Somone got busted today by UTDC and got booted out...think the name was Hiro or something like that....might wanna check logs if not done already maybe a CSI/DOU IP check π
Sometime after 7PM central time. I dn't know how long after
LOL Camp !!!
I'm surprised (if it's really Hiro that you saw) as he is the son of a good friend of mine and he is not able to find and use any cheat !!! He's not very accurate on computer stuff.
The only things he knows is to go and look for skins sometimes. But may be a skinchanger has been detected as a cheat ?... β
Let's have a look on that.
By my side, I'll ask him about this event... If he's been booted out, I must be surprised about that !! π
[UTDCv16] +---------------------------------------------------+
[UTDCv16] Client is using a cheat
[UTDCv16] Player Name......: hiro
[UTDCv16] Player IP........: 65.184.129.155:2211
[UTDCv16] Client UT Version: 436
[UTDCv16] Cheat Type.......: Hook,
[UTDCv16] Cheat Trace......: khooker.exe
[UTDCv16] +---------------------------------------------------+
Looks like a valid catch to me. Anyone know who this guy is? Is it your friend Moon?
T
Moon wrote: I'm surprised (if it's really Hiro that you saw) as he is the son of a good friend of mine and he is not able to find and use any cheat !!! He's not very accurate on computer stuff.
Looks like he was able to find something.
I haven't done anything yet pending investigation.
T
traceroute to 65.184.129.155 (65.184.129.155), 30 hops max, 40 byte packets
1 10.112.0.1 (10.112.0.1) 11.79 ms 10.111 ms 10.323 ms
2 172.22.10.1 (172.22.10.1) 15.124 ms 13.343 ms 21.03 ms
3 172.22.32.145 (172.22.32.145) 26.307 ms 13.17 ms 11.141 ms
4 172.22.32.110 (172.22.32.110) 31.428 ms 14.25 ms 14.55 ms
5 so-2-0-2-0.gar2.atlanta1.level3.net (63.210.88.133) 32.253 ms 18.255 ms 18.858 ms
6 so-3-3-0.bbr1.atlanta1.level3.net (4.68.96.13) 31.554 ms 18.515 ms 17.392 ms
7 4.68.128.201 (4.68.128.201) 45.558 ms 37.826 ms 34.681 ms
8 ge-1-1-55.car1.washington1.level3.net (4.68.121.133) 31.324 ms 44.591 ms 32.81 ms
9 roadrunner.car1.washington1.level3.net (4.79.228.30) 32.955 ms 32.914 ms 34.822 ms
10 pos6-0.wlmgncilm-rtr1.ec.rr.com (24.93.64.114) 38.195 ms 36.52 ms 38.342 ms
11 srp2-0.wlmgncilm-rtr2.ec.rr.com (24.25.33.66) 39.178 ms 37.419 ms 36.225 ms
12 pos1-0.wlmgncetn-ubr1.ec.rr.com (24.25.33.14) 54.813 ms 55.228 ms 40.328 ms
13 cpe-065-184-129-155.ec.res.rr.com (65.184.129.155) 52.35 ms 48.565 ms 46.092 ms
I am thinking this isn't your friend unless he lives in the US.
T
I did find this:
What is it?
SiS Keyboard Daemon - khooker.exe
What does it do?
khooker.exe - System Tray utility which gets installed by the drivers of the latter day SiS VGA cards. Can cause errors at startup and isn't required
Virus Precautions:
You'll want to keep an eye on this google search for any known viruses. The normal location of this file is C:WINDOWSSystem32khooker.exe
So I guess this needs to be looked at further before we can decide how to react.
T
I agree Tommy !!!
First, yes, I know Hiro veeeeery well Tom : he's the son of a couple of friends where I live when I go to this French Atlantic island called "Ile d'Yeu". π π
But the thing I was sure is they (actually) are unable to do something like find hooks and any kind of special PC stuff.
Hiro has a brother that plays sniper veeeeeeeeeeery well. He comes sometimes in our Dou server under " [][] i[]_ " name. Otherwise, he is in Alienclan since a few weeks (I didn't ask him to be a Dou member as he doesn't speak any english and he loves "Run and Gun" : and I know we don't !!!!
So if you see that NiL player, it's possible that UTDC say there's a hook as it's the same PC (same IP).
May be we could burn out a player that doesn't try to cheat !!!
I'm glad I was right but we wust stay prudent then !!! When I saw your first post with the word "hook" and name "khooker.exe" I was really surprised. And now, after reading what it is, I'll phone to Hiro's father for him to rename that useless prog and if the PC still runs correctly, to remove it.
cya after the week end π
Well maybe he was on server with another name b4. Saw Hiro on and decided to use that name for when they came back with a hook when the real Hiro was not on. Or just a co-inki dink that they use the same name. I wanna think this is the first an evil cheater.
lookin at info below...its not your frenchy Moon
info on first ip# from traceroute report above:
City From IP
Generated by http://www.DNSstuff.com
IP: 65.184.129.155:2211
Country: United States
City: Havelock, North Carolina
Country Code: US
Currency: USD [United States Dollars]
Private IP? No
Known Proxy? No
=================================
So who is at the other end of the traceroute in WA.?
City From IP
Generated by http://www.DNSstuff.com
IP: 2438468
Country: Unknown
City: Mountlake Terrace, Washington
Private IP? No
Known Proxy? No
WOW it's harder to resolve !!! If it's not my friend's son, I can't have any idea !
Only the bad luck of the two same names !
Let's have a look on the following of that stuff...
Latest Post: IRC How-To Our newest member: Wrotkaw Recent Posts Unread Posts
