Quantcast
Jump to content
Search In
  • More options...
Find results that contain...
Find results in...
    1. Welcome to GTAForums!

    1. Red Dead Redemption 2

      1. PC
      2. Gameplay
      3. Missions
      4. Help & Support
    2. Red Dead Online

      1. Gameplay
      2. Find Lobbies & Outlaws
      3. Help & Support
      4. Frontier Pursuits
    1. Crews & Posses

      1. Recruitment
    2. Events

    1. GTA Online

      1. Diamond Casino & Resort
      2. DLC
      3. Find Lobbies & Players
      4. Guides & Strategies
      5. Vehicles
      6. Content Creator
      7. Help & Support
    2. Grand Theft Auto Series

    3. GTA 6

    4. GTA V

      1. PC
      2. Guides & Strategies
      3. Help & Support
    5. GTA IV

      1. Episodes from Liberty City
      2. Multiplayer
      3. Guides & Strategies
      4. Help & Support
      5. GTA IV Mods
    6. GTA Chinatown Wars

    7. GTA Vice City Stories

    8. GTA Liberty City Stories

    9. GTA San Andreas

      1. Guides & Strategies
      2. Help & Support
      3. GTA SA Mods
    10. GTA Vice City

      1. Guides & Strategies
      2. Help & Support
      3. GTA VC Mods
    11. GTA III

      1. Guides & Strategies
      2. Help & Support
      3. GTA III Mods
    12. Top Down Games

      1. GTA Advance
      2. GTA 2
      3. GTA
    13. Wiki

      1. Merchandising
    1. GTA Modding

      1. GTA V
      2. GTA IV
      3. GTA III, VC & SA
      4. Tutorials
    2. Mod Showroom

      1. Scripts & Plugins
      2. Maps
      3. Total Conversions
      4. Vehicles
      5. Textures
      6. Characters
      7. Tools
      8. Other
      9. Workshop
    3. Featured Mods

      1. DYOM
      2. OpenIV
      3. GTA: Underground
      4. GTA: Liberty City
      5. GTA: State of Liberty
    1. Red Dead Redemption

    2. Rockstar Games

    1. Off-Topic

      1. General Chat
      2. Gaming
      3. Technology
      4. Programming
      5. Movies & TV
      6. Music
      7. Sports
      8. Vehicles
    2. Expression

      1. Graphics / Visual Arts
      2. GFX Requests & Tutorials
      3. Writers' Discussion
      4. Debates & Discussion
    1. News

    2. Forum Support

    3. Site Suggestions

aboutseven

Malware inside Angry Planes & Noclip Mod

Recommended Posts

MarshallRawR

I did use the noclip mod but I don't have any fade.exe or the BAE2BCEE folder, I also searched for the fade.exe on my computer.

 

I've had the mod for ages and nothing has happened, but nonetheless I deleted the mod.

 

Mmmh...

I the few other mods I used are the PalmBeach's Rapid Reponse (police) mod and also the Ambulance Missions mod.

Share this post


Link to post
Share on other sites
ZZCOOL

appears i don't have it on my system shame that gta modding has to be so tainted iv days those were the days

Share this post


Link to post
Share on other sites
FlyingAce

Fade.exe sometimes is automatically caught by your AV and it doesnt tell you search for the other init.exe as well and the registry string and change passwords

 

also could someone please remake this mod? xD

Share this post


Link to post
Share on other sites
Microbots

Well, gta5-mods came out with a statement.

 

They're going to beef up the process of testing scripts and recommend people use lua and cs scripts so that it's faster to verify.

Share this post


Link to post
Share on other sites
Drkz

@TJGM

 

Which is funny since Windows doesn't label everything as unsafe.

 

As for the rest of your post : at this point you're obviously just moving goalposts. I don't even know why i bother anymore, and i just don't know how someone could not learn from his mistakes.

 

We'll enjoy, this has happened before and the flood gates have been open for years and years, it rarely happens. You keep acting like this will frequently happen now because of this one incident and if that's the case, why didn't it become more common when this previously happened? People who want to upload viruses know how easy it is to upload them among the modding communities, how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

I'm acting like it will be more frequent now for multiple reasons. The first one being that GTA V is by far the most popular GTA title, both in numbers, players and everything, the second one being that the game and the modding scene has way more media coverage (reddit, websites, and especially Youtube) than before, with the implications it brings, and the third one because there's nobody to check your sh*t, no security, and no consequences.

