WindowsGuy
Freshman Member
Posts: 77
OS: Windows 10 pro
Theme: default
CPU: Intel Pentium Inside
RAM: 8,00 GB
GPU: Intel HD graphics, NVIDIA Geforce 610M
|
Post by WindowsGuy on Jun 16, 2024 8:56:53 GMT -8
every programmer can add virus code to exe, but to public source code its can delete the virus code for public If you start to trust antiviruses, don't go to this forum, because almost all basic theme and classic theme activation tools are detected by antiviruses. For the reason that they perceive activating these themes as a malicious activity. BasicThemer6 does not contain malicious code. okay, i will trust (i forever disabled windows defenter due a pirate cracked apps) |
|
|
|
Post by OrthodoxWin32 on Jun 16, 2024 9:42:28 GMT -8
okay, i will trust (i forever disabled windows defenter due a pirate cracked apps) Afterwards, you can always add a program to the Windows Defender exclusion list. Overall, Windows Defender detects most malicious programs, you just need to know how to recognize a false positive and place it in the exclusion list. |
|
|
|
Post by Windows User on Jun 16, 2024 13:30:16 GMT -8
Wow, I've never seen Alcatel doing this kind of malicious thing like sending a fake DWMBlurGlass 3.0 on Discord, i don't even have Discord.
|
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Jun 17, 2024 1:54:11 GMT -8
If I have the windows 7 fonts from Alcatel’s themekit, do I have to replace these fonts? its harmless its not like you can put a virus in tff font |
|
|
|
Post by nikita28347 on Jun 17, 2024 3:37:25 GMT -8
If I have the windows 7 fonts from Alcatel’s themekit, do I have to replace these fonts? its harmless its not like you can put a virus in tff font yeah, i was dumb asf when i wrote that. |
|
|
|
Post by classicalpink on Jun 26, 2024 17:14:28 GMT -8
I've been lurking for a while now, but I've had basicthemer5 on my system for a few months now. It's shocking to have found out about this (eventually), but I'm thankful to have 2FA enabled for most of my accounts. From what I've scoured in the pages of posts is that basicthemer5 might/might not have a logger in the code? I've already gone ahead and replaced the app(?) with basicthemer6 and changing my passwords now, but as someone that just wanted to get a modern Windows XP experience and have non-existent code-reading skills, it is disappointing that such contributions has been used for malicious intent  |
|
Jevil7452
Regular Member
Posts: 433
OS: Windows Vista Enterprise (6.0.6003)/Windows 7 Enterprise (6.1.7601)
Theme: Windows Aero by Microsoft Corporation (on both)
CPU: Intel Core i7-3770k
RAM: 32GB (4x8GB DDR3)
GPU: NVIDIA GeForce GTX 980 Ti + Intel(R) HD Graphics 4000
Computer Make/Model: OEM0
|
Post by Jevil7452 on Jun 27, 2024 5:19:56 GMT -8
The only really malicious thing is the fake DWMBlurGlass 3.0. The rest of the apps haven't been found to be malicious.
|
|
|
|
Post by OrthodoxWin32 on Jun 27, 2024 6:23:15 GMT -8
Jevil7452 You are absolutely right, this page misleads users, it's unbearable. There was even someone who reinstalled their Windows because of this, even though there was no malware on their system.
|
|
NanamiMadobe
Sophomore Member
Likes trying to be Tech Savvy and learn more about Tech, also huge OS-Tan Fan!
Posts: 241
OS: Windows 10 (22H2)
Theme: Default
CPU: Intel Core i7-8550U @ 1.80GHz
RAM: 8.00 GB (7.9 GB usable)
GPU: Intel UHD Graphics 620 (Integrated), NVIDIA MX150 (Dedicated)
|
Post by NanamiMadobe on Jul 10, 2024 20:19:25 GMT -8
So what happened afterwards his stuff is still up and I just read this I don't use his mods.
|
|
|
|
Post by valkchariot on Jul 10, 2024 21:35:12 GMT -8
Jevil7452 You are absolutely right, this page misleads users, it's unbearable. There was even someone who reinstalled their Windows because of this, even though there was no malware on their system.
