⭠ Back to MegaDB Search

Seylox | 792 points | Dec 15 2017 11:41:06

[PSA] (Cuphead, Okami HD)Watch out for malicious uploads from /u/pcgamer21 !!! | Megalinks MegaDB [PSA] (Cuphead, Okami HD)Watch out for malicious uploads from /u/pcgamer21 !!!

I've researched this now and apparently either most or all of the game uploads by /u/pcgamer21 contain a Trojan, including his highly upvoted Cuphead Post.

His posts: https://www.reddit.com/user/pcgamer21/posts/

To quote /u/Moestopholies:

Dude WTF OP..upon clicking setup it launches svchost.exe from the user/temp and my firewall caught it trying to get to 42.114.224.149 over port 1911, Ha Noi, VietNam FPT Telecom Company.

Why would this installer do that?? Over all my years using scene/warez I've never had an installer hit my firewall. Not accusing you OP but your source is suspect..DL from g drive btw.

EDIT: Dude YOU ARE FUCKING SUSPECT, You have people in your past DELETED posts calling you out about the Viruses in your posts Also a redditor for a whole 18 days you can;t be trusted here.

EDIT 2: All you little bitches who DV me man up and disprove me why don;t you, you are gonna take the word of a user thats less than a month old also ha you deserve to have all your base had

Link: https://www.reddit.com/r/megalinks/comments/7jrpr4/game_cuphead_113_gog_google_drive_mirror/dr9vc1e/

I scanned the File and it also reported a Virus:

Windows Defender reports this as "Backdoor:MSIL/Bladabindi", are you sure it's free of Malware?

virustotal.com also reports threats: https://www.virustotal.com/#/file/710221c959ef8747b4dfa7474768c174a31f5b2ebd84e2d40a1f6f88806a7064/detection

Any more info on this, /u/pcgamer21 ?

EDIT: apparently pcgamer21's uploads all contains trojans. better do a virus scan. he might be using bots to downvote critical comments.

Link: https://www.reddit.com/r/megalinks/comments/7jrpr4/game_cuphead_113_gog_google_drive_mirror/dr9afqv/

Oh and I almost forgot: he seems to be using bots to downvote critical comments.

 

EDIT: Thanks to /u/iPhunwa2, I highly recommend upvoting his post https://www.reddit.com/r/megalinks/comments/7k3xkj/announcement_requirements_to_post_games_or/ or generally just checking it out if you need help removing malware.

permalink


[-] pelito | 233 points | Dec 15 2017 12:20:14

it's a small indy studio and the game is 20 bucks. just pay for it.

permalink

[-] SpongederpSquarefap | 86 points | Dec 15 2017 13:53:48

That and it's fun as fuck with no bullshit or micro transactions

permalink

[-] unabatedshagie | -33 points | Dec 15 2017 14:38:02

Fun in the same way as getting your balls repeatedly stomped on by a sexy woman.

permalink

[-] zoomshoes | 40 points | Dec 15 2017 15:13:02

but you often have to keep paying for that

permalink

[-] sirin3 | 22 points | Dec 15 2017 15:38:28

And much more than 20 bucks

permalink

[-] [deleted] | 2 points | Dec 15 2017 15:35:01

[deleted]

permalink

[-] unabatedshagie | 6 points | Dec 15 2017 15:58:47

At least someone seemed to get it.

permalink

[-] headinsockedboy | 2 points | Dec 15 2017 23:18:16

I haven't even played the game and I saw this as a reference to the difficulty. Maybe Dark Souls corrupted me though ¯\(ツ)

permalink

[-] MTFlava | 1 points | Dec 16 2017 02:25:03

Yeah that flower boss must have stomped on my balls 40 or 50 times... upvoted!

permalink

[-] modelshopworld | 85 points | Dec 15 2017 18:23:17

just pay for it

You know what sub you’re in, right?

permalink

[-] DanWolfstone | 18 points | Dec 15 2017 21:19:57

I mean, I get what you mean, but I really enjoy that game, I think it's worth paying for.

