Эксклюзив Неактуально Избранное ASI AntiStealer

[tRue:#]

[PATCHED] > [ZwSetInformationFile] > [C:\Windows\System32\KERNELBASE.dll] > {FileInformationClass: HIDE}
Подскажите решение проблемы? Виснет на загрузке ГТА

 

[HaroldFinch]

[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwOpenProcess] > [C:\Windows\System32\KERNELBASE.dll] > {DesiredAccess: 4096}
[PATCHED] > [ZwSetInformationFile] > [C:\Windows\System32\KERNELBASE.dll] > {FileInformationClass: HIDE}
[WARNING] > [gethostbyname] > [E:\gta\samp.dll] > {name: WIN-NCK3I5UG55C}
[WARNING] > [gethostbyname] > [E:\gta\samp.dll] > {name: 5.254.123.6}
[WARNING] > [gethostbyname] > [E:\gta\samp.dll] > {name: 5.254.123.6}
[PATCHED] > [RtlInitUnicodeString] > [C:\Windows\System32\KERNELBASE.dll] > {SourceString: .\!0AntiStealerByDarkP1xel32.dbg\*}
[PATCHED] > [RtlInitUnicodeStringEx] > [C:\Windows\SYSTEM32\ntdll.dll] > {SourceString: .\!0AntiStealerByDarkP1xel32.dbg\*}
[PATCHED] > [RtlInitUnicodeString] > [C:\Windows\System32\KERNELBASE.dll] > {SourceString: .\!0AntiStealerByDarkP1xel32.pdb\*}
[PATCHED] > [RtlInitUnicodeStringEx] > [C:\Windows\SYSTEM32\ntdll.dll] > {SourceString: .\!0AntiStealerByDarkP1xel32.pdb\*}

Последние 4 строчки в норме?

 

[D1namick]

Есть стилеры?



|>~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<|
|> | AntiStealer | V5.2.5 | By DarkP1xel | .LOG File | <|
|> Official Web-Site: https://blast.hk/ <|
|> Subscribe to my YouTube Channel: https://vk.cc/5PCsTe <|
|> Official Topic: https://blast.hk/threads/16018/ <|
|> DONATE: https://qiwi.me/antistealer/ <|
|> KEEP CALM AND SMOKE SOME WEED <|
|> !AntiStealer LOADED! <|
|>~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<|

[WARNING] > [gethostbyname] > [D:\GTA San Andreas MultiPlayer\samp.dll] > {name: vlad}
[WARNING] > [URLDownloadToFileA] > [D:\GTA San Andreas MultiPlayer\MoonLoader.asi] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\46AD~1\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [URLDownloadToFileW] > [C:\Windows\SYSTEM32\urlmon.dll] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\46AD~1\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [InternetOpenW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; Tablet PC 2.0)}
[WARNING] > [InternetOpenA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; Tablet PC 2.0)}
[WARNING] > [InternetConnectW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [InternetConnectA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszObjectName: /moonloader/data/version-info.json}
[WARNING] > [InternetCreateUrlA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: blast.hk}
[PATCHED] > [ZwQueueApcThread] > [C:\Windows\SYSTEM32\sechost.dll

 

[DDDDD221]

пишет что троян анти стиллер

 

[TheBadZero]

[PATCHED] > [ZwSetInformationFile] > [C:\Windows\System32\KERNELBASE.dll] > {FileInformationClass: HIDE}
Подскажите решение проблемы? Виснет на загрузке ГТА

стиллер блокирует скорее. Удаляй asi, cs и прочее методом исключения

Есть стилеры?



|>~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<|
|> | AntiStealer | V5.2.5 | By DarkP1xel | .LOG File | <|
|> Official Web-Site: https://blast.hk/ <|
|> Subscribe to my YouTube Channel: https://vk.cc/5PCsTe <|
|> Official Topic: https://blast.hk/threads/16018/ <|
|> DONATE: https://qiwi.me/antistealer/ <|
|> KEEP CALM AND SMOKE SOME WEED <|
|> !AntiStealer LOADED! <|
|>~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<|

[WARNING] > [gethostbyname] > [D:\GTA San Andreas MultiPlayer\samp.dll] > {name: vlad}
[WARNING] > [URLDownloadToFileA] > [D:\GTA San Andreas MultiPlayer\MoonLoader.asi] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\46AD~1\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [URLDownloadToFileW] > [C:\Windows\SYSTEM32\urlmon.dll] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\46AD~1\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [InternetOpenW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; Tablet PC 2.0)}
[WARNING] > [InternetOpenA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; Tablet PC 2.0)}
[WARNING] > [InternetConnectW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [InternetConnectA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestW] > [C:\Windows\SYSTEM32\urlmon.dll] > {lpszObjectName: /moonloader/data/version-info.json}
[WARNING] > [InternetCreateUrlA] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.dll] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: blast.hk}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: blast.hk}
[PATCHED] > [ZwQueueApcThread] > [C:\Windows\SYSTEM32\sechost.dll

нет

 

[Varfalamey]

Есть ли тут стиллер?

