BOT

hi guys i try share bot but i cant install him if somebody can share plz archive:)

grr cant shre i give u link
[Only registered and activated users can see links. Click Here To Register...]

if somebody have it share here archive not install plz

this thing is strange i instaled it and it's teling me to instal the game :confused:

Yes it said ''install the game''!!! This is maybe coz' I got russian official client. Or maybe not. Or maybe it's just crap prog' that just wont work!!!!:mad:

Guys same error how u think why i ask u about helpxD
для русских хер знает что нада какуюто прогу что б выдолбить отдуда то что там находится,хреново то что форума на сайте нету и нема у кого спросить но я видел как етот бот работаетбудут идеи пишите

it's a trojan/virus, always has been.. dont download it guys or u will at best lose ur RF account or at worst end up with a f*cked pc

you sure???becouse i see how it work i see many bots and how they make this 150kk in day.Maybe somebody know some program what can crash this install Shield ?Antiviryses dont detected any virys

so is that site safe or not

Quote:

Originally Posted by TheGreateDoG grr cant shre i give u link [Only registered and activated users can see links. Click Here To Register...]

here is a scan from that page :
Antivirus Version Senaste Uppdatering Resultat
AhnLab-V3 2008.3.20.2 2008.03.21 -
AntiVir 7.6.0.75 2008.03.20 -
Authentium 4.93.8 2008.03.20 -
Avast 4.7.1098.0 2008.03.21 -
AVG 7.5.0.516 2008.03.21 -
BitDefender 7.2 2008.03.21 -
CAT-QuickHeal 9.50 2008.03.20 -
ClamAV 0.92.1 2008.03.21 -
DrWeb 4.44.0.09170 2008.03.20 -
eSafe 7.0.15.0 2008.03.18 -
eTrust-Vet 31.3.5631 2008.03.21 -
Ewido 4.0 2008.03.20 -
F-Prot 4.4.2.54 2008.03.20 -
F-Secure 6.70.13260.0 2008.03.21 -
FileAdvisor 1 2008.03.21 -
Fortinet 3.14.0.0 2008.03.21 -
Ikarus T3.1.1.20 2008.03.21 -
Kaspersky 7.0.0.125 2008.03.21 -
McAfee 5256 2008.03.20 -
Microsoft 1.3301 2008.03.21 -
NOD32v2 2966 2008.03.21 -
Norman 5.80.02 2008.03.20 -
Panda 9.0.0.4 2008.03.20 -
Prevx1 V2 2008.03.21 Heuristic: Suspicious File With Covert Attributes
Rising 20.36.32.00 2008.03.20 -
Sophos 4.27.0 2008.03.21 -
Sunbelt 3.0.978.0 2008.03.18 -
Symantec 10 2008.03.21 -
TheHacker 6.2.92.250 2008.03.19 Trojan/Agent.awg
VBA32 3.12.6.3 2008.03.17 -
VirusBuster 4.3.26:9 2008.03.20 -
Webwasher-Gateway 6.6.2 2008.03.21 -
Övrig information
File size: 1523583 bytes
MD5: 5edd701fa2bdbfccec9f605e132c1c0e
SHA1: 22126e39c1978d8c3286901fe53f797c79677eb4
PEiD: -
Prevx info: [Only registered and activated users can see links. Click Here To Register...]


so I dunno if its save or not xD and BTW the scan is from virustotal

непонятно

Quote:

Originally Posted by TheGreateDoG grr cant shre i give u link [Only registered and activated users can see links. Click Here To Register...]

Löscht doch bitte alle links zu rfire!

Hab mir mal die Mühe gemacht und dieses Prog in ner VM untersucht.

Es werden genau 3 Dateien ins System32 kopiert:
(und ja, es ist wohl vorgesehen das die Installation abbricht mit der Meldung es wäre kein RFO gefunden)

"detls.exe" .. sammelt daten und schickt diese wohl an "http://fiestahot.brinkster.net/game.asp?i="

und

"msdods.exe" und "msds32.exe" die sich als "MS DllSvr(MS NetWork Services)" dienst registrieren und schauen das sowohl der service als auch detls.exe laufen.

Fazit: SCAM

Draco how can i delete this processes antivirus dont find nothing

in english plz

Прога то рабочая или нет?