The problem is that there is the potential for him to add malware to his existing software. He's damaged his own reputation to the point where people now have to be overly cautious when using any of his programs. He's done it before, so who's to say he wouldn't do it again? |
|
NanamiMadobe
Sophomore Member
Likes trying to be Tech Savvy and learn more about Tech, also huge OS-Tan Fan!
Posts: 241
OS: Windows 10 (22H2)
Theme: Default
CPU: Intel Core i7-8550U @ 1.80GHz
RAM: 8.00 GB (7.9 GB usable)
GPU: Intel UHD Graphics 620 (Integrated), NVIDIA MX150 (Dedicated)
|
Post by NanamiMadobe on Jul 10, 2024 22:18:09 GMT -8
Jevil7452 You are absolutely right, this page misleads users, it's unbearable. There was even someone who reinstalled their Windows because of this, even though there was no malware on their system.
The problem is that there is the potential for him to add malware to his existing software. He's damaged his own reputation to the point where people now have to be overly cautious when using any of his programs. He's done it before, so who's to say he wouldn't do it again? Is their any alternatives to his Mods of Windhawk couldn't someone just rewrite it or take the source code and remove the malicious parts of it? Look I'm not a software developer but I feel someone should just fork his Mods and make one without having literal Malware in it! Look I'm already overly paranoid when it comes to installing stuff now I have to be even more paranoid that someone is trying to poison my shit! |
|
|
|
Post by OrthodoxWin32 on Jul 11, 2024 0:32:28 GMT -8
Is their any alternatives to his Mods of Windhawk couldn't someone just rewrite it or take the source code and remove the malicious parts of it? Look I'm not a software developer but I feel someone should just fork his Mods and make one without having literal Malware in it! Look I'm already overly paranoid when it comes to installing stuff now I have to be even more paranoid that someone is trying to poison my shit! There is no malicious code in the two released Windhawk mods, I have said this many times, and the Windhawk developer has said this too. If this were the case, these mods would no longer be in the official Windhawk repository. What happened was that Alcatel created a fake Discord server with fake DWMBlurGlass developers, and shortly after released a fake, malicious version of DWMBlurGlass. It was a coincidence that it was discovered that Alcatel was behind all this, we could have never discovered it, because Alcatel has never done this in the name of Alcatel. |
|
|
|
Post by OrthodoxWin32 on Jul 11, 2024 0:42:30 GMT -8
The problem is that there is the potential for him to add malware to his existing software. He's damaged his own reputation to the point where people now have to be overly cautious when using any of his programs. He's done it before, so who's to say he wouldn't do it again? A release on Github is not falsifiable, the date cannot be changed. The source code is, but it is public. |
|
NanamiMadobe
Sophomore Member
Likes trying to be Tech Savvy and learn more about Tech, also huge OS-Tan Fan!
Posts: 241
OS: Windows 10 (22H2)
Theme: Default
CPU: Intel Core i7-8550U @ 1.80GHz
RAM: 8.00 GB (7.9 GB usable)
GPU: Intel UHD Graphics 620 (Integrated), NVIDIA MX150 (Dedicated)
|
Post by NanamiMadobe on Jul 12, 2024 16:14:14 GMT -8
Alcatel sent token loggers to lots of people and committed numerous cyber crimes. Literally leaked people's personal information and sent racist messages from their accounts. The program he used is a custom build of DWMBLURGLASS. If the build of DWMBLURGLASS you are using is NOT from the official repository or it's version is 3.0 delete it IMMEDIATELY,change all of your account passwords and do a full scan on your computer. Do not use any themes,Windhawk mods,dll patches or basically anything by Alcatel if you value your accounts security and your personal information.
Mods and Admins this is a pretty serious situation so please pin this if possible.