permalink

[-] modelshopworld | 14 points | Dec 16 2017 02:31:13

I’m just yanking your chain, I know what you mean and I agree: small market games and developers should be supported, especially if it’s being very well received by audiences

permalink

[-] iApplepet | 10 points | Dec 16 2017 09:53:07

The Pirate Code

permalink

[-] Muh_Condishuns | 1 points | Jan 02 2018 12:27:47

You still don't know what sub you're in.

permalink

[-] DanWolfstone | 2 points | Jan 02 2018 18:31:49

WAIT MAN, YOU'VE GOT THE WRONG GUY

permalink

[-] labiothan | 17 points | Dec 15 2017 22:38:44

$13USD on GOG right now!

permalink

[-] humanysta | 7 points | Dec 29 2017 14:00:32

I'm so tired of this bullshit. No, I'm on a piracy sub because I don't want to pay for stuff. I'm not here to be lectured about how it's only OK to pirate games from big companies. Fuck that. Go play moral police somewhere else.

permalink

[-] Muh_Condishuns | 5 points | Jan 02 2018 12:28:35

Here here. Tired of hypocritical pussies just looking for hypocritical upvotes myself.

permalink

[-] Muh_Condishuns | 6 points | Jan 02 2018 12:27:06

I hate when hypocrites come to piracy subs with this sentiment. Fuck off.

permalink

[-] [deleted] | -30 points | Dec 15 2017 15:26:12

[deleted]

permalink

[-] pelito | 22 points | Dec 15 2017 15:45:50

number of copies sold is their reward.

permalink

[-] dawkholiday | 18 points | Dec 15 2017 16:10:00

That's a very stupid comment. They've sold that many copies because that small Indy studio put in work they deserve to be rewarded for. This isnt EA. Use your brain before your greed son

permalink

[-] [deleted] | -13 points | Dec 15 2017 19:01:27

[removed]

permalink

[-] dawkholiday | 3 points | Dec 15 2017 19:31:31

lol

permalink

[-] headinsockedboy | 1 points | Dec 15 2017 23:22:04

You sir/ma'am, have offended me.

permalink

[-] V1rtus | -39 points | Dec 15 2017 14:47:43

That's your argument?

permalink

[-] pelito | 37 points | Dec 15 2017 14:52:28

nope. just a suggestion. you can do whatever the fuck you want.

permalink

[-] V1rtus | -10 points | Dec 15 2017 22:16:01

Geez, thanks. This game is sold to at least 1 million people, that's 1x20=20 million revenue, and that's only Steam, and only that game with no other revenue mentioned like sponsorships and merchandise sold if they have it. That's not a small studio anymore (well compared to EA it is) but generally speaking, they're not lacking money that's for sure, and a few people pirating this and promoting this great game won't hurt them much. btw it's "indie" not indy.

permalink

[-] pelito | 9 points | Dec 15 2017 22:24:59

You’re right. They’re already made loads of money. They don’t need anymore. Thank you for enlightening me.

permalink

[-] TheGoodSheep | 91 points | Dec 15 2017 12:05:39

Piece of advice: Only trust people that are constant uploaders or at least have a trustworthy account older than a few months.
- Captain Hindsight

permalink

[-] throwawayadalkesfkl | 46 points | Dec 15 2017 12:33:15

especially if downloading executable files

permalink

[-] mehdbc | 10 points | Dec 15 2017 20:52:37

I feed my PC a daily dose of Truvada to keep it from being infected.

I have installed at least 1000 programs over years and it had yet to be infected

permalink

[-] EGDoto | 70 points | Dec 15 2017 13:08:14

Yeah, called it out on last post https://www.reddit.com/r/megalinks/comments/7j286t/game_cuphead_113/dr4pi73/?context=3 (archive since he deleted his ~~comment~~ account.) and got downvoted, and I also reported that post via report button, but mods didn't remove it....

Also just in general I think rule for sharing exe files needs to be more strict than for sharing regular stuff that is posted here.

permalink

[-] timmeh83 | 41 points | Dec 15 2017 14:42:58

Bastard deleted his account.

permalink

[-] _AddaM | 35 points | Dec 15 2017 14:02:01

Good looking out! Thanks for the heads up.

