Mountain climb hack for 2.1.3 NO FAKE!
This is a discussion on Mountain climb hack for 2.1.3 NO FAKE! within the WoW Hacks forum part of the WoW forum category; BEFORE YOU USE THIS HACK LISTEN UP!!!
I have some experience with cracks and hacks, there's no viruses every time ...
-
BEFORE YOU USE THIS HACK LISTEN UP!!!
I have some experience with cracks and hacks, there's no viruses every time you may scan but once the file downloaded is in use the virus can slip out once its executed. It may be able to breach your virus watch because it could launch the virus under WoW, which is allowed by your security to access Internet and your explorer. -USE AT YOUR OWN RISK!
Note: This is just a warning of a risk your running by using this, I’m not saying there is a virus or that the poster is trying to give you a virus.
Drendon: Horde of Night Mist
-
-
Im scanning it too...The proccess right now I have no viruses Which is freakin me out.Most Wall Hacks Have Viruses
-
-
-
-
There was something found on the file!
Heres the Log File(s):
Program File: .exe
Program Path: Desktop
Risk Level: HIGH
Threat: Adware.Skavenow
Remote Computer: 64.215.162.11, 80
Traffic Description: Outbound TCP, www-http
What it does:
When Adware.Savenow is executed, it does the following:- Creates the following files:
- %ProgramFiles%\Save\Save.exe
- %ProgramFiles%\Save\Save.html
- %ProgramFiles%\Save\Readme.txt
- %ProgramFiles%\Save\SaveUninst.exe
- %ProgramFiles%\VVSN\VVSN.exe
- %ProgramFiles%\SaveNow\Readme.txt
- %ProgramFiles%\SaveNow\SaveNow.exe
- %ProgramFiles%\SaveNow\SaveNow.htm
- %ProgramFiles%\SaveNow\Uninst.exe
- %ProgramFiles%\Xtractor Plus\hh.html
- %ProgramFiles%\Xtractor Plus\readme.txt
- %ProgramFiles%\Xtractor Plus\unins000.dat
- %ProgramFiles%\Xtractor Plus\unins000.exe
- %ProgramFiles%\Xtractor Plus\xp.exe
- %ProgramFiles%\Xtractor Plus\Xplus.CNT
- %ProgramFiles%\Xtractor Plus\XPLUS.HLP
- %System%\CCRPFTV6.OCX
- %System%\SSubTmr.dll
- %System%\TABCTL32.OCX
- %System%\UNACE.DLL
- %System%\UNRAR.dll
- %System%\Unzip32.dll
- %Windir%\hh.ico
- %Windir%\hhs.url
- %Windir%\Downloaded Program Files\WUInst.dll
- %UserProfile%\Start Menu\Programs\WhenU\Learn More About Save!.url
- %UserProfile%\Start Menu\Programs\WhenU\Learn More About SaveNow.url
- %UserProfile%\Start Menu\Programs\WhenU\WhenU.com Website.url
Note: - %ProgramFiles% is a variable that refers to the program files folder. By default, this is C:\Program Files.
- %System% is a variable that refers to the System folder. By default this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
- %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.
- Adds the values:
"VVSN" = "%ProgramFiles%\VVSN\VVSN.exe"
"SaveNow" = "%ProgramFiles%\SaveNow\SaveNow.exe"
"WhenUSave" = "%ProgramFiles%\Save\Save.exe"
to one or more of the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run
so that the adware runs every time Windows starts. - Creates the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\SaveNow
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\WhenUSaveMsg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\Xtractor Plus_is1
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Free Software
HKEY_CLASSES_ROOT\WUSN.1
HKEY_CLASSES_ROOT\CLSID\{E2F2B9D0-96B9-4B25-B90C-636ECB207D18} - Contacts a server at the whenu.com domain and downloads and displays advertisements.
- Tracks Internet browsing habits. However, the collected information is not submitted to the server. It is stored locally on the computer and used to determine which advertisements should be displayed.
Hope this Helps.
