|
You last visited: Today at 12:38
Advertisement
Ramnit - Explanation - Protection without antivirus - Antivirus Reccomendation
Discussion on Ramnit - Explanation - Protection without antivirus - Antivirus Reccomendation within the SRO PServer Guides & Releases forum part of the SRO Private Server category.
02/14/2013, 10:54
|
#1
|
elite*gold: 60 
Join Date: Feb 2012
Posts: 3,942
Received Thanks: 6,475
|
Ramnit - Explanation - Protection without antivirus - Antivirus Reccomendation
Hello epvp members  ,
It's been while since I've presented something for this community but here we go.
Throughout the days server files have been released everybody have been suffering from that virus called Ramnit which is seriously annoying and destroys almost everything in your pc because it simple ***** everything including exe files / html files etc.
I.Summary
A program that secretly and maliciously integrates itself into program or data files. It spreads by integrating itself into more files each time the host program is run.
II.Additional Details
Ramnit infects EXE, DLL and HTML files it can also get on your pc via removable drives.
III.Protection
IV.What's inside this registry file
Code:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WASAntidot]
"disabled"="1"
Explanation : Simple it creates "WASAntidot" key under Microsoft folder with "disabled" = 1
The malware writer made that thing in order to protect a machine from infection, by setting the registry key mentioned above and value -it was probably for testing purpose to not to get his own pc infected-
V.Antivirus Recommendation
I recommend you to use ESET 6 and you can find its keys on those websites easily
pm me if you need nod32 serial websites
The reason why I recommend ESET 6 it has saved me already thousand of times from those websites infected all over sro scene plus you can find the keys easily
VI.Final Word
Please don't flame here
|
|
|
|
02/14/2013, 11:05
|
#2
|
elite*gold: 1
Join Date: Nov 2011
Posts: 2,532
Received Thanks: 1,429
|
qood work bro
|
|
|
|
|
02/14/2013, 11:18
|
#3
|
elite*gold: 0
Join Date: Jan 2013
Posts: 1,264
Received Thanks: 1,047
|
I dled ESET 6 a week ago or so, found a ton of ramnit viruses, deleted them.
|
|
|
|
|
02/14/2013, 11:52
|
#4
|
Chat Killer In Duty
elite*gold: 5
Join Date: May 2008
Posts: 16,310
Received Thanks: 6,470
|
for the record
it infects png as well
check some servers, the rammit is present on their favicon.png
removed the "key" website since that is warez
Can I recommend?
I recommend Kaspersky
Why?
Well, it is cool, has already saved this account(Epvpers) from being stolen by troyans
and, even if I'm a pirate on some way, it i pretty cheap($19 3pc/year)
Proof:
|
|
|
|
|
02/14/2013, 11:53
|
#5
|
elite*gold: 0
Join Date: Sep 2011
Posts: 642
Received Thanks: 193
|
Where's Credits to Ant?
Quote:
Originally Posted by PortalDark
for the record
it infects png as well
check some servers, the rammit is present on their favicon.png
removed the "key" website since that is warez
|
png is a bitmap image file format (Portable Network Graphics), how's that possible?
|
|
|
|
|
02/14/2013, 12:04
|
#6
|
|
Chat Killer In Duty
elite*gold: 5
Join Date: May 2008
Posts: 16,310
Received Thanks: 6,470
|
Quote:
Originally Posted by Amanda98
Where's Credits to Ant?
png is a bitmap image file format (Portable Network Graphics), how's that possible? |
no idea, but several reports say some websites are infectes directly on their sites, and the first thing my AV detects is the favicon.png
let me check on my AV reports
Edit: it was favicon.ico
|
|
|
|
|
02/14/2013, 12:06
|
#7
|
elite*gold: 0
Join Date: Mar 2009
Posts: 2,748
Received Thanks: 2,010
|
Technically you could infect every file and file extension possible in windows, whether it will have a purpose that is another question
|
|
|
|
|
02/14/2013, 12:11
|
#8
|
|
Chat Killer In Duty
elite*gold: 5
Join Date: May 2008
Posts: 16,310
Received Thanks: 6,470
|
if this turns out to be useful thread(no threads and always SRO related) i think I may stick it
|
|
|
|
|
02/14/2013, 12:16
|
#9
|
elite*gold: 60
Join Date: Feb 2012
Posts: 3,942
Received Thanks: 6,475
|
@Portal
Why did you remove the key ._. ?