Also: Eat shit, /u/pcgamer21

permalink

[-] [deleted] | 31 points | Dec 15 2017 15:35:23

[deleted]

permalink

[-] R3a1ityCheque | 21 points | Dec 15 2017 16:14:34

Yep it seems the most sensible choice. If you want .exe files get them from trustworthy places.

I usually use FitGirl for games, never had a problem.

permalink

[-] Glu7enFree | 6 points | Dec 16 2017 00:06:18

One of the installers for her games; I think it was AC: Syndicate, locked my computer up hard and wouldn't recognize any peripheral mice or keyboards until I did a clean reinstall of windows.
Ive never had any other problems from her, so make sure you get her games from a decent source to save any hassles.

permalink

[-] Satamata | 10 points | Dec 16 2017 05:38:34

Sometimes people release software using her name for recognition. Not saying you did but you may have accidentally downloaded one of those

permalink

[-] Glu7enFree | 2 points | Dec 16 2017 08:07:27

I'd say that was likely to be what happened.

permalink

[-] [deleted] | 29 points | Dec 15 2017 13:53:44

From personal experience: definitely has a virus. Computer suddenly ran like shit. Woke up with new system files in System32 (which have now been deleted) and new installed apps (which have now been reset if they were Windows programs, and uninstalled if they were not). Best of luck to you all.

permalink

[-] howsyeronions | 37 points | Dec 15 2017 16:21:35

Probably still have shit on your computer associated with it.

malwarebytes.org to feel a little safer

permalink

[-] [deleted] | 19 points | Dec 15 2017 17:17:44

15 threats (pup.reimage) found, thank you for the advice ;_;

permalink

[-] mcfoolin | 27 points | Dec 15 2017 17:35:41

Personally I would just do a clean install of windows. Wouldn't want to risk missing something

permalink

[-] [deleted] | 16 points | Dec 15 2017 20:57:53

This really fucks me up. I feel so dumb. I knew it was suspicious but I trusted it anyway because it came from megalinks. I'm so disappointed in myself.

permalink

[-] mcfoolin | 10 points | Dec 15 2017 23:51:13

If it makes you feel better, I was actually going to download it too but then I was too lazy and I put it off. It can happen to anyone.

permalink

[-] NoWayIn | 9 points | Dec 15 2017 17:39:05

Guess I have to reinstall windows now....

permalink

[-] Demiglitch | 28 points | Dec 15 2017 13:59:45

Trusting software

I'd rather rob a gamestop

permalink

[-] 8_Some_Chicken_Shit | 15 points | Dec 15 2017 12:44:46

Usually cracked games are detected by av's as viruses (.dll and .exe files), but what's quoted above is not normal for when installling cracked games. Its better to download from sources like the Fitgirlrepacks site who are trusted and do not embed software with malware.

permalink

[-] greenmky | 19 points | Dec 15 2017 19:13:29

Good post.

I work in Cyber Incident Response. I follow this sub, but not for software. I'm too paranoid for cracked EXEs and the like these days. Honestly you should be too. But if you're gonna do it...

Normally AV software will flag a heuristic detection for dubious software (esp cracking stuff) or a "file is relatively unknown" type error. Something like "Trojan.Gen" (Symantec) or Artemis! (McAfee). These are awfully hit and miss. A lot of false positives. It means it tripped the AV for suspicious behavior, but the AV company doesn't know for sure what it is yet.

When it flashes something more specific, like MALWARE FAMILY NAME:BACKDOOR you're in trouble. It means it thinks it knows exactly what it is...a much stronger detection.

