Go Back   Rage3D » Rage3D Discussion Area » Community and Site Discussions » Front Page News
Rage3D Subscribe Register FAQ Members List Calendar Mark Forums Read

Front Page News News and Rage3D articles as it appears on the frontpage.

Closed Thread
 
Thread Tools Display Modes
Old Apr 29, 2010, 02:28 PM   #1
Advertisement (Guests Only)

Login or Register to remove this ad
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Exclamation NGOHQ Accused of Offering Trojan-infected "PhysX" Mod for Radeons for Download

Last week the new version of the Hybrid PhysX mod was posted by NGOHQ.com member 'GenL', to allow users of AMD ATI Radeon cards to use a discrete nVidia card as a PhysX processor - something blocked by the normal nVidia drivers.

[H]ard|OCP reports that this new installer includes the trojan Infostealer.Gamepass:

It has come to our attention that the Hybrid PhysX Mod from NGOHQ.com posted earlier this month contained the Infostealer.Gampass trojan. According to Symantec, Infostealer.Gampass specifically targets video game credentials, log-ins and passwords. I would recommend uninstalling this and doing a full scan on your computer. I would also recommend that you avoid downloading anything from sites that do not scan files before offering them to the general public. We apologize to anyone that may have downloaded the Hybrid PhysX Mod after we posted that link. Thanks to Theron E. for the heads up.


Source - [H]ard|OCP

Hopefully this is an oversight on NGOHQ's part, and they didn't deliberately distribute a trojan. Also, hopefully this is not a malicious insertion by GenL, and he is, like so many, without adequate protection when procuring his 'entertainment content'.

EDIT - Update From NGOHQ:

Quote:
Originally Posted by REGENERATION View Post
I'm from NGOHQ and everything published here is a complete lie. Including the latest "warez site" comment. That's just a false positive due to the included packer. In addition, no one even bothered to contact us or to ask for our reply/explanation. Amateurish journalism at its best, and I’m going to issue a press release asap.

caveman-jim, you can go **** yourself.
Quote:
Originally Posted by REGENERATION View Post
GenL is helping the entire community for free out of good intentions. He’s not getting paid for his work, so don’t blame him for using free PE packer, all the good ones cost money. And he has to use one to prevent it from getting cracked, since Nvidia has blocked his mod in the recent Geforce drivers. The guy is doing you all a favor and gets **** in return. At least give him the opportunity to reply and defend himself.

Last edited by caveman-jim : Apr 29, 2010 at 07:37 PM. Reason: added NGOHQ response
caveman-jim is offline  
Old Apr 29, 2010, 02:38 PM   #2
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Kyle on [H] about posting the driver link previously:

Quote:
Originally Posted by Kyle Bennett
We do take responsibility for posting it. We have notified our readers, apologized, and removed previous links. Suggesting otherwise is simply being uninformed and not reading our post.

NGOHQ will never again see a link on HardOCP and within a few days, the name will be banned from being typed here at all. The only reason it is not right now is so that it can be discussed easily.
http://hardforum.com/showpost.php?p=...4&postcount=14

And

Quote:
Originally Posted by Blue Falcon
NGOHQ is not to be trusted. They went from warez site to hacking site to 'custom video drivers' site in the space of a few years. No one remembers anymore but they are/were not as clean cut as they would have everyone believe these days. So seeing this news item doesn't surprise me one little bit.
http://hardforum.com/showpost.php?p=...34&postcount=3

Quote:
Originally Posted by thesmokingman
That's pretty harsh when you consider that ALL the previous versions of the mod have been flagged by as gamer.pass. Whether it really is a trojan well in the case of the latest mod, I'm not sure. However all the past versions have not been actually infected. I haven't read of any actual viral behavior yet or seen any on my modded system.
http://hardforum.com/showpost.php?p=...3&postcount=18

Last edited by caveman-jim : Apr 29, 2010 at 02:41 PM.
caveman-jim is offline  
Old Apr 29, 2010, 02:51 PM   #3
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Virustotal.com allows you to scan and see which detection engines find issues with an online file, before you open it:

Results for Hybrid PhysX Mod 1.3 (17 of 45 engines detect a problem)

