This sounds like Stee... When he hacked me he left "Haha get hacked noob" Stee always leaves messages on peoples desktop pictures... He did it to hamstertofu too. Also what happened to you also happened to me. I had to learn how to remove backdoors (Don't ask me how I did it) I feel sorry for you since TheSteeFlame has done it to so many people.
Thanks, I know Stee is banned and this will hopefully be resolved soon. The user doing this won't be happy with his punishment once I find out who it is.
also onions having a hard time getting back to the forums and server his forum accounts keep getting banned and hes not able to get on most gamemodes.
He is banned for Staff disrespect and verbal abuse. He got forums banned for rate abusing me twice and creating alts. The verbal abuse was also towards me.
I don't think you know anything to be honest. You link all this stuff and such but you don't have a clue on how it works or does anything. I have worked with these programs and such in the past but now I get rid of them from peoples Computer. If Fendodo Formatted his HDD Then it should be gone completely. Once you format it erases ALL Files. Fendodo I will message you on Skype now :0.
Update: Fendodo's System 32 has been deleted by the Attacker. He is now on a Laptop PC Talking to me the issue should be fixed in a ETA of 1 to 3 hours . Looks like I am going to be up later then I wanted ;p.
I have 2x SSD, I don't know if that changes anything but thank you for helping me on Skype right now, I really appreciate it.
Like anyone on Mineverse got money to actually pay lol. Plus it keeps me not bored so it's more fun for me then for them :p.
Check Program Files (x86) , Roaming Files and Temp files whatever it was named when u opened it will be the same name as the back doors It makes 4 back doors and a spyware file to secure the connection between the Victim and the Host (hacker) It Creates lvl 3 Encryption Because you enter random Numbers and Letters to generate the Mutex then it builds on a server then disconnects This is the back door name most likely This is Me In this Gyazo 127.0.0.1 http://gyazo.com/7cf9c55810e86104eb619e76d00adcd0 I'm 99% Positive that this isn't against any rules i'm doing this for the sake of helping fendodo Keep in Mind that Rats can Be Used in many ways You could do this from Cmd if u really wanted to someone else but they would have to run Batch file that establishes the connection then the Host would have to do a few commands to Get the handshake to establish the Connection
A R.A.T can be targeting the HKEY_CURRENT_USER Files or any other System Files. Also the Mutex is just the Encryption and depending on the Encryption doesn't truly matter but it does matter when it comes to a File that looks like a System file but not. Also if the Executable file is FUD ( Encrypted ( Fully Undetectable ) then it would require a more in advanced search but since most MV aren't smart enough to get a Good Crypter with a good STUB that's private then I reckon it's easy to find said virus but your Methods wouldn't work as the Computer doesn't have any Windows 7 System files as the Attack has deleted the System 32 of the Victims computer and will be fixed shortly. But thanks for infecting yourself with a R.A.T and trying to help.
Daddy gave me an installation of Windows 7 to restart the whole system including basic system files. It's all good now. Thanks Daddy!