Get a file hashing tool like winMD5sum and you can drag/drop to get the file hash. And then check the hash on Virustotal. This won't necessarily catch NEW hashes of malware, but at least you can verify the file status (is it properly signed, how new is the file, etc) and if the file is months old, it is probably relatively safe. Vs. a new / unknown file or an unsigned one.

permalink

[-] CrapWeasel- | 1 points | Dec 16 2017 01:10:03

Good stuff. Thank you

permalink

[-] [deleted] | 15 points | Dec 15 2017 16:54:16

[deleted]

permalink

[-] Seylox | 3 points | Dec 16 2017 17:21:48

Thank you | Megalinks MegaDB you, it was actually your comment that made me research this more, I was almost ready to accept I had made a mistake :)

permalink

[-] Nippy69 | 11 points | Dec 15 2017 12:41:26

so the gog installer was actually a backdoor trojan?

permalink

[-] RentalSuperhero | 3 points | Dec 15 2017 15:29:01

Appears to be

permalink

[-] KidAstronaut | 10 points | Dec 15 2017 20:06:56

He hit TPB a few days ago with nearly 100 uploads of some of the most popular software. All super sus files.

permalink

[-] Mysterymender | 8 points | Dec 15 2017 15:07:33

Thanks OP but his post threw up a big ol red flag as soon as I saw them. Look folks if you want to get your games like this then just use trusted sites found in the FAQ of the sub. Don't trust some rando saying hey guys check out these games.

permalink

[-] Silverbackus | 10 points | Dec 15 2017 18:21:58

I actually feel guilty for not commenting on what I thought was an obvious virus.

permalink

[-] master_coyote | 7 points | Dec 15 2017 14:17:30

this pcgamer21 is a moron we had a chat and i got that what he is. never download stuff from him

permalink

[-] bpfn | 5 points | Dec 15 2017 15:51:40

What was it about his chats that revealed him to be a moron?

permalink

[-] IgnoreMyName | 7 points | Dec 16 2017 00:31:58

Just get your games from here yo. https://pcgames-download.com/

Check my comment history and you can see I've been a part of this sub for quite a while now and have mentioned that site before. They upload games to Mega as well as a bunch of other sites so you download from where you prefer. There are other sites like it but so far, they haven't let me down.

permalink

[-] Mrfrodough | 6 points | Dec 15 2017 23:35:13

Confirmed i got the bladabindi backdoor. Also fuerboos.A!cl Trojan. Doing additional scans with malware bytes (this time added rootkit scan) and another with windows defender. Im wondering if thatll be safe enough if they come up empty or i should backup and wipe

permalink

[-] MyAssDoesHeeHawww | 5 points | Dec 16 2017 17:32:40

Once your system has been compromised, there's no way of telling what's been done to make it more vulnerable. Even if you remove all suspect files, there may have been changes that aren't corrected.

permalink

[-] Mrfrodough | 2 points | Dec 16 2017 17:34:31

Ya im gonna format after work today. Theres stuff im gonna lose but oh well

permalink

[-] MyAssDoesHeeHawww | 1 points | Dec 16 2017 17:40:30

Yeah, they're a pain but it's still better than the doubt.

Don't forget to write down/save settings you like.

permalink

[-] Mrfrodough | 3 points | Dec 16 2017 17:51:30

Good idea. One possible problem (and from what i understand its long odds) is i plugged in my external after i probably had it but before i knew. Ill have to scan that with my laptop (not much on it so if i gotta format that no biggie). But from what ive heard usb transfer of the virus is possible just rare.

permalink

[-] MyAssDoesHeeHawww | 2 points | Dec 16 2017 18:03:31

Viruses like to spread themselves so a scan can't hurt.

permalink

[-] Mrfrodough | 2 points | Dec 16 2017 18:05:05

Indeed. If its clean i just wasted a bit of time is all

permalink

[-] swaggy100 | 5 points | Dec 15 2017 20:11:24

LINK TO HIS POSTS: pcgamer21

Since his user is deleted and you may want to check his posts to see if you downloaded one of them.

permalink

[-] R3a1ityCheque | 4 points | Dec 15 2017 12:37:24

Thanks for the heads up.

permalink

[-] xXsTeffOovErkILLXx | 3 points | Dec 15 2017 15:02:07

So am I still good if I haven't tried to run it or is just downloading it enough?

permalink

[-] NoWayIn | 4 points | Dec 15 2017 17:40:18

You're fine as long as you didn't run it

permalink

[-] xXsTeffOovErkILLXx | 1 points | Dec 15 2017 17:57:53

That puts my mind at ease, thank you.

