anti-virus... hope it helps..
{CLICK} Thanks if i Helped!!
Reputation will be nice too.
[IMG]https://i164.photobucke*****m/albums/u32/fisher1000/Shootthedog.jpg[/IMG]
Get your Free PS3 4 Free!