(Courtesy of Maximuss @ [H])
caveman-jim is offline  
Advertisement (Guests Only)
Login or Register to remove this ad
Old Apr 29, 2010, 02:55 PM   #4
ready2rumbelX
InSaneX
 
Join Date: Oct 2001
Location: Kenya Kenya
Posts: 1,131
ready2rumbelX is still being judged by the masses


Default

That's quite suprising.....I doubt the trojan was placed intentionally...NGOHQ is a pretty reputable site....

r2rX
__________________
ready2rumbelX

-Intel Core 2 Quad Q6600 @ 3.6Ghz
-Gigabyte EP45-UD3R motherboard
-2x2GB DDR2 G.Skill PC-6400 (@ 850Mhz) RAM (4-4-4-11)
-Western Digital 500GB + Seagate 1.5TB SATA II HDD
-MSI GTX 480 1536 MB GDDR 5 (850/1700/8000)
-Windows 7 Ultimate (x64) + Ubuntu 10.10 (x64)
-Realtek HD (ALC899A) w/ Creative PC Works 5.1
-2 x L.G DVD/CD-RW Combo - GSA-H62N
ready2rumbelX is offline  
Old Apr 29, 2010, 03:00 PM   #5
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

I suspect GenL has the trojan on his development machine and it inserts itself into all his builds. Either that or he has a very odd pack/compress method that is triggering this false detection (of 18 different anti-virus engines).

I won't comment on how reputable NGOHQ is.

Last edited by caveman-jim : Apr 29, 2010 at 03:04 PM.
caveman-jim is offline  
Old Apr 29, 2010, 04:24 PM   #6
aRandomRobot
Returned Lurker
 
Join Date: Apr 2009
Location: United States Salem, OR
Posts: 1,331
aRandomRobot is still being judged by the masses


Default

Quote:
Originally Posted by caveman-jim View Post
Kyle on [H] about posting the driver link previously:

Quote:
Originally Posted by Kyle Bennett
NGOHQ will never again see a link on HardOCP and within a few days, the name will be banned from being typed here at all. The only reason it is not right now is so that it can be discussed easily.
Is it just me or is this a little extreme


As for the mod itself, I really wouldn't be surprised if it's just a false positive. There are plenty of (mostly) legit programs that get flagged as being infected.

(That being said, I'm really surprised no thought to scan it before now. Scanning should be a standard practice with any shady hacked or modified drivers, free software, keygens etc. )
aRandomRobot is offline  
Old Apr 29, 2010, 04:54 PM   #7
ready2rumbelX
InSaneX
 
Join Date: Oct 2001
Location: Kenya Kenya
Posts: 1,131
ready2rumbelX is still being judged by the masses


Default

Quote:
Originally Posted by caveman-jim View Post
I won't comment on how reputable NGOHQ is.
Out of curiosity, why so?

r2rX
__________________
ready2rumbelX

-Intel Core 2 Quad Q6600 @ 3.6Ghz
-Gigabyte EP45-UD3R motherboard
-2x2GB DDR2 G.Skill PC-6400 (@ 850Mhz) RAM (4-4-4-11)
-Western Digital 500GB + Seagate 1.5TB SATA II HDD
-MSI GTX 480 1536 MB GDDR 5 (850/1700/8000)
-Windows 7 Ultimate (x64) + Ubuntu 10.10 (x64)
-Realtek HD (ALC899A) w/ Creative PC Works 5.1
-2 x L.G DVD/CD-RW Combo - GSA-H62N
ready2rumbelX is offline  
Old Apr 29, 2010, 06:10 PM   #8
REGENERATION
Radeon R200
 
Join Date: May 2004
Posts: 63
REGENERATION is still being judged by the masses


Default

I'm from NGOHQ and everything published here is a complete lie. Including the latest "warez site" comment. That's just a false positive due to the included packer. In addition, no one even bothered to contact us or to ask for our reply/explanation. Amateurish journalism at its best, and I’m going to issue a press release asap.

Quote:
I won't comment on how reputable NGOHQ is.
caveman-jim, you can go **** yourself.

