God Mode

[searche]

:rofl2

d2hackit module - you are immortal...
both of them work...

 

[Trojan]

Very much doubt it.

 

[HoAx(FF)]

 searche
Total Newbie
 
Join Date: Jul 2005
Posts: 1

ehm.. 1 poster that posts a method that works.. i would say trojan or virus..

 

[wasup999999]

Lol, Banning time *plays a catchy little jingle thats similar to super mario*

Does d2hackit even work anymore?

 

[Laharl]

At best it's a single player hack. He should've advertised that if he was going to advertise at all.

Somebody scan, then we ban?

 

[paint1220]

Sum 1 gonna scan this?

 

[_Ace]

Here I am ^^
I apologize for my LONG ass inactivity but I had to deal with some stuff in my life... anyway, I'm back and ready to scan this... expect an edit of this in like an hour.

Edit:

God.rar is corrupt, won't un-rar, it's not a .exe either
GemGod.rar contains a .exe file, KAV says it's clean, but after some debugging/resource viewing... IT'S A ****ING AUTOIT SCRIPT

So yeah, as there is no way an AutoIt program can be a GodMode, and as he said it was a D2H module... BANNED.

 

[_CM]

~approved

~banned for 3 days

 

[ChrisH36]

Very much doubt it.

Obviously, 1 post and he thinks he can hax Diablo II.

It makes just as much sense as buying items using REAL money.

 

[Trojan]

Just because his name had no credibility on any site made me say that .

 

[Habya]

Here I am ^^
I apologize for my LONG ass inactivity but I had to deal with some stuff in my life... anyway, I'm back and ready to scan this... expect an edit of this in like an hour.

Edit:

God.rar is corrupt, won't un-rar, it's not a .exe either
GemGod.rar contains a .exe file, KAV says it's clean, but after some debugging/resource viewing... IT'S A ****ING AUTOIT SCRIPT

So yeah, as there is no way an AutoIt program can be a GodMode, and as he said it was a D2H module... BANNED.

If you don't mind could you submit it to the antivirus/antitrojan vendors, if you still have the file of course? Just throw it into a zip using zip portable encryption and pass protect it. Then just email the vendors with a quick note on what the password is.

Here is a list of the email addresses
newvirus@kaspersky.com,submit@diamondcs.com.au,heuristik@antivir.de,support@nsclean.com,virus_research@nai.com,submit@misec.net,virus_submission@bitdefender.com,research@lavasoft.de,virus_doctor@trendmicro.com,esafe.virus@eAladdin.com,virus@asw.cz,cat@vsnl.com,virus_submission@centralcommand.com,virus@commandcom.com,virus@cai.com,ipevirus@vet.com.au,Antivir@dials.ru,samples@eset.com,viruslab@complex.is,samples@f-secure.com,submit@finjan.com,virus@grisoft.cz,hauri98@hauri.co.kr,analysis@norman.no,virussamples@pandasoftware.com,virsample@pspl.com,samples@sophos.com,avsubmit@symantec.com,submit@emsisoft.com,submit@ewido.net,submit@simplysup.com

 

[ChrisH36]

Also, shouldn't the rars be removed if they are in fact trojan and viruses?

 

[Trojan]

Rars can't hurt you unless they are unzipped and ran.

 

[ffp]

I wonder why not use this site to scan files.
http://virusscan.jotti.org/

One of the good sites I had one more similar but can't find it unless i was dreaming...

 

[Habya]

I wonder why not use this site to scan files.
http://virusscan.jotti.org/

One of the good sites I had one more similar but can't find it unless i was dreaming...

Could always check out
http://battleforums.com/showthread.php?t=103087

It's got a good list of ones to use. Jotti's seems to be used a lot here from what I have seen. Another good multiple program scanner is right over at www.virustotal.com
It uses AntiVir, AVG, Avast, Avira, BitDefender, CAT-QuickHeal, ClamAV, DrWeb, eTrust-Iris, eTrust-Vet, Fortinet, F-Prot, Ikarus, Kaspersky, Mcafee, NOD32, Norman, Panda, Sophos, Symantec, TheHacker, VBA32.

 

[ChrisH36]

Rars can't hurt you unless they are unzipped and ran.

And yet, there are some people who are drawn by what they want, not knowing the file is hacked or whatever.

 

[_Ace]

I already said it's an AutoIt script. No online scanners will find a virus there, sending clicks and keypresses is not "catalogized" as virii, BUT, it can drop your whole inventory to the floor (in which case, it's still not a virus, just a program to **** ppl over).

 

[Habya]

I already said it's an AutoIt script. No online scanners will find a virus there, sending clicks and keypresses is not "catalogized" as virii, BUT, it can drop your whole inventory to the floor (in which case, it's still not a virus, just a program to **** ppl over).

That's why if you submit it even a program like that you can often time get companies to add a detection for it. BOClean and Panda have added at least 3 programs similar to this which many of the other companies did not/would not detect because they did not fall into the same normal categories of "virus". However by submitting it and them analyzing it they may still decide to add detections, it's always worth a shot.

 

[_CM]

they didnt add any AutoIt scripts... thats for sure... because how are they gonna detect if the file is malicious? I mean it simulates mouseclicks... every autoit script does that...

 

[Habya]

they didnt add any AutoIt scripts... thats for sure... because how are they gonna detect if the file is malicious? I mean it simulates mouseclicks... every autoit script does that...

Didn't actually think much of the "AutoIt" part, I wrote up the response very quickly, was in the midle of doing research paper at the time. The detections added I was thinking of were for a few older files I had found on some other forums which BOClean did add detections for but those were actual "trojans". However comes the problem of what exactly does the file do? Is it simply written in AutoIt? There are RAT's written in AutoIt script as a stand-alone exe file. Do we know anything other than that it is "AutoIt"?

Edit: Just a quick edit, I'm not trying to turn this into a long drawn out thing here. I realize this is a forum for discussing modifications, utilities, and patches, I'm just curious as to what all people are throwing out there and using in order to cheat people out of their stuff.