@Amanda
I didn't get it from there
|
|
|
|
|
02/14/2013, 12:18
|
#10
|
|
Chat Killer In Duty
elite*gold: 5
Join Date: May 2008
Posts: 16,310
Received Thanks: 6,470
|
Quote:
Originally Posted by LastThief*
@Portal
Why did you remove the key ._. ?
@Amanda
I didn't get it from there
|
posting a activation software key is considered warez
i have "decent" bandwidth now
i think im gonna dedicate to upload really clean files(client and server files) to avoid users to get infected
this is, of course, if i manage to have them clean or clean them myself
|
|
|
|
|
02/14/2013, 12:28
|
#11
|
elite*gold: 60
Join Date: Feb 2012
Posts: 3,942
Received Thanks: 6,475
|
My fault I thought you removed the reg key for disabling ramnit  btw ya that's really important and it disables infection from ramnit imo it should be sticky (either it's mine or not)
(I got the key thing from threat encyclopedia no need to give credits for that )
|
|
|
|
|
02/14/2013, 16:09
|
#12
|
elite*gold: 0
Join Date: Sep 2012
Posts: 753
Received Thanks: 711
|
I was infected with Ramnit too, about a month ago. I downloaded BitDefender Total Security from TPB and it cleaned the infected files.
|
|
|
|
|
02/14/2013, 16:26
|
#13
|
elite*gold: 0
Join Date: Feb 2009
Posts: 1,064
Received Thanks: 539
|
And I'm using Bullguard and I've never gotten any virus since I started using it
And yet nobody cares.
|
|
|
|
|
02/14/2013, 16:47
|
#14
|
elite*gold: 0
Join Date: Dec 2007
Posts: 2,400
Received Thanks: 1,517
|
And I'm using my brain and not downloading random executables or using an unsafe browser.
And yet nobody cares.
|
|
|
|
|
02/14/2013, 16:48
|
#15
|
|
Chat Killer In Duty
elite*gold: 5
Join Date: May 2008
Posts: 16,310
Received Thanks: 6,470
|
Quote:
Originally Posted by Schickl
And I'm using Bullguard and I've never gotten any virus since I started using it
And yet nobody cares.
|
even using the UAC feature on Vista/7/8 works perfect
but no, many noobs dont want a notice "Do you really want to execute this?" because "im rly epert on dis, i dont nid warns"
|
|
|
|
 |
|
Similar Threads
|
[How To] Sirosix*s hack Antivirus ohne antivirus auszuschalten benutzen
12/16/2010 - WarRock Guides, Tutorials & Modifications - 15 Replies
Hey
ich will euch ein TUT zeigen wie ihr die Hack, wo die .dll von
Kaspersky Antivirus gelöscht wird mit der Anzeige " vapsup Virus etc "
also macht Folgendes!:
VARIANTE 1
macht Antivir aus!
-ladet euch den Hack runter und macht das:
( oder meistens ist der Hack bei den Downloads, da die Winrar dateien nicht untersucht werden)
-1. Geht in KIS, dann auf Einstellungen
|
1 Jahr AVG Internet Security / AVG Antivirus / Identity Protection™
07/15/2010 - Trading - 1 Replies
Verkaufe:
AVG Identity Protection™ 1 Jahr für 5€ Paysafecard:
http://www.avg.com/stc/img/box_ais_mr_l.png
AVG Identity Protection™
Top-aktuelle Sicherheit für Online-Banking und -Shopping
Je mehr Zeit Sie online verbringen, umso wichtiger wird der Schutz Ihrer persönlichen Informationen. Virenschutz allein reicht nicht aus, um auch Ihre Shopping- und Banking-Aktivitäten sicher zu schützen. Welches Virenprogramm Sie auch verwenden, Sie brauchen die zusätzliche Sicherheit durch den AVG...
|
Antivirus. What is best?
08/27/2008 - Silkroad Online - 7 Replies
Ok so my antivirus is runnig out and want to see what people think is the best one to use?
Im tossing up between.
BitDefender
Kaspersky
AVG
ive used Kaspersky and AVG before but would like to know if anyone has used BitDefender? I have seen a few site rank it as the number 1 antivirus for 2008.
|
All times are GMT +2. The time now is 12:38.
|
|