Last edited by REGENERATION : Apr 29, 2010 at 06:24 PM.
REGENERATION is offline  
Old Apr 29, 2010, 06:28 PM   #9
Lupine
Administrator
 
Join Date: Sep 2002
Location: United States Grants Pass, OR
Posts: 32,413
Lupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at best


Default

The source thread referenced is from HardOCP. If you want to clarify something, you might want to begin at the source. Looking forward to your press release.

EDIT: and perhaps post something in the thread on your site (link)? Seems like a very odd omission to have zero relevant responses in there.
__________________
The only thing as dangerous as taking hydroxychloroquine is listening to someone who is taking hydroxychloroquine. Therein lies the road to madness.
Lupine is offline  
Old Apr 29, 2010, 06:40 PM   #10
DarkSyde
Rage3D Veteran
 
Join Date: Sep 2002
Location: United States The Armpit of America (Ohio)
Posts: 1,337
DarkSyde is still being judged by the masses


Default

I'm going to call BS on this one. Probably a false positive due to however the program is packaged. Besides we all know Symantec is a worthless pile.
DarkSyde is offline  
Old Apr 29, 2010, 06:44 PM   #11
REGENERATION
Radeon R200
 
Join Date: May 2004
Posts: 63
REGENERATION is still being judged by the masses


Default

GenL is helping the entire community for free out of good intentions. He’s not getting paid for his work, so don’t blame him for using free PE packer, all the good ones cost money. And he has to use one to prevent it from getting cracked, since Nvidia has blocked his mod in the recent Geforce drivers. The guy is doing you all a favor and gets **** in return. At least give him the opportunity to reply and defend himself.
REGENERATION is offline  
Old Apr 29, 2010, 07:23 PM   #12
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Quote:
Originally Posted by REGENERATION View Post
I'm from NGOHQ and everything published here is a complete lie. Including the latest "warez site" comment. That's just a false positive due to the included packer. In addition, no one even bothered to contact us or to ask for our reply/explanation. Amateurish journalism at its best, and I’m going to issue a press release asap.



caveman-jim, you can go **** yourself.
Back atcha, buddy.

Quote:
Originally Posted by DarkSyde View Post
I'm going to call BS on this one. Probably a false positive due to however the program is packaged. Besides we all know Symantec is a worthless pile.
Symantec might not have a perfect reputation, but 18 AntiVirus vendor heuristics getting a false position indicates at the very least that the application creation method needs tweaking.

Quote:
Originally Posted by REGENERATION View Post
GenL is helping the entire community for free out of good intentions. He’s not getting paid for his work, so don’t blame him for using free PE packer, all the good ones cost money. And he has to use one to prevent it from getting cracked, since Nvidia has blocked his mod in the recent Geforce drivers. The guy is doing you all a favor and gets **** in return. At least give him the opportunity to reply and defend himself.
That's what the NGOHQ website is for. Have you responded on [H]ard|OCP, the originators of these claims?
caveman-jim is offline  
Old Apr 29, 2010, 07:29 PM   #13
VW_Factor
ÜBERVERBOTEN!
 
Join Date: Dec 2002
Location: Germany Leesburg, GA
Posts: 21,769
VW_Factor can recite pi backwardsVW_Factor can recite pi backwardsVW_Factor can recite pi backwardsVW_Factor can recite pi backwardsVW_Factor can recite pi backwardsVW_Factor can recite pi backwardsVW_Factor can recite pi backwards


Default

Quote:
Originally Posted by caveman-jim View Post
I suspect GenL has the trojan on his development machine and it inserts itself into all his builds. Either that or he has a very odd pack/compress method that is triggering this false detection (of 18 different anti-virus engines).

I won't comment on how reputable NGOHQ is.
I think its funny how Kyle has reacted. It doesnt surprise me in the least. Anything too keep another website down, and boost hits to his own right?

Seeing as how NGO is handling this as well.
__________________
Quote:
Originally Posted by Redeemed
Granted, this is coming from the fella' who's had over 1,000lbs of bucking muscle under neath him.
Quote:
Originally Posted by John Smith
"Fail" = verb "Failure" = noun
VW_Factor is offline  
Old Apr 29, 2010, 07:35 PM   #14
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Quote:
Originally Posted by VW_Factor View Post
I think its funny how Kyle has reacted. It doesnt surprise me in the least. Anything too keep another website down, and boost hits to his own right?