-
-
-
-
-
-
Originally Posted by
IScanStuff 
There was something found on the file!
Heres the Log File(s):
Program File: .exe
Program Path: Desktop
Risk Level: HIGH
Threat: Adware.Skavenow
Remote Computer: 64.215.162.11, 80
Traffic Description: Outbound TCP, www-http
What it does:
When Adware.Savenow is executed, it does the following:
- Creates the following files:
- %ProgramFiles%\Save\Save.exe
- %ProgramFiles%\Save\Save.html
- %ProgramFiles%\Save\Readme.txt
- %ProgramFiles%\Save\SaveUninst.exe
- %ProgramFiles%\VVSN\VVSN.exe
- %ProgramFiles%\SaveNow\Readme.txt
- %ProgramFiles%\SaveNow\SaveNow.exe
- %ProgramFiles%\SaveNow\SaveNow.htm
- %ProgramFiles%\SaveNow\Uninst.exe
- %ProgramFiles%\Xtractor Plus\hh.html
- %ProgramFiles%\Xtractor Plus\readme.txt
- %ProgramFiles%\Xtractor Plus\unins000.dat
- %ProgramFiles%\Xtractor Plus\unins000.exe
- %ProgramFiles%\Xtractor Plus\xp.exe
- %ProgramFiles%\Xtractor Plus\Xplus.CNT
- %ProgramFiles%\Xtractor Plus\XPLUS.HLP
- %System%\CCRPFTV6.OCX
- %System%\SSubTmr.dll
- %System%\TABCTL32.OCX
- %System%\UNACE.DLL
- %System%\UNRAR.dll
- %System%\Unzip32.dll
- %Windir%\hh.ico
- %Windir%\hhs.url
- %Windir%\Downloaded Program Files\WUInst.dll
- %UserProfile%\Start Menu\Programs\WhenU\Learn More About Save!.url
- %UserProfile%\Start Menu\Programs\WhenU\Learn More About SaveNow.url
- %UserProfile%\Start Menu\Programs\WhenU\WhenU.com Website.url
Note: - %ProgramFiles% is a variable that refers to the program files folder. By default, this is C:\Program Files.
- %System% is a variable that refers to the System folder. By default this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
- %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.
- Adds the values:
"VVSN" = "%ProgramFiles%\VVSN\VVSN.exe"
"SaveNow" = "%ProgramFiles%\SaveNow\SaveNow.exe"
"WhenUSave" = "%ProgramFiles%\Save\Save.exe"
to one or more of the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run
so that the adware runs every time Windows starts. - Creates the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\WhenUSave
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\SaveNow
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\WhenUSaveMsg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\Xtractor Plus_is1
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Free Software
HKEY_CLASSES_ROOT\WUSN.1
HKEY_CLASSES_ROOT\CLSID\{E2F2B9D0-96B9-4B25-B90C-636ECB207D18} - Contacts a server at the whenu.com domain and downloads and displays advertisements.
- Tracks Internet browsing habits. However, the collected information is not submitted to the server. It is stored locally on the computer and used to determine which advertisements should be displayed.
Hope this Helps.
Wrong.I Scanned It With The Best Known scanning system and no errors.The Only Warning is You will get banned.I tryed.
-
-
You idiot, this is my hack, I posted this on mmowned, and edgeofnowhere..
http://www.mmowned.com/forums/bots-a...ndetected.html <<-- my trainer...You could have changed the file name if you didnt want it to be oubious....
http://edgeofnowhere.cc/viewtopic.ph...29e5e2d05c2e0b
AND dont try to say I stole it, mine was posted earliar too....So maybe when you post my work you could at least give me credit and use my link....
Last edited by vivec45; 09-11-2007 at 04:49 AM.
-
-
Former Global Moderator
God, grant me the strenght to accept the things I cannot change, the courage to change the things I can
and the wisdom to know the difference.
-
-
It works 
but does it have any bad stuff in it?? all that stuff was confusing : /
Pazic.
-
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
Forum Rules
LinkBack URL
About LinkBacks
