caught a virus while playing
tonight, Moscow time, I came across a player with software that gained access to my computer, I had to turn off the Internet to access the keyboard, which entered the data itself, I was also warned before turning off the PC that other users using the computer might be disconnected. Later, with the help of an antivirus, I found a couple of "host rat" files of the Rdpwrapper type that were infected. I also lost my admin rights. I solved the problem myself, but the situation upset me a lot. I haven't downloaded any software other than Battlebit in the last two weeks.
17 Replies
shit sounds scary af
the incident occurred (last game) at Β±2:10 Moscow time from an account under the nickname ZXCBOT (steam), I bought the game the same day. I can't say anything else
huh
did you download anything sketchy at all?
could you DM me the host rat file if you still have it somewhere
i dont expect the game to have any RCE's specially due to dedicated servers
first time ive heard of anyone in BBR getting RCEed
common on call of duty tho (older titles)
also what was the profile picture or steamID of the ZXCBOT person?
also id highly suggest reinstalling your windows and formatting any drive connected to your PC
OK π
his steamID
76561198999477314
incase you want to make a report to @Modmail
also
did you ever visit any sketchy link?
download anything recently?
id suggest running an extension called noscript which disables javascript on untrusted websites (if a website is broken youll need to enable permissions on said site)
unfortunately, I didn't save the file, I deleted everything, I only have a picture of the antivirus screen
hosts looks like the normal windows hosts file
maybe a sketchy link in there but shouldnt hurt anything
now the DLL and exe id be iffy on if they were spoofed (like how people used calculator to hide malware back in the day)
from the game, I did not go to other links from battlebit, in the evening I did nothing, just sat with friends in the discord. I'm not at home right now, when I arrive, I can send an antivirus report, I think it can help figure it out. Maybe this is my personal problem
yeah i personally cant see any RCE with battlebit itself
but report would be ideal to see
if you also have a spare USB
id suggest installing medicat USB
bunch of useful tools for repairing
yes, I started the calculators, right after turning off the keyboard... huh
thx
so it was a dormant virus then
not from BBR
probably from something way in the past
Π° ΠΏΡΠΈΡΠ΅ΠΌ ΡΡΡ Π±Π°ΡΡΠ»Π±ΠΈΡ ΡΠΎ?
I wonder if this is related to what happened in Apex today?
thats what im wondering
any updates on the origin? I don't use twitter myself.
Origin?
Well thereβs no RCE via EAC
Most likely source engine for the apex stuff