Seeing as how NGO is handling this as well.
Quote:
Originally Posted by Kyle_Bennett
We are harsh mother****ers and I don't have time to invest in sitting around dicking around with this kind of stuff. We cut our losses and move on. If there is a need, the void will be filled.
Kyle putting the [H] in [H]ard|OCP.
caveman-jim is offline  
Old Apr 29, 2010, 07:40 PM   #15
RadeonBBQ
touchdown.
 
Join Date: Nov 2002
Location: United States PA
Posts: 383
RadeonBBQ is still being judged by the masses


Default

Quote:
Originally Posted by VW_Factor View Post
I think its funny how Kyle has reacted. It doesnt surprise me in the least. Anything too keep another website down, and boost hits to his own right?

Seeing as how NGO is handling this as well.
How has Kyle "kept another website down"?
__________________
MSI X58 Eclipse
Core i7 920 @ 3.6 GHZ
6 GB OCZ TRI CHANNEL DDR3-1600
HP W2207
1TB+500GB Seagate Barracuda
Corsair HX1000W
Visiontek HD4870X2


http://valid.canardpc.com/cache/banner/588819.png
RadeonBBQ is offline  
Old Apr 29, 2010, 07:41 PM   #16
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Quote:
Originally Posted by ready2rumbelX View Post
Out of curiosity, why so?

r2rX
I really don't have a good handle on the history of the site. My recollection is they used to have questionable content on them, and they have certainly skirted the edges of polite behaviour here (as evidenced in this thread), but thats just my opinion. They never post any of our articles but expect us to link to their content, rather a questionable practice.
caveman-jim is offline  
Old Apr 29, 2010, 07:59 PM   #17
Mystik
Radeon Arctic Islands
 
Join Date: Jun 1999
Location: Canada etobicoke
Posts: 5,624
Mystik is still being judged by the masses


Default

Quote:
Originally Posted by caveman-jim View Post
They never post any of our articles but expect us to link to their content, rather a questionable practice.
if they never post any of R3D's articles, how come R3D is seemingly obliged to
post their stuff?
__________________
low yield toner cartridge.
Mystik is offline  
Old Apr 29, 2010, 08:14 PM   #18
GenL
Newbie
 
Join Date: Apr 2010
Posts: 9
GenL is still being judged by the masses


Default

Quote:
Originally Posted by caveman-jim View Post
Symantec might not have a perfect reputation, but 18 AntiVirus vendor heuristics getting a false position indicates at the very least that the application creation method needs tweaking.
Just wanted to reply on this...
You are missing a fact that Symantec is the only 1 which indicated this as a "info-stealer:gamepass". 4 (out of 18) state it is packed, others state somekind of "heur" and "gen" (generic).
Application creation method needs tweaking? How so? Perhaps antivirus creation methods need tweaking? Their reports literally say "we dunno how to unpack this packer to look inside the app... we can only unpack UPX... so this is a trojan!".
There are malware which gets 0/41 result at virustotal today, i know at least 1 such thing and it is 2 years old. Unlike my piece of code(+data), it does steal user's passwords for real.

Just why people are trusting antivirus companies so hard? They ask you to pay for every month of using their software, you know.

Last edited by GenL : Apr 29, 2010 at 08:18 PM.
GenL is offline  
Old Apr 29, 2010, 08:18 PM   #19
Talon_262
Lurker Supreme
 
Join Date: Mar 2002
Location: United States Macho Grande
Posts: 1,790
Talon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird sings


Subscriber
Default

Quote:
Originally Posted by REGENERATION View Post
I'm from NGOHQ and everything published here is a complete lie. Including the latest "warez site" comment. That's just a false positive due to the included packer. In addition, no one even bothered to contact us or to ask for our reply/explanation. Amateurish journalism at its best, and I’m going to issue a press release asap.



caveman-jim, you can go **** yourself.
REGENERATION, I can understand your need to do some damage control on this, but calling cavey out for posting what y'all, the [H], and posters here and at the [H] have been saying on this is a bit like misdirection.