Спойлер: ЛОГ

[PATCHED] > [ZwSetInformationFile] > [C:\Windows\SYSTEM32\KERNELBASE.dll] > {FileInformationClass: HIDE}
[PATCHED] > [CreateProcessW] > [C:\Games\GTA\CrashRpt1402.dll] > {lpApplicationName: C:\Games\GTA\CrashSender1402.exe}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\crashes.asi] > {lpszAgent: Mozilla/5.0}
[WARNING] > [InternetOpenUrlA] > [C:\Games\GTA\crashes.asi] > {lpszUrl: https://raw.githubusercontent.com/Whitetigerswt/gtasa_crashfix/master/LatestVersion.txt | lpszHeaders: -}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [GetAddrInfoExW] > [C:\Windows\SYSTEM32\WININET.DLL] > {pName: raw.githubusercontent.com}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: DESKTOP-SIOVEGS}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: 37.230.162.117}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: 37.230.162.117}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszAgent: SAMPFUNCS v5.3.3 release #19 (SA-MP 0.3.7)}
[WARNING] > [InternetOpenUrlA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszUrl: http://service.blasthack.net/sf_sta...716AE115&x=B9909B053E5CD06910E320FA43440F5E5D | lpszHeaders: -}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: service.blasthack.net}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: service.blasthack.net}
[WARNING] > [GetAddrInfoExW] > [C:\Windows\SYSTEM32\WININET.DLL] > {pName: service.blasthack.net}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszAgent: SAMPFUNCS}
[WARNING] > [InternetConnectA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszServerName: service.blasthack.net | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszObjectName: /sf_update.php?ver=19}

 

[Ren_Boyko]

Есть ли тут стиллер?

Спойлер: ЛОГ

[PATCHED] > [ZwSetInformationFile] > [C:\Windows\SYSTEM32\KERNELBASE.dll] > {FileInformationClass: HIDE}
[PATCHED] > [CreateProcessW] > [C:\Games\GTA\CrashRpt1402.dll] > {lpApplicationName: C:\Games\GTA\CrashSender1402.exe}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\crashes.asi] > {lpszAgent: Mozilla/5.0}
[WARNING] > [InternetOpenUrlA] > [C:\Games\GTA\crashes.asi] > {lpszUrl: https://raw.githubusercontent.com/Whitetigerswt/gtasa_crashfix/master/LatestVersion.txt | lpszHeaders: -}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [WinHttpCreateUrl] > [C:\Windows\SYSTEM32\WINHTTP.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: raw.githubusercontent.com}
[WARNING] > [GetAddrInfoExW] > [C:\Windows\SYSTEM32\WININET.DLL] > {pName: raw.githubusercontent.com}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: DESKTOP-SIOVEGS}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: 37.230.162.117}
[WARNING] > [gethostbyname] > [C:\Games\GTA\samp.dll] > {name: 37.230.162.117}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszAgent: SAMPFUNCS v5.3.3 release #19 (SA-MP 0.3.7)}
[WARNING] > [InternetOpenUrlA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszUrl: http://service.blasthack.net/sf_sta...716AE115&x=B9909B053E5CD06910E320FA43440F5E5D | lpszHeaders: -}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: service.blasthack.net}
[WARNING] > [InternetCreateUrlW] > [C:\Windows\SYSTEM32\WININET.DLL] > {lpUrlComponents->lpszHostName: service.blasthack.net}
[WARNING] > [GetAddrInfoExW] > [C:\Windows\SYSTEM32\WININET.DLL] > {pName: service.blasthack.net}
[WARNING] > [InternetOpenA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszAgent: SAMPFUNCS}
[WARNING] > [InternetConnectA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszServerName: service.blasthack.net | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestA] > [C:\Games\GTA\SAMPFUNCS.asi] > {lpszObjectName: /sf_update.php?ver=19}

на наличие скрытых файлов чекни

 

[Varfalamey]

на наличие скрытых файлов чекни

я немного тупой, как это сделать?

 

[Ren_Boyko]

я немного тупой, как это сделать?

 

[Varfalamey]

это?

 

[Ren_Boyko]

Посмотреть вложение 45491
это?

вид
в конце галки оффай

 

[Varfalamey]

вид
в конце галки оффай

оффнул, дальше что?

 

[Ren_Boyko]

оффнул, дальше что?

сборку чекать
cleo
sampfuncs
moonloader
корневую папку

 

[Varfalamey]

сборку чекать
cleo
sampfuncs
moonloader
корневую папку

ничего не добавилось

 

[Ren_Boyko]

ничего не добавилось

ну знач чисто