permalink

[-] [deleted] | 3 points | Dec 15 2017 16:45:54

[deleted]

permalink

[-] Jhfm | 5 points | Dec 15 2017 16:58:25

Did you also run Advanced Full scan with Windows Defender? Also you should download this and run Malware scan.

https://www.emsisoft.com/en/software/eek/

permalink

[-] [deleted] | 2 points | Dec 15 2017 17:41:23

[deleted]

permalink

[-] confesstoyou | 2 points | Dec 16 2017 05:12:26

Don't rely on Defender. It's garbage. It doesn't matter what anyone else says, the tests run by AV-Comparatives show that it's far inferior to other AV apps out there. I'd suggest Bitdefender Free, so long as you're not using a VPN. Right now, it's behaving very poorly with various VPNs and essentially breaks them. They're aware of the situation and are supposedly fixing it, but there's been no status update from them for a long time on the issue.

permalink

[-] morzinbo | 1 points | Dec 16 2017 00:53:06

I just ran rkill and it killed my google music manager...

permalink

[-] bidomo | 5 points | Dec 15 2017 20:21:54

backup your stuff and reinstall, is the best way to get rid of everything

permalink

[-] Mrfrodough | 4 points | Dec 16 2017 03:45:01

Ya but if you backup you could infect your external. This particular backdoor has the possibility of transfering via usb. :(

permalink

[-] bidomo | 1 points | Dec 16 2017 04:09:52

dude, that's common since 2002, just disinfect after you made the backup with a free kaspersky offline, and that's it.

permalink

[-] confesstoyou | 2 points | Dec 16 2017 05:14:39

I wouldn't touch Kaspersky with a 20-foot pole. It's looking like they've done some seriously shady shit working with the Russian government, and I don't think it's a coincidence that they decided to finally release a free version when these connections were noticed and major chains in the US stopped selling their products.

Bitdefender's real-world tests score just as well as Kaspersky's, according to AV-Comparatives. I'd use them.

permalink

[-] clrksml | 3 points | Dec 15 2017 18:11:58

I reported something similar months ago about another game and another user. I didn't report it to the mods which I should've but I did do a write up.

https://www.reddit.com/r/megalinks/comments/6j8qwe/pcwindows_sniper_elite_4_deluxe_editionsteampunks/djpunkq/

/u/Seylox

/u/iPhunwa2

permalink

[-] Should_have_listened | 6 points | Dec 15 2017 18:12:11

should of

Did you mean should've?


I am a bot account.

permalink

[-] clrksml | 4 points | Dec 15 2017 18:13:50

/thread

/kms

permalink

[-] jack-rabbit-slims | 3 points | Dec 15 2017 19:54:54

God damn, I just installed his OKAMI package.....

EDIT. WTF I was about to install his Tokyo Xanadu release as well, when I remembered that he uploaded that one as well

permalink

[-] Mrfrodough | 2 points | Dec 15 2017 22:13:59

I almost did too but then i got fitgirls repack straight from site

permalink

[-] flomeista | 3 points | Dec 16 2017 00:36:30

why can people with accounts younger than a year even post here?

permalink

[-] WerkinAndDerpin | 3 points | Dec 16 2017 02:01:54

Is there a way to list all of his posts? He deleted his account

permalink

[-] EGDoto | 2 points | Dec 16 2017 09:55:13

Here is google cache of his posts: http://webcache.googleusercontent.com/search?q=cache:https://www.reddit.com/user/pcgamer21/posts/

permalink

[-] Oionos | 2 points | Dec 15 2017 13:32:13

bumping for more visibility

permalink

[-] shampeh | 2 points | Dec 15 2017 14:24:03

Always run CRC/MD5 checks against a third party like srrDB

permalink

[-] Mrfrodough | 2 points | Dec 15 2017 14:31:51

One of his comments is deleted and shows deleted on that comments user name. Wonder if mods finally kicked him or he deleted that reddit account.....

permalink

[-] Hal666 | 7 points | Dec 15 2017 14:35:09

If you click on his username he deleted his account.