And yeah, I remember your ass from the whole EVGA OC program imbroglio....I see you haven't changed that much.
__________________
Ad aspera per astra | Post counts don't mean anything to me...I go for quality, not quantity ;)
------------------------------------------------
Steam: TNT_TedStriker | Origin: TedStriker75
Talon_262 is online now  
Old Apr 29, 2010, 08:37 PM   #20
Lupine
Administrator
 
Join Date: Sep 2002
Location: United States Grants Pass, OR
Posts: 32,413
Lupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at bestLupine considers Jack Bauer an amateur at best


Default

Quote:
Originally Posted by REGENERATION View Post
GenL is helping the entire community for free out of good intentions. He’s not getting paid for his work, so don’t blame him for using free PE packer, all the good ones cost money. And he has to use one to prevent it from getting cracked, since Nvidia has blocked his mod in the recent Geforce drivers. The guy is doing you all a favor and gets **** in return. At least give him the opportunity to reply and defend himself.
GenL absolutely has the opportunity to reply and "defend" himself. In fact, isn't that exactly the point of a forum discussion - to provide a "forum" for discussing issues? I fail to see why you're taking this personally, lashing out at other forum's members while you're at it. Regardless, please check the attitude and the door and make sure your arguing the points rather than attacking forum members.

Quote:
Originally Posted by Mystik View Post
if they never post any of R3D's articles, how come R3D is seemingly obliged to post their stuff?
Rage3D links to items we feel will interest and/or educate our readership. Generally speaking, however, we do expect our regular news affiliates to reciprocate. This, however, is a totally separate discussion from this thread's topic.

EDIT: I checked our affiliate mailing list, and we haven't been sending article notifications to NGOHQ.com since ~2008. I added them, and they've posted our latest review (link). In other words, this is a non-issue.
Quote:
Originally Posted by GenL View Post
Just wanted to reply on this...
You are missing a fact that Symantec is the only 1 which indicated this as a "info-stealer:gamepass". 4 (out of 18) state it is packed, others state somekind of "heur" and "gen" (generic).
Application creation method needs tweaking? How so? Perhaps antivirus creation methods need tweaking? Their reports literally say "we dunno how to unpack this packer to look inside the app... we can only unpack UPX... so this is a trojan!".
There are malware which gets 0/41 result at virustotal today, i know at least 1 such thing and it is 2 years old. Unlike my piece of code(+data), it does steal user's passwords for real.

Just why people are trusting antivirus companies so hard? They ask you to pay for every month of using their software, you know.
Appreciate you stopping by, and appreciate the noninflammatory response.
__________________
The only thing as dangerous as taking hydroxychloroquine is listening to someone who is taking hydroxychloroquine. Therein lies the road to madness.
Lupine is offline  
Old Apr 29, 2010, 08:54 PM   #21
Mystik
Radeon Arctic Islands
 
Join Date: Jun 1999
Location: Canada etobicoke
Posts: 5,624
Mystik is still being judged by the masses


Default

Quote:
Originally Posted by Lupine View Post
Rage3D links to items we feel will interest and/or educate our readership. Generally speaking, however, we do expect our regular news affiliates to reciprocate. This, however, is a totally separate discussion from this thread's topic.
gotcha.
__________________
low yield toner cartridge.
Mystik is offline  
Old Apr 29, 2010, 09:17 PM   #22
kn00tcn
zero-zero
 
Join Date: Jun 2006
Location: Canada Toronto
Posts: 4,643
kn00tcn is still being judged by the masses


Default

Quote:
Originally Posted by GenL View Post
Just wanted to reply on this...
You are missing a fact that Symantec is the only 1 which indicated this as a "info-stealer:gamepass". 4 (out of 18) state it is packed, others state somekind of "heur" and "gen" (generic).
Application creation method needs tweaking? How so? Perhaps antivirus creation methods need tweaking? Their reports literally say "we dunno how to unpack this packer to look inside the app... we can only unpack UPX... so this is a trojan!".
There are malware which gets 0/41 result at virustotal today, i know at least 1 such thing and it is 2 years old. Unlike my piece of code(+data), it does steal user's passwords for real.