 

It's a free win on multiple aspects, there's like close to absolutely no downsides whatsoever. If you were looking for easy Steam accounts, or just to ruin peoples day, ignoring such an easy way to infect people would be retarded.

 

It's not a niche business anymore. Mods are being featured on PCGamer, all over internet and all over Youtube. Hell, if Steam maintained the paying mods you could even live out of your mods.

 

how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

Because close to no mods for Skyrim / Fallout / ArmA / whatever are coming in a potentially dangerous format like .exe or .asi. Simple as that. 99.99 % of the time it's loose files inside an archive. And go away with your sh*tty "anyone could include a virus in any files anyway !!!!!!", while this is true to a very marginal extent, doing so is far more complicated and far less accessible than packing your sh*tty password stealer in a .asi file and calling it a day. Accessibility and simplicity, this is what makes the biggest difference here.

Edited by Drkz

Share this post


Link to post
Share on other sites
Silent

EDIT: Asked around, turns out you can store viruses into GTA file types. It's possible to store and execute a virus via a model file, texture archive file etc.. (this was done for Vice City's file types, which would've been .dff and .txd)

But this can be patched... with an ASI mod.

 

tumblr_lwuis4jQbt1qi0tzv.jpg

Share this post


Link to post
Share on other sites
boswellboxer

f*ck I HAVE FADE.EXE

Share this post


Link to post
Share on other sites
Stoney0503

I'm starting to think that someone else is adding the malware and not the creators, some people have the malware and some people don't, I don't think a modder woul go out of his way to make a mod to f*ck with people (they probably would with simple mods like noclip).

Edited by Stoney0503

Share this post


Link to post
Share on other sites
TJGM

@TJGM

 

Which is funny since Windows doesn't label everything as unsafe.

 

As for the rest of your post : at this point you're obviously just moving goalposts. I don't even know why i bother anymore, and i just don't know how someone could not learn from his mistakes.

 

We'll enjoy, this has happened before and the flood gates have been open for years and years, it rarely happens. You keep acting like this will frequently happen now because of this one incident and if that's the case, why didn't it become more common when this previously happened? People who want to upload viruses know how easy it is to upload them among the modding communities, how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

I'm acting like it will be more frequent now for multiple reasons. The first one being that GTA V is by far the most popular GTA title, both in numbers, players and everything, the second one being that the game and the modding scene has way more media coverage (reddit, websites, and especially Youtube) than before, with the implications it brings, and the third one because there's nobody to check your sh*t, no security, and no consequences. It's a free win on multiple aspects, there's like close to absolutely no downsides whatsoever. It's not a niche business anymore. Mods are being featured on PCGamer and all over Youtube.

 

how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

 

Because close to no mods for Skyrim / Fallout / ArmA / whatever are coming in a potentially dangerous format like .exe or .asi. Simple as that. 99.99 % of the time it's loose files inside an archive. And go away with your sh*tty "anyone could include a virus in any files anyway !!!!!!", while this is true to a very marginal extent, doing so is far more complicated and far less accessible than packing your sh*tty password stealer in a .asi file and calling it a day.

Okay, fine, you've some what won me over and clearly won this argument. But still, I don't think you need to label mods as unsafe, we should be able to trust mod hosters to do decent testing with these mods before they get approved, especially ASI mods.

 

I probably should've admitted I didn't have facts to back up my argument about two posts ago or so, but nobody likes to admit they're wrong. :p

Share this post


Link to post
Share on other sites
Silent

I'm starting to think that someone else is adding the malware and not the creators, some people have the malware and some people don't, I don't think a modder woul go out of his way to make a mod to f*ck with people (they probably would with simple mods like noclip).

Too integrated with the ASI to be added post-compilation. Most definitely was added to the original source code.

Edited by Silent

Share this post


Link to post
Share on other sites
ZZCOOL

I'm starting to think that someone else is adding the malware and not the creators, some people have the malware and some people don't, I don't think a modder woul go out of his way to make a mod to f*ck with people (they probably would with simple mods like noclip).

maybe it was the reuploads that contained the malware makes a whole lot more sense

Share this post


Link to post
Share on other sites
BlackScout

I feel so happy I haven't actually went into all this modding thing, I was almost doing it.