permalink

[-] Mrfrodough | 3 points | Dec 15 2017 14:42:30

Ah. Im on mobile so its more of a pain. I probably got hit by it myself but i think malwarebytes caught it after i scanned this morning. Wasnt the only thing,hadnt scanned in a few weeks :(

permalink

[-] Hal666 | 2 points | Dec 15 2017 14:55:31

Sorry to hear that, what's your active anti virus?

permalink

[-] Mrfrodough | 3 points | Dec 15 2017 15:12:32

Windows defender.though ive considered malwarebytes premium for the active

permalink

[-] Hal666 | 1 points | Dec 15 2017 16:23:06

You on Windows 10?

permalink

[-] Mrfrodough | 1 points | Dec 15 2017 16:27:09

Ya.

permalink

[-] Akuma2015 | 2 points | Dec 15 2017 17:17:24

I downloaded his Cuphead RAR file but when I tried to extract it with WinRar, it failed (some error). After that I didn't go through with downloading it again with AntiVirus disabled. Is there anything I need to do to protect my computer or am I safe?

permalink

[-] bidomo | 3 points | Dec 15 2017 21:02:54

if you didn't launch the infected files, no, but you should scan your computer from time to time, this isn't the only source of malicious software

permalink

[-] NoWayIn | 2 points | Dec 15 2017 17:37:41

I installed this game using his download. How can I remove the virus that was in it?

I already bought the game since I liked it, I just wanted to try it out

permalink

[-] confesstoyou | 2 points | Dec 16 2017 05:18:02

I don't know about this virus in particular, and I'm no computer expert, but traditionally, I've used Malwarebytes and Bitdefender to deal with infected machines. Run Malwarebytes first and remove anything it finds. Next, install Bitdefender and run a scan. If the virus prevents running these programs, use Rkill to kill its processes and/or try running them in Safe Mode.

permalink

[-] PudendalCommodore | 2 points | Dec 15 2017 17:39:58

Yeah this is correct, luckily i sandboxed the installation and i caught it trying to open a port in my windows firewall

permalink

[-] radiocaf | 2 points | Dec 15 2017 23:07:07

Dude, seriously, nice one for the heads up, I grabbed the Okami HD post, but just deleted it from my MEGA. Thanks a lot!

permalink

[-] shadows4n1c | 2 points | Dec 16 2017 02:09:57

some tools -

Check open ports - | Megalinks MegaDB Check open ports -

TCP View - https://docs.microsoft.com/en-us/sysinternals/downloads/

Extra strength (has helped in tough cases) virus scan - | Megalinks MegaDB Extra strength (has helped in tough cases) virus scan -

Just use the on demand, not the 30 day trial, https://www.hitmanpro.com/en-us/hmp.aspx

Other on-demand stuff - | Megalinks MegaDB Other on-demand stuff -

Sophos Virus Removal Tool

F-Secure Online Scanner

Kaspersky Virus Removal Tool

GMER

RootkitBuster

RogueKiller

Norton Power Eraser

If you have Avast, Protection/Scans/Boot Time Scan. If you have lots cracks and will be in the room for an hour, click settings and choose "Ask."

Info on threat - | Megalinks MegaDB Info on threat -

Info on the generic version of the Trojan/RAT/Dropper family, looks it has been around since as early as 2014 and the version in Cuphead was updated at least as recently as this July,

https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=MSIL/Bladabindi

permalink

[-] yrneh12 | 2 points | Dec 16 2017 05:19:23

In light of this, what are some free/open source anti-virus/spyware scanners/protectors that are reliable? I'm currently on Avira, but times and companies change.

permalink

[-] EGDoto | 1 points | Dec 16 2017 10:03:40

I use Eset NOD32 and never had problems, it's very light and it has gaming mode making more light when you game, he also detected and deleted this file as soon as I extracted rar.

It is not free but there are lot of sites/fb pages where you get trial codes for 30 days so I do that every 30 days. And on top of that I use Malwarebytes on-demand when I think I downloaded something bad, just to see if NOD32 missed something.

permalink

[-] Leafshade | 2 points | Dec 16 2017 12:33:12

At least in the case of Cuphead, it's on GOG, always go with GOG downloads because the installer can verify its integrity.