Just why people are trusting antivirus companies so hard? They ask you to pay for every month of using their software, you know.
exactly

symantec is the last a/v i'd trust, & you cant just rely on 1 either

the virustotal scan is perfect to get an idea on what it is (a bunch of 'generic' or 'heuristics' alarms based on the packer)
__________________
AMD/ATI Catalyst Driver Profiles
OpenGL startup crash fix #1 / fix #2 (for < radeon 6000 cards?)
better crossfire for Section8 Prejudice, Hydrophobia, UDK
kn00tcn is offline  
Old Apr 29, 2010, 09:55 PM   #23
DiaperJe|\|i3
Proud Papa
 
Join Date: Mar 2001
Posts: 12,328
DiaperJe|\|i3 once held a door open for a complete strangerDiaperJe|\|i3 once held a door open for a complete strangerDiaperJe|\|i3 once held a door open for a complete strangerDiaperJe|\|i3 once held a door open for a complete stranger


Default

Anti-vir and Avast has always tagged this PhysX mod as a trojan. I just always tell it to ignore it. It used to pick up my gothic3 community patches too.
__________________
{currently watching : Planet Earth }
{currently reading : Spook Country }
{currently missing : Vengence : SH64 : ChrisRay : ragejg : Efin }
DiaperJe|\|i3 is offline  
Old Apr 29, 2010, 09:58 PM   #24
REGENERATION
Radeon R200
 
Join Date: May 2004
Posts: 63
REGENERATION is still being judged by the masses


Exclamation NGOHQ Responds to HardOCP

It has come to our attention that HardOCP has recently published false accusations regarding GenL’s PhysX Mod. HardOCP claims that mod is infected with a Trojan and recommends avoiding it and avoiding files offered by NGOHQ.com. HardOCP hasn’t even bothered to contact us to request clarification, response or explanation before it published the story. In addition, HardOCP’s Kyle Bennett has posted the following fascistic comment on his forums: "NGOHQ will never again see a link on HardOCP and within a few days, the name will be banned from being typed here at all. The only reason it is not right now is so that it can be discussed easily."

We have checked GenL’s latest mod by using advanced tools and we couldn’t find any record of malicious content in it. The file is fully clean and safe, like all the other files hosted here. However, some Antivirus software does detect it as a Trojan, but that’s just a false positive due to the included EXE packer. Software developers use packers to compress their executable files and protect them from being cracked and debugged, a well known fact by every software developer and end-user. GenL is forced to use a packer since Nvidia has blocked his mod in recent drivers and it is likely they will try to do it again. GenL has even warned users regarding the false positive issue in the FAQ.


Read the entire response at NGOHQ.com.

Last edited by Android1 : Apr 30, 2010 at 06:42 AM.
REGENERATION is offline  
Old Apr 29, 2010, 10:03 PM   #25
REGENERATION
Radeon R200
 
Join Date: May 2004
Posts: 63
REGENERATION is still being judged by the masses


Default

REGENERATION is offline  
Old Apr 29, 2010, 10:23 PM   #26
Talon_262
Lurker Supreme
 
Join Date: Mar 2002
Location: United States Macho Grande
Posts: 1,790
Talon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird singsTalon_262 knows why the caged bird sings


Subscriber
Default

Quote:
Originally Posted by REGENERATION View Post
I understand Kyle & Co. pissed you off, but with this "rebuttal", you just bypassed sticking your foot in your mouth and instead deepthroated both of your legs. [H], just as NGOHQ and R3D are, is a private enterprise, run by their ownership/management as they see fit, not to soothe your ego; if they're wrong, I think they'll say so.

