DarkPikachu
Administrator
Game Hacker
Offline
[color=lime]The electric rat with the power of darkness and a scythe. >:3[/color]
Posts: 678
Brawl Friend Code: 4125-6026-5674
Text Color: lime
Glow Color: green
Glow Strength: 5
Show Custom Post Effects: Yes
RolePlay Characters: Riku<br/>(normal) { id : "NRU", };
Riku<br/>(normal) { id : "NRH", };
Riku<br/>(power) {
id : "PRU",
BG : {},
ava : {},
name : {},
text : {},
};
Riku<br/>(power) { id : "PRH", };
Riku<br/>(evil) { id : "ERU", };
Riku<br/>(evil) { id : "ERH", };
Riku<br/>(ulra) { id : "URU", };
Sparx { id : "Sparx", };
Neal { id : "Neal", };
Exp:410 { id : "410", };
Dark Pikachu { id : "DP", };
Wolf { id : "Wolf", };
Reaperchu { id : "Reaperchu", };
Spark { id : "Spark", };
Custom Smileys: [[":>:3:","32","32","https://ipfs.io/ipfs/QmNrnBRE8hujm36qhbzZLEFxu94g2bW9SgCh9e74QyN7Sf?filename=DarkPikaSmile.gif"],["::3:","32","32","https://ipfs.io/ipfs/QmdCgSvLYN2PwsfmHhjHzby79sNuDQfvUMWthmDFbQ6Mq1?filename=DarkPika.gif"],[":pika:","32","32","http://www.sherv.net/cm/emo/funny/1/pikachu.gif"],[":af:","32","32","http://forums.kc-mm.com/Smileys/default/Awesome_Face.png"],[":srs:","32","32","http://forums.kc-mm.com/Smileys/default/srs2.gif"],[":Riku:","30","30","https://ipfs.io/ipfs/QmfBGDRhdEiKM4Q7pLYmqwHyLpncbxvFjMvQHz1pdkg8C3?filename=NRU.png"],[":RikuH:","30","30","https://ipfs.io/ipfs/QmfQXHwMjMHFTCBgAkC1FiA654smUznie7moEei7wdmvZp?filename=NRH.png"],[":PRiku:","30","30","https://ipfs.io/ipfs/QmPtUsVPNEvxqzC8zYd3rvEAN5V53UFhzWZXW741B5WgyE?filename=PRU.png"],[":PRikuH:","30","30","https://ipfs.io/ipfs/QmX8LsJaerTtmYmrkJPbq2bNsaEkT2iABbYhEUavMw92Lf?filename=PRH.png"],[":ERiku:","30","30","https://ipfs.io/ipfs/QmRuGxcH3MihCPu4BWvzbHGjHdPraNK4RN9c8nzLVXT7wQ?filename=ERU.png"],[":ERikuH:","30","30","https://ipfs.io/ipfs/QmZJaLSAMqiy9vZsaYTCZNtte1PoRXpjtoKT4yvw3ajbMZ?filename=ERH.png"],[":URiku:","30","30","https://ipfs.io/ipfs/QmcmnfgrjgSKwfxmMbdD852YtWwZijVT9QCUHV3zw1Rvj3?filename=URU.png"],[":DRiku:","30","30","https://ipfs.io/ipfs/QmQ5dYfKh29bS7f6YKG3KkXRCxgR6GvN3yAQFNqo58C5mE?filename=DRU.png"],[":DP:","30","30","https://ipfs.io/ipfs/QmSCHr21hYqdF1H56gKdwoQ9eVfUZS2AqFpDwFFTKRiEXc?filename=avatar174258_1.png"],[":Wolf:","30","30","https://ipfs.io/ipfs/QmV6JreKeTNZ3AFP6SwbXQZRGyr1XD7FjNUKd8DX7NDEzR?filename=wolf.png"],[":dp:","30","30","https://ipfs.io/ipfs/QmW8mGxQXyopCFkQbMFxtaseZdY1febCqVTwgBViFuoDxj?filename=409852902098862080.png"],[":smirk:","32","32","https://ipfs.io/ipfs/QmcEpjdS73RHrHgxgLQidQKUFQCVFxZVwv54gCjrT2oAeu?filename=smirk.png"]]
Custom CSS:
.blank { color: silver; text-shadow: none; }
.staff { color: gray; text-shadow: none; }
.SoneH { color: lightblue; text-shadow:
0px 0px 3px lightblue,
0px 0px 3px lightblue,
0px 0px 3px lightblue; }
.Riku, .RikuH { color: #CC8140; text-shadow: none; }
.PRiku, .PRikuH { color: #6688DD; text-shadow:
0px 0px 3px #2244DD,
0px 0px 3px #2244DD,
0px 0px 3px #2244DD; }
.ERiku, .ERikuH { color: #C70000; text-shadow:
0px 0px 2px #6644DD,
0px 0px 2px #6644DD; }
.URiku { color: #9988DD; text-shadow:
0px 0px 3px #772288,
0px 0px 3px #772288,
0px 0px 3px #772288; }
.DRiku { color: #60FF60; text-shadow:
0px 0px 3px #608070,
0px 0px 3px #608070,
0px 0px 3px #608070; }
.DP { color: lime; text-shadow: green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px; }
.Wolf { color: #F090F0; text-shadow:
0px 0px 3px #772288,
0px 0px 3px #772288,
0px 0px 3px #772288; }
|
Post by DarkPikachu on Feb 28, 2013 21:08:10 GMT -5
during my recent experiences with viruses, I've recently come across a RootKit...