Honestly the game is worth buying either way, the devs basically gambled their houses to make it, and I for one think supporting them if possible is a must.

permalink

[-] iPhunwa2 | 1 points | Dec 15 2017 15:28:57

We're still discussing on how to prevent this from happening in the future. If you have any suggestions do send us a message.

E: https://redd.it/7k3xkj

permalink

[-] Akuma2015 | 39 points | Dec 15 2017 17:36:02

Probably a common suggestion would be giving flairs to trusted and reputable uploaders.

permalink

[-] nikesta | 5 points | Dec 15 2017 19:24:06

I would also like to suggest some kind of IP ban. i know you can't block them from accessing the site. but perhaps you can for the sub!

permalink

[-] uwotm8_888 | 3 points | Dec 15 2017 22:50:52

Maybe a mod can use a sandbox pc to scan exe files since only few are uploaded

permalink

[-] Doip | -8 points | Dec 15 2017 21:19:18

No games?

permalink

[-] her-jade-eyes | 1 points | Dec 15 2017 15:30:14

thanks - glad I havent installed yet

permalink

[-] blackroseyagami | 1 points | Dec 15 2017 15:30:56

sigh

to think i was excited to install this tonight

permalink

[-] [deleted] | 1 points | Dec 15 2017 15:36:15

[deleted]

permalink

[-] Silverbackus | 7 points | Dec 15 2017 18:22:41

If you've installed you need to either hit up a few different anti-virus / Malware scans or just go ahead and fresh install windows.

permalink

[-] [deleted] | 1 points | Dec 15 2017 18:24:27

[deleted]

permalink

[-] Silverbackus | 8 points | Dec 15 2017 18:40:00

I have limited knowledge on this but given that Port access in high on the to-do list for this one seems to indicate that you could be datamined, your Keylogs could be recorded and your accounts eventually stolen. That's not to say what WILL happen, that's just to say what could.

permalink

[-] kittyfox92 | 1 points | Dec 15 2017 21:51:51

Yikes. I'm glad I didn't ever get around to launching this file.

permalink

[-] allnamestakennn | 1 points | Dec 15 2017 23:06:33

Stuff like this is why I got into the habbit of opening anything remotely suspicious in sandbox.

Has helped more than once and it doesn't cost almost any effort. Can highly recommend.

permalink

[-] smalliver365 | 1 points | Dec 16 2017 00:20:32

Shit.. I downloaded it

permalink

[-] shadows4n1c | 1 points | Dec 16 2017 01:57:36

You found this just from a firewall alert?

Always wondering what all people use to keep tabs on things...

permalink

[-] GosuGian | 1 points | Dec 26 2017 18:07:17

I know what he's spreading.. "RAT" Remote Administration Tool it can control your computer especially webcam.

permalink

[-] doctorwho6904 | 1 points | Jan 13 2018 14:13:47

Well i'm glad that new measures have been put in. Hopefully this won't happen again.

permalink

[-] [deleted] | -11 points | Dec 15 2017 12:48:29

[deleted]

permalink

[-] EGDoto | 23 points | Dec 15 2017 13:10:02

But it's gog, it shouldn't need crack.

permalink

[-] kolt54321 | 14 points | Dec 15 2017 13:30:22

THE MD5 CHECKSUM ISN'T THE SAME.

It most definitely should be. How do you explain that?

permalink

[-] Mrfrodough | 8 points | Dec 15 2017 13:48:00

As others have said gog games are drm free by default and dont need a "crack". That alone kinda makes it odd.

permalink

[-] balroc | 5 points | Dec 15 2017 14:06:10

Lul can't own up to mistakes. Which leads me to believe you are doing this on purpose?

permalink

[-] alakaboem | -30 points | Dec 15 2017 14:13:37

OkamiHD is the normal IGG CODEX package, from top to bottom, scanned like 4 times with no issue. Dude was uploading files he could find for people, no clue wtf you're talking about there.

permalink

[-] RentalSuperhero | 11 points | Dec 15 2017 15:28:20

Might want to upgrade your antivirus buddy

permalink