I mean, I won't stay away from it, but that was big luck.

No viruses here, I am clean :D

Sad to hear about the others whose are in a bad situation =/

Share this post


Link to post
Share on other sites
Drkz

 

@TJGM

 

Which is funny since Windows doesn't label everything as unsafe.

 

As for the rest of your post : at this point you're obviously just moving goalposts. I don't even know why i bother anymore, and i just don't know how someone could not learn from his mistakes.

 

We'll enjoy, this has happened before and the flood gates have been open for years and years, it rarely happens. You keep acting like this will frequently happen now because of this one incident and if that's the case, why didn't it become more common when this previously happened? People who want to upload viruses know how easy it is to upload them among the modding communities, how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

I'm acting like it will be more frequent now for multiple reasons. The first one being that GTA V is by far the most popular GTA title, both in numbers, players and everything, the second one being that the game and the modding scene has way more media coverage (reddit, websites, and especially Youtube) than before, with the implications it brings, and the third one because there's nobody to check your sh*t, no security, and no consequences. It's a free win on multiple aspects, there's like close to absolutely no downsides whatsoever. It's not a niche business anymore. Mods are being featured on PCGamer and all over Youtube.

 

how come it's only going to become frequent to the GTA modding community? Why isn't it common among the Fallout/Skyrim modding community?

 

 

Because close to no mods for Skyrim / Fallout / ArmA / whatever are coming in a potentially dangerous format like .exe or .asi. Simple as that. 99.99 % of the time it's loose files inside an archive. And go away with your sh*tty "anyone could include a virus in any files anyway !!!!!!", while this is true to a very marginal extent, doing so is far more complicated and far less accessible than packing your sh*tty password stealer in a .asi file and calling it a day.

Okay, fine, you've some what won me over and clearly won this argument. But still, I don't think you need to label mods as unsafe, we should be able to trust mod hosters to do decent testing with these mods before they get approved, especially ASI mods.

 

I probably should've admitted I didn't have facts to back up my argument about two posts ago or so, but nobody likes to admit they're wrong. :p

 

 

It's okay mate, no problems. In the end i just want the same thing as you : healthy modding community without the fear of being infected.

 

As for trust, well it can works in a small modding community or a niche one, where everyone knows everyone. But i don't think it's the case with GTA V anymore.

Edited by Drkz

Share this post


Link to post
Share on other sites
Shaunr

 

WTF.. Thanks for the Post OP. guys i deleted init.exe and fade.exe also i cleared the registry as MarshallRawR said is there anything i need to do ? I'm really worried right now

Change all your passwords.

 

ok, some people like me can't possibly change all their passwords.

 

This is just a keylogger, right? so my stored passwords are safe? I've only been using this since last night, and I haven't actually typed in any passwords.

 

 

Please someone give some more details on this.

Share this post


Link to post
Share on other sites
ZZCOOL

MBAM also said http://www.thegtaplace.com/downloads/f455-gta-mod-installer-v50-betathis is malware too. (or Trojan.dropper)

i guess get used to this noone cared about gta before but the people who actually cared now that gta is mainstream it's going to turn into a total mess it's not what it used to be any more

Share this post


Link to post
Share on other sites
Sam Lake

 

MBAM also said http://www.thegtaplace.com/downloads/f455-gta-mod-installer-v50-betathis is malware too. (or Trojan.dropper)

i guess get used to this noone cared about gta before but the people who actually cared now that gta is mainstream it's going to turn into a total mess it's not what it used to be any more

 

Gaming in general turned into mainstream. AND THAT IS LAME.

Share this post


Link to post
Share on other sites
ZZCOOL

yup look at that fade.exe is in the quarantine and since day 1

Edited by ZZCOOL

Share this post


Link to post
Share on other sites
FlyingAce

someone on reddit said these two might also be dangerous

 

EnforcerZhukovReallistic Mods plz :V 1 point

an hour ago

WTF this is reaaaaally curious, GTAForums' got now a 403 error o.O

BTW i scanned with Panda Free and Malwarebytes my AppData folder and looks clean (despite of some typical cookies). My mods folder is also clean, BUT Panda found 2 suspicious files: Tank.asi (the first version of this mod: https://www.gta5-mods.com/scripts/tanks-spawn-at-five-stars) and this too (https://www.gta5-mods.com/scripts/working-restaurants).