/seriously, whipping out the word "fascist" or a variation thereof to describe Kyle and the [H]? That word doesn't mean what you think it means...
__________________
Ad aspera per astra | Post counts don't mean anything to me...I go for quality, not quantity ;)
------------------------------------------------
Steam: TNT_TedStriker | Origin: TedStriker75

Last edited by Talon_262 : Apr 29, 2010 at 10:29 PM.
Talon_262 is online now  
Old Apr 29, 2010, 11:02 PM   #27
caveman-jim
Deposed King of Rage3D
 
Join Date: Oct 2003
Posts: 48,941
caveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badgescaveman-jim doesn't need no stinkin' badges


Default

Quote:
Originally Posted by GenL View Post
Just wanted to reply on this...
You are missing a fact that Symantec is the only 1 which indicated this as a "info-stealer:gamepass". 4 (out of 18) state it is packed, others state somekind of "heur" and "gen" (generic).
Application creation method needs tweaking? How so? Perhaps antivirus creation methods need tweaking? Their reports literally say "we dunno how to unpack this packer to look inside the app... we can only unpack UPX... so this is a trojan!".
There are malware which gets 0/41 result at virustotal today, i know at least 1 such thing and it is 2 years old. Unlike my piece of code(+data), it does steal user's passwords for real.

Just why people are trusting antivirus companies so hard? They ask you to pay for every month of using their software, you know.
A lot of what you say is correct, and for the most part people trust their AntiVirus because the level of knowledge required to second-guess them is very high, and the risks even higher.

Notice also, your response, and the NGOHQ rebuttal is posted unedited, and even on our front page. Like I said - back at ya, Regen.

Last edited by caveman-jim : Apr 29, 2010 at 11:07 PM.
caveman-jim is offline  
Old Apr 29, 2010, 11:27 PM   #28
REGENERATION
Radeon R200
 
Join Date: May 2004
Posts: 63
REGENERATION is still being judged by the masses


Default

Quote:
Originally Posted by Lupine View Post
GenL absolutely has the opportunity to reply and "defend" himself. In fact, isn't that exactly the point of a forum discussion - to provide a "forum" for discussing issues? I fail to see why you're taking this personally, lashing out at other forum's members while you're at it. Regardless, please check the attitude and the door and make sure your arguing the points rather than attacking forum members.
James is trying to get under my skin for a long time due to some argument we had in the past.

I take it "personally" because a fine man of our community has been falsely accused for criminal activity without any evidence or investigation, just because Kyle was too lazy to do his job.

There's a word for something like that: Slander.

Last edited by REGENERATION : Apr 30, 2010 at 12:02 AM.
REGENERATION is offline  
Old Apr 30, 2010, 12:17 AM   #29
moshpit
Resident Mac Hater
 
Join Date: Feb 2001
Location: United States PIT, PIT, PIT, in the PIT!!!
Posts: 19,661
moshpit once held a door open for a complete strangermoshpit once held a door open for a complete strangermoshpit once held a door open for a complete strangermoshpit once held a door open for a complete stranger


Subscriber
Default

Great job, Kyle. Open mouth, insert foot.
__________________
If you feel like I'm hurting your wittle feelings too much, refer me to this thread : A new nicer moshpit???
"Go screw yourself Apple."
moshpit is offline  
Old Apr 30, 2010, 12:30 AM   #30
tahrikmili
Radeon R600
 
Join Date: Sep 2002
Posts: 662
tahrikmili is still being judged by the masses


Default

Does anyone read [H] anymore? I quit during the FX5800 days. They are not doing journalism. At all.
__________________
AOpen H600B12 | High Power 430W | Biostar TA780G-M2+ | AMD Phenom X3 8750 | A-Data 2x 2GB PC6400 | Gecube Radeon 4850 | 2x Samsung HD300LJ SATA (RAID0) | LG GH22 | Samsung SyncMaster 932NW | Windows 7 x64
tahrikmili is offline  
Closed Thread


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Steam Briefly Offering "Unique" TF2 Items to Sam & Max: Devil's Playhouse Buyers Android1 Front Page News 0 Apr 15, 2010 04:48 PM
Unable to Download Driver From ATI Support "Unauthorized Download?" jon bon AMD Radeon Software Discussion and Support 4 Jan 28, 2007 01:43 PM
You guys hear about this? "A German accused of killing and eating a man regrets..." klutzon Off Topic Lounge 5 Dec 17, 2003 06:11 AM
What demo is better "Dawning" or "Radeons Ark"? Caleb Off Topic Lounge 7 Nov 9, 2001 11:30 PM


All times are GMT -5. The time now is 12:52 AM.



Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
All trademarks used are properties of their respective owners. Copyright ©1998-2011 Rage3D.com
Links monetized by VigLink