EasyMap for Diablo II v1.1 - Release
- Thread starter deepfutu
- Start date
- Status
cybershark
Member
- Joined
- Aug 4, 2005
- Messages
- 12
- Reaction score
- 0
Nope, we were warned early enough.Impsux said:
zackdizzle
Member!
so wait does this mh work and is it clean, whats the final answer on this. should I use? yes or no.
PauseBreak
BattleForums Senior Member
- Joined
- Aug 27, 2003
- Messages
- 4,616
- Reaction score
- 12
MH works, yes.
BD'd probably.
BD'd probably.
JustPwnedYou
Member!
lol no kidding... does it work=YES is it safe=maybe/probly not
PauseBreak
BattleForums Senior Member
- Joined
- Aug 27, 2003
- Messages
- 4,616
- Reaction score
- 12
http://www.rpgforums.com/forums/showthread.php?t=35221&page=1&pp=20
Here is link.
Jan posted it there too.
Chech out post #13. This "Richie" dude seems to be the shizznit.
Everyone is like, "omGMAS LET R"ICH!E SCANS iT .. ID ONT trsUST TI! EVEN THOUGH RICHe saysd its okay1@!!"
Here is link.
Jan posted it there too.
Chech out post #13. This "Richie" dude seems to be the shizznit.
Everyone is like, "omGMAS LET R"ICH!E SCANS iT .. ID ONT trsUST TI! EVEN THOUGH RICHe saysd its okay1@!!"
JustPwnedYou
Member!
lol link courtesy of Me
t.A.T.u97
BattleForums Senior Member
Wow how many times do I have to say.
It is backdoored, just as all the other netterhaufen things. He will always backdoor his stuff, do not use anything netter is producing.
It opens port 1010, which ANY maphack that is legit and is safe to use will not open any port. It leads to a nice place of information that belongs to Jan.
Case closed. Mousepad will release theirs in no time.
It is backdoored, just as all the other netterhaufen things. He will always backdoor his stuff, do not use anything netter is producing.
It opens port 1010, which ANY maphack that is legit and is safe to use will not open any port. It leads to a nice place of information that belongs to Jan.
Case closed. Mousepad will release theirs in no time.
Forged
Premium Member
I opened it with win32dasm, I didn't see anything out of the ordinary, he isn't using any kind of winsocks api or anything that would email him your cdkeys. So I think it is clean but I am not 100% sure.
I don't know why he is using the sendmessage api(as I have never made a d2 hack), that could possiblly be used to send him your cd-key but you would notice it if you whispered your account information.
I don't know why he is using the sendmessage api(as I have never made a d2 hack), that could possiblly be used to send him your cd-key but you would notice it if you whispered your account information.
PauseBreak
BattleForums Senior Member
- Joined
- Aug 27, 2003
- Messages
- 4,616
- Reaction score
- 12
But he is sending something out? That's no good.
Johnny
IMMERSION RUINED
i'm taking tatu's words and just not going to use it.
i downloaded it and ran it for a few mins, then closed deleted/removed it from my comp. I am not still at risk am I? I'll wait for mousepads and/or c3po's maphack to be released.
i downloaded it and ran it for a few mins, then closed deleted/removed it from my comp. I am not still at risk am I? I'll wait for mousepads and/or c3po's maphack to be released.
Forged
Premium Member
As I said, I have never done anything with the modification of diablo, that could just be a part of it.Cappy said:
Forged
Premium Member
t.A.T.u97 said:
Why don't you tell artwork to post the source code...
I have fixed the link in the first post *yet again*, as I've installed a new forum now.
You may post suggestions for version 1.1 in this thread, if you like.
-Jan
Edit: About the rumors that it's not safe: The file has been verified to be safe from many independent sources. You may want to take a look at diabloworld.com - they have stickied my post and mirror a definite safe version of my file (if you don't trust my server).
You may post suggestions for version 1.1 in this thread, if you like
.-Jan
Edit: About the rumors that it's not safe: The file has been verified to be safe from many independent sources. You may want to take a look at diabloworld.com - they have stickied my post and mirror a definite safe version of my file (if you don't trust my server).
MacMan
BattleForums Senior Member
- Joined
- May 17, 2003
- Messages
- 1,943
- Reaction score
- 1
It's not a matter of the file's security, it's a matter of your source code.
Oh and I'm not insinuating anything (or am I?), but I found this interesting:
***********
Port number:
1010
Common name(s):
doly surf
Service description(s):
Doly Trojan Horse surf
Actions:
Remote Access / Keylogger / IRC trojan
Registers:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
HKEY_USER\.Default\Software\Marabilis\ICQ\Agent\Apps\
***********
Oh and I'm not insinuating anything (or am I?), but I found this interesting:
***********
Port number:
1010
Common name(s):
doly surf
Service description(s):
Doly Trojan Horse surf
Actions:
Remote Access / Keylogger / IRC trojan
Registers:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
HKEY_USER\.Default\Software\Marabilis\ICQ\Agent\Apps\
***********
Johnny
IMMERSION RUINED
macman, what are the names of the registries, instead of the location. i want them delete :-/
MacMan
BattleForums Senior Member
- Joined
- May 17, 2003
- Messages
- 1,943
- Reaction score
- 1
Normally, the Doly "client" software is run whenever the victim's computer is turned on. In case his backdoor retains this characteristic, delete any registries whose data load "tesk.exe." Otherwise, I assume EasyMap is just the client software in disguise, so don't run it. (And I'm sure if he's using a modified trojan, and he's smart enough to map hack D2, then he's probably smart enough to change any registry entries that might incriminate him, as well as the name of "tesk.exe.")
- Status