- 23
- 0
- Версия SA-MP
-
- 0.3.7 (R1)
- 0.3.7-R2
- 0.3.7-R3
- 0.3.7-R4
- 0.3DL
- 0.3e (R1) / CR-MP
- Любая
- Другая
Буду краток:
[WARNING] > [gethostbyname] > [C:\Game\GTA\samp.dll] > {name: ИльяАдмин-ПК}
Ну и конечно же:
[WARNING] > [HttpOpenRequestW] > [C:\Game\GTA\BASS.dll] > {lpszObjectName: /TRP2FM}
[WARNING] > [InternetCreateUrlA] > [C:\Windows\system32\WININET.dll] > {lpUrlComponents->lpszHostName: 194.58.104.69}
На второй сборке (От h0tberg-a) еще веселее:
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: DESKTOP-5HM070J}
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: 37.230.162.117}
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: 37.230.162.117}
[WARNING] > [URLDownloadToFileA] > [E:\GTA GAMBIT\MoonLoader.asi] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\h0tberg\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [URLDownloadToFileW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\h0tberg\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [InternetOpenW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)}
[WARNING] > [InternetOpenA] > [C:\WINDOWS\SYSTEM32\WININET.DLL] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)}
[WARNING] > [InternetConnectW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszObjectName: /moonloader/data/version-info.json}
[PATCHED] > [ZwQueueApcThread] > [C:\WINDOWS\System32\sechost.dll]
Свою скину если нужно, а ссылка на вторую уже есть: https://yadi.sk/d/sVd3DNjiuKTJyA
Памагити!
Кто не догоняет, я в панике, что это, кто это, лоад, стиллер, вирус. Аааааа!
[WARNING] > [gethostbyname] > [C:\Game\GTA\samp.dll] > {name: ИльяАдмин-ПК}
Ну и конечно же:
[WARNING] > [HttpOpenRequestW] > [C:\Game\GTA\BASS.dll] > {lpszObjectName: /TRP2FM}
[WARNING] > [InternetCreateUrlA] > [C:\Windows\system32\WININET.dll] > {lpUrlComponents->lpszHostName: 194.58.104.69}
На второй сборке (От h0tberg-a) еще веселее:
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: DESKTOP-5HM070J}
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: 37.230.162.117}
[WARNING] > [gethostbyname] > [E:\GTA GAMBIT\samp.dll] > {name: 37.230.162.117}
[WARNING] > [URLDownloadToFileA] > [E:\GTA GAMBIT\MoonLoader.asi] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\h0tberg\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [URLDownloadToFileW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {szURL: https://blast.hk/moonloader/data/version-info.json | szFileName: C:\Users\h0tberg\AppData\Local\Temp\moonloader-version.json}
[WARNING] > [InternetOpenW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)}
[WARNING] > [InternetOpenA] > [C:\WINDOWS\SYSTEM32\WININET.DLL] > {lpszAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)}
[WARNING] > [InternetConnectW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszServerName: blast.hk | lpszUserName: - | lpszPassword: -}
[WARNING] > [HttpOpenRequestW] > [C:\WINDOWS\SYSTEM32\urlmon.dll] > {lpszObjectName: /moonloader/data/version-info.json}
[PATCHED] > [ZwQueueApcThread] > [C:\WINDOWS\System32\sechost.dll]
Свою скину если нужно, а ссылка на вторую уже есть: https://yadi.sk/d/sVd3DNjiuKTJyA
Памагити!
Кто не догоняет, я в панике, что это, кто это, лоад, стиллер, вирус. Аааааа!