these things are installed in a very basic, yet complex manner explained here: link coming soon
what they do, or what this did to me, is it interfeared with the ICS or internet firewall... this disabled the windows firewall service, and interfered with the winsock service. at first it simply blocked all cookies... but after fixing another issue with google links leading to ad-pages, this kicked in and completely corrupted winsock... what that means is networking has been corrupted and unusable. (can be fixed with instruction)
I ended up having to reinstall as I wasn't able to download the needed tools to search for it and remove it manually... but at least I know now that they can be found in %WINDIR%/system32/drivers.
the linked list provided in the link above lists about 200 different rootkits... I actually started building a program that would do the cmplex removal process for me... but lost interest due to the overwhelming amount I'd have to type in... (was on my wii while viewing the page)
this page is for reference so you guys will be able to learn from my experiences. ;)
|
RootKits
Feb 28, 2013 21:08:10 GMT -5
|
|
DarkPikachu
Administrator
Game Hacker
Offline
[color=lime]The electric rat with the power of darkness and a scythe. >:3[/color]
Posts: 678
Brawl Friend Code: 4125-6026-5674
Text Color: lime
Glow Color: green
Glow Strength: 5
Show Custom Post Effects: Yes
RolePlay Characters: Riku<br/>(normal) { id : "NRU", };
Riku<br/>(normal) { id : "NRH", };
Riku<br/>(power) {
id : "PRU",
BG : {},
ava : {},
name : {},
text : {},
};
Riku<br/>(power) { id : "PRH", };
Riku<br/>(evil) { id : "ERU", };
Riku<br/>(evil) { id : "ERH", };
Riku<br/>(ulra) { id : "URU", };
Sparx { id : "Sparx", };
Neal { id : "Neal", };
Exp:410 { id : "410", };
Dark Pikachu { id : "DP", };
Wolf { id : "Wolf", };
Reaperchu { id : "Reaperchu", };
Spark { id : "Spark", };
Custom Smileys: [[":>:3:","32","32","https://ipfs.io/ipfs/QmNrnBRE8hujm36qhbzZLEFxu94g2bW9SgCh9e74QyN7Sf?filename=DarkPikaSmile.gif"],["::3:","32","32","https://ipfs.io/ipfs/QmdCgSvLYN2PwsfmHhjHzby79sNuDQfvUMWthmDFbQ6Mq1?filename=DarkPika.gif"],[":pika:","32","32","http://www.sherv.net/cm/emo/funny/1/pikachu.gif"],[":af:","32","32","http://forums.kc-mm.com/Smileys/default/Awesome_Face.png"],[":srs:","32","32","http://forums.kc-mm.com/Smileys/default/srs2.gif"],[":Riku:","30","30","https://ipfs.io/ipfs/QmfBGDRhdEiKM4Q7pLYmqwHyLpncbxvFjMvQHz1pdkg8C3?filename=NRU.png"],[":RikuH:","30","30","https://ipfs.io/ipfs/QmfQXHwMjMHFTCBgAkC1FiA654smUznie7moEei7wdmvZp?filename=NRH.png"],[":PRiku:","30","30","https://ipfs.io/ipfs/QmPtUsVPNEvxqzC8zYd3rvEAN5V53UFhzWZXW741B5WgyE?filename=PRU.png"],[":PRikuH:","30","30","https://ipfs.io/ipfs/QmX8LsJaerTtmYmrkJPbq2bNsaEkT2iABbYhEUavMw92Lf?filename=PRH.png"],[":ERiku:","30","30","https://ipfs.io/ipfs/QmRuGxcH3MihCPu4BWvzbHGjHdPraNK4RN9c8nzLVXT7wQ?filename=ERU.png"],[":ERikuH:","30","30","https://ipfs.io/ipfs/QmZJaLSAMqiy9vZsaYTCZNtte1PoRXpjtoKT4yvw3ajbMZ?filename=ERH.png"],[":URiku:","30","30","https://ipfs.io/ipfs/QmcmnfgrjgSKwfxmMbdD852YtWwZijVT9QCUHV3zw1Rvj3?filename=URU.png"],[":DRiku:","30","30","https://ipfs.io/ipfs/QmQ5dYfKh29bS7f6YKG3KkXRCxgR6GvN3yAQFNqo58C5mE?filename=DRU.png"],[":DP:","30","30","https://ipfs.io/ipfs/QmSCHr21hYqdF1H56gKdwoQ9eVfUZS2AqFpDwFFTKRiEXc?filename=avatar174258_1.png"],[":Wolf:","30","30","https://ipfs.io/ipfs/QmV6JreKeTNZ3AFP6SwbXQZRGyr1XD7FjNUKd8DX7NDEzR?filename=wolf.png"],[":dp:","30","30","https://ipfs.io/ipfs/QmW8mGxQXyopCFkQbMFxtaseZdY1febCqVTwgBViFuoDxj?filename=409852902098862080.png"],[":smirk:","32","32","https://ipfs.io/ipfs/QmcEpjdS73RHrHgxgLQidQKUFQCVFxZVwv54gCjrT2oAeu?filename=smirk.png"]]
Custom CSS:
.blank { color: silver; text-shadow: none; }
.staff { color: gray; text-shadow: none; }
.SoneH { color: lightblue; text-shadow:
0px 0px 3px lightblue,
0px 0px 3px lightblue,
0px 0px 3px lightblue; }
.Riku, .RikuH { color: #CC8140; text-shadow: none; }
.PRiku, .PRikuH { color: #6688DD; text-shadow:
0px 0px 3px #2244DD,
0px 0px 3px #2244DD,
0px 0px 3px #2244DD; }
.ERiku, .ERikuH { color: #C70000; text-shadow:
0px 0px 2px #6644DD,
0px 0px 2px #6644DD; }
.URiku { color: #9988DD; text-shadow:
0px 0px 3px #772288,
0px 0px 3px #772288,
0px 0px 3px #772288; }
.DRiku { color: #60FF60; text-shadow:
0px 0px 3px #608070,
0px 0px 3px #608070,
0px 0px 3px #608070; }
.DP { color: lime; text-shadow: green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px, green 0px 0px 5px; }
.Wolf { color: #F090F0; text-shadow:
0px 0px 3px #772288,
0px 0px 3px #772288,
0px 0px 3px #772288; }
|
Post by DarkPikachu on Mar 12, 2013 17:52:22 GMT -5
well... unfortunately it appears there isn't really much of a fix for the damage this thing causes...
there is a fix, but there's only about a 30% chance everything will go as expected...
the damage this thing causes is it deletes the wndows services necessary for networking... (mainly 'wscsvc' used by the ICS service for WinXP)
this is what creates the safety net for it to advance and generate revenue for the src...
unfortunatly, I have not been successful in restoring the service, as everything I've tried has either: - given me no results - blue-screened - fixed another minor problem
let alone, one of the virus scanners disabled system restore... so going back isn't even an option from here...
I was not able to fix this, so I'm reinstalling... -.-*
you're better off reinstalling anyways, because even if you do manage to get it working again, using that windows will never be the same again... (possibly due to complex registry issues, and other deleted windows components...) ^ it's not worth the effort.
|
RootKits
Mar 12, 2013 17:52:22 GMT -5
|
|