It's a trojan. Virustotal counts 30/38 tests as a trojan (NOD32 included) and Symantec AntiVirus corporate sees it as Infostealer.Gampass - a generic detection for a Trojan horse that steals online game accounts, such as Lineage, Ragnarok online, Rohan, and Rexue Jianghu.
I already ran it, and in addition to patching my game it added numerous registery changes and a b160485.sys in C:\Windows\system32\
Of course you need proof:
www dot imagedump.com/index.cgi?pick=get&tp=544351
The game's patched LaunchBFII.exe itself doesn't seem to have a virus. I've been running it and haven't been getting any more problems. Should probably upload that instead. Safer to replace the exe instead of running some patcher.
Last edited by JBB; 15-01-2009 at 05:35 PM.
|