Stay away from these programs/mods/places:
Yeah I will make sure to stay as far away from them btw did you look at my message I really want to talk to you about something in a DM. |
|
1998isback
New Member
Posts: 6
Computer Make/Model: Acer Predator
|
Post by 1998isback on Jul 27, 2024 11:30:59 GMT -8
At first, my dumb self thought this was about the old phone company. Thanks for the heads up.
|
|
technicalissues
Sophomore Member
Windows 10 that is 1:1 to 7; coming soon
Posts: 157
OS: Windows 10 22H2
Theme: Windows 7 Visuals and functions
CPU: Intel i5-13400F
RAM: 16GB DDR5
GPU: NVIDIA RTX 4060
|
Post by technicalissues on Aug 19, 2024 11:37:48 GMT -8
The uDWM patched I got rid of thick framer. The uDWM patch does not come from Alcatel initially (it is just redistributed by). Afterwards, there is now a Windhawk mod that does the same thing, you can use it.
that is no longer true... it detected the same threat as the dwmblurglass thing and crypto and credentials popped up in programdata, but i removed it before nay damage happened. |
|
|
|
Post by OrthodoxWin32 on Aug 19, 2024 13:38:06 GMT -8
that is no longer true... it detected the same threat as the dwmblurglass thing and crypto and credentials popped up in programdata, but i removed it before nay damage happened. What program are you talking about? I don't understand anything. If it's Windhawk mods, it's impossible.
|
|
|
|
Post by enderboy on Aug 19, 2024 22:19:39 GMT -8
that is no longer true... it detected the same threat as the dwmblurglass thing and crypto and credentials popped up in programdata, but i removed it before nay damage happened. What program are you talking about? I don't understand anything. If it's Windhawk mods, it's impossible.
He’s talking about the udwm patch, don’t tell me Alcatel has not learnt from his lesson, because of that everyone stay away from all alcatels stuff, apart from the wind hawk mods, they are fine |
|
technicalissues
Sophomore Member
Windows 10 that is 1:1 to 7; coming soon
Posts: 157
OS: Windows 10 22H2
Theme: Windows 7 Visuals and functions
CPU: Intel i5-13400F
RAM: 16GB DDR5
GPU: NVIDIA RTX 4060
|
Post by technicalissues on Aug 20, 2024 1:04:59 GMT -8
that is no longer true... it detected the same threat as the dwmblurglass thing and crypto and credentials popped up in programdata, but i removed it before nay damage happened. What program are you talking about? I don't understand anything. If it's Windhawk mods, it's impossible.
The wind hawk mod, I KNOW IT MUST BE APPROVED BY RAMEN BUT IN AN ALAYNSIS and checking files I found that it got detected as b something, I’ll check that when I get home, but it’s the same thing as what dwm fake is: a logger for stuff. So it was the wind hawk mod since as mentioned as soon as I installed it a credential and crypto folder popped up in a hidden location… so it is the wind hawk mod and I have official dwmblurglass so it is the wind hawk mod. I also use aero10 so it isn’t his theme mod edit: to clarify this is for the thick frames mod and I’m typing on phone so typing is bad |
|
|
|
Post by OrthodoxWin32 on Aug 20, 2024 1:52:17 GMT -8
The wind hawk mod, I KNOW IT MUST BE APPROVED BY RAMEN BUT IN AN ALAYNSIS and checking files I found that it got detected as b something, I’ll check that when I get home, but it’s the same thing as what dwm fake is: a logger for stuff. So it was the wind hawk mod since as mentioned as soon as I installed it a credential and crypto folder popped up in a hidden location… so it is the wind hawk mod and I have official dwmblurglass so it is the wind hawk mod. I also use aero10 so it isn’t his theme mod edit: to clarify this is for the thick frames mod and I’m typing on phone so typing is bad Anyway, the thick frames mod is obsolete now, I think there are better versions of it. However, sorry but your problems can only come from another program. I just reread the current code of the thick frames mod, and there is nothing that is able to do what you describe. On the other hand, Aclatel had not created its malware from scratch, it had used a tool for this, which others can also use... Your PC may be infected by something similar.
|
|