Share this post


Link to post
Share on other sites
ZZCOOL

 

someone on reddit said these two might also be dangerous

 

EnforcerZhukovReallistic Mods plz :V 1 point

an hour ago

WTF this is reaaaaally curious, GTAForums' got now a 403 error o.O

BTW i scanned with Panda Free and Malwarebytes my AppData folder and looks clean (despite of some typical cookies). My mods folder is also clean, BUT Panda found 2 suspicious files: Tank.asi (the first version of this mod: https://www.gta5-mods.com/scripts/tanks-spawn-at-five-stars) and this too (https://www.gta5-mods.com/scripts/working-restaurants).

 

plastic tangerine is in my eyes a highly respected modder no way he'd put a virus in his mods

Share this post


Link to post
Share on other sites
MarshallRawR

Who knows, maybe whoever owns GTA5-Mods.com is putting all those malwares.

Share this post


Link to post
Share on other sites
FlyingAce

exactly my thought ZZCOOL just putting it out there... maybe he had a reupload from someone...

Edited by FlyingAce

Share this post


Link to post
Share on other sites
Silent

Who knows, maybe whoever owns GTA5-Mods.com is putting all those malwares.

Still seems too well integrated with the binary to be doable without the source code.

Share this post


Link to post
Share on other sites
visionglid

At least four times, when i run GTA 5, the Avast grab a malware trying to access external sites. But i wasn't worried. That sucks.

Share this post


Link to post
Share on other sites
Sam Lake

 

Who knows, maybe whoever owns GTA5-Mods.com is putting all those malwares.

Still seems too well integrated with the binary to be doable without the source code.

 

Maybe some very clever cyber criminal :D

Share this post


Link to post
Share on other sites
EnforcerZhukov

 

someone on reddit said these two might also be dangerous

 

EnforcerZhukovReallistic Mods plz :V 1 point

an hour ago

WTF this is reaaaaally curious, GTAForums' got now a 403 error o.O

BTW i scanned with Panda Free and Malwarebytes my AppData folder and looks clean (despite of some typical cookies). My mods folder is also clean, BUT Panda found 2 suspicious files: Tank.asi (the first version of this mod: https://www.gta5-mods.com/scripts/tanks-spawn-at-five-stars) and this too (https://www.gta5-mods.com/scripts/working-restaurants).

 

Was me :lol:

That's what Panda Free found, but Malwarebytes don't. I can't say if they're infected. i just scanned my mods folder and Panda found that. Probably those results can be false positives.

Share this post


Link to post
Share on other sites
ZZCOOL

Who knows, maybe whoever owns GTA5-Mods.com is putting all those malwares.

yeah a highly respected veteran whithin the modding community decided to go out of his way and put a virus on the website that makes him alot of money

 

no rappo did not please never say that again

Share this post


Link to post
Share on other sites
Flying Scotsman

Please, please please, pretty please. answer my question.

 

Basically, I have done everything, check my reg, nothing found. Searched for Fade.exe, nothing found. Done everything, nothing found. I have the noclip mod, I directly downloaded after 1minute of it being uploaded. Please tell me I'm fine, if so please tell me what more to do to make sure that the keylogger didn't install. I have malware byte and avg, done a scan with both nothing found.

 

Please please please reply. Anything else that I can do to check that the keylogger didn't install? Thank you!

 

It only infects you if you run it. Just downloading it doesn't do anything.

 

It looks like it's compiled when you run it (hence the C# compiler) and it compiles non-GTA related code into the logger and stores it in the directories people have pointed out.

Share this post


Link to post
Share on other sites
Conwin

This sucks. I'm only using Scripthook, FOV mod and Visual V currently, but have experimented with shaders a deformation mod and a LED lighting mod in the past. Hopefully none of those had any viruses on them..

Share this post


Link to post
Share on other sites
Silent

That's what Panda Free found, but Malwarebytes don't. I can't say if they're infected. i just scanned my mods folder and Panda found that. Probably those results can be false positives.

They deffo don't have Fade inside.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • 1 User Currently Viewing
    0 members, 0 Anonymous, 1 Guest

×
×
  • Create New...

Important Information

By using GTAForums.com, you agree to our Terms of Use and Privacy Policy.