 Show Posts
|
|
Pages: [1] 2
|
|
2
|
TS3/TSM: The Pudding / The World Of Pudding / Re: BREAKING NEWS: TSR INSTALLS SPYWARE!
|
on: 2009 August 02, 14:12:04
|
For what it's worth, I ran some tests on the latest TSRW.exe 07/24/09
MD5:521605E8B73BA0BD98AD72CFF3AD14D0
CRC-32: A3952AF2 I get an entirely different md5sum, 51e41f48f7aceef99c3ed57f0e072e2c for TSRW.exe, meaning your version is newer and has been altered, probably to better hide the evidence now that they know they have been caught. They are probably using a new trick that fools your particular scanner. PEs, provide an scientifical way of reproducing your input, otherwise Iīll have to discard this news as false. I will feel backstabbed, as Iīve trust you many times and now I feel thereīs no scientifical substance here. I'm not exactly sure what you want. You want me to provide a demonstration of steganographically concealed transmissions in innocuous data? Just look at the Splotch Creatures. They are PNG files. Totally harmless PNG files. If you examined them, you would find harmless PNGyness. But they contain DATA in them and can be used to reconstruct a Splotch critter. Admittedly, this is a completely benign implementation done for reasons unrelated to nefariousness, and the fact that it is not nefarious is why we know of it, as the game never really attempts to conceal this fact from us. TSR, however, is known to be a nefarious operator: They have acquired and then misused or released to third parties personal information from users in the past. It is reasonable to say that they do so regularly and there is absolutely no physical reason why they would have stopped, and therefore, there is every reason to believe the practice continues. In fact, on PMBD, Johan himself came over to gloat about how undetectable his new system was, because he just couldn't resist the temptation to brag and gloat smugly. What I was asking is what I did: http://www.the-prism.com/index.php?topic=3225.msg39307#newYou have to use an VMware clean machine and Trend Internet Security Pro 2009 Step by step: 1 Install WinXP SP 2 Pro. on Vmware 6.5.... 2. Install NET framework 3.5 3. Install Trend Micro 4. Install TSR workshop 5. See what happens  Pes, if you want to remain credible, you have to provide ways to the Averages Joes. Relying on word and screenshots still leaves place for doubt. Thanks to Shanow Special thanks to Paden |
|
|
|
|
3
|
TS3/TSM: The Pudding / The World Of Pudding / Re: BREAKING NEWS: TSR INSTALLS SPYWARE!
|
on: 2009 July 24, 15:58:14
|
Jfade is clearly not familiar with the many techniques which exist for sending messages without including the content of the message in the actual message, however. That is the obvious approach that would be used in such a scenario, which is why it escapes packetsniffing. Everyone knows that everyone and their dog has access to a packetsniffer, and if you want to hide a message in a transmission, you cannot obviously place the message in the transmission, and even encrypting the message so it looks like gibberish is suspicious: You have to hide the message in the metadata of the transmission. A pattern of seemingly innocent requests, a specific timing of requests, or even the fact that the request was made at ALL can all constitute a message hidden from plain sight. You can clearly see that this is happening, because the message is not apparently inside the actual transmission. The fact that it has been hidden in such a manner proves its malicious intent.
PEs, provide an scientifical way of reproducing your input, otherwise Iīll have to discard this news as false. I will feel backstabbed, as Iīve trust you many times and now I feel thereīs no scientifical substance here. *back to my Vmware tests* |
|
|
|
|
5
|
TS3/TSM: The Pudding / The World Of Pudding / Re: Securom string found in Process Explorer dump of TheSims3.exe
|
on: 2009 June 19, 09:41:22
|
I'm incredibly amused by it. And now that Nightmare/SBlade has nothing to take back to the BBS and be their hero for, he's crawled back into his corner.
You are a wanker with a very limited scope of view if you think my goal is to surf the BBS and be "a hero", unlike some senator who apparently has no life and spent his time here because every time he goes to the street they make fun of him. |
|
|
|
|
6
|
TS3/TSM: The Pudding / The World Of Pudding / Re: Securom string found in Process Explorer dump of TheSims3.exe
|
on: 2009 June 19, 01:00:06
|
If TS3 really does include SecuROM (I have the EA downloader version), it is a really benign version compared to the crap that comes with Spore.
It doesn't even mind me having Process Explorer running, which real versions of SecuROM (the ones that use a Ring0 driver) refuse to work with.
Thanks Jordi. IT seems we have a decaffeinated Securom here. Moving along. Jordi you have my mail by PM. I will appreciate if you can attach me a Process Explorer dump (both memory and image) Thanks. Thread is over. At least for me |
|
|
|
|
7
|
TS3/TSM: The Pudding / The World Of Pudding / Re: Securom string found in Process Explorer dump of TheSims3.exe
|
on: 2009 June 18, 20:16:10
|
Does Securom on the download version or The disk DRM has any direct hardware access?
Does Direct Hardware Access means RING0 communication?
A question; Why are you so obsessed with the SucUrom issue now? That show is not playing currently on the "Horror". You have been told by the best that the disc version of Sims 3 contains an inept version of the so called DRM. Did you have so much fun at the last SucUrom Fight that you want to start another one? It is time to move onto other issues contained in this not ready for "Prime Time" game. It is still on the Download version of "the Horror", muffinhead. |
|
|
|
|
12
|
TS3/TSM: The Pudding / The World Of Pudding / Re: Securom string found in Process Explorer dump of TheSims3.exe
|
on: 2009 June 16, 12:29:23
|
Evil malware in RING3 doesnīt fall in the same category as a possible low-level operation, RING0 malware.
The first one is an annoying bug, the second is a deadly compromising software. The distinction must be done. Yes, but how does stating the obvious change anything? I want indicators to the Average Joe users that can be understood by bureaucrat CEOīs. I know a few men on the industry, but they want reliable data. If you give me indicators of Kernel code use/low-level operations of Securom I will appreciate it. I found some interesting string dumping Securom executables strings on latest versions. \Device\sony_ssm.sys \DosDevices\sony_ssm.sys VS_VERSION_INFO StringFileInfo Comments SecuROM Security Module. CompanyName Sony DADC Austria AG. FileDescription SecuROM Security Module. FileVersion LegalCopyright Copyright (C) 2004/05 Sony DADC Austria AG OriginalFilename sony_ssm.sys A .sys file would be some kind of indicator of low level operation, just as the Aries.sys in XCP Thoughts |
|
|
|
|
17
|
TS3/TSM: The Pudding / The World Of Pudding / Re: Securom string found in Process Explorer dump of TheSims3.exe
|
on: 2009 June 15, 13:34:28
|
Ubisoft dropped DRM for the last PoP which did not sell well, and apparently faced harsh criticism from the industry 'tards over this. Their future games will be infested again.
Soruce please? Pes, what is your opinion about Securom running, performing processes, or communicating with the RING0 to detect V-drives in stealth mode? Securom runs in RING3 to perform its detection, but some of my sources tell that it communicates with the RING0. Is that true? |
|
|
|
|
23
|
TS3/TSM: The Pudding / The World Of Pudding / Re: THE HORROR: The REAL TS3 Scoop As It Unfolds
|
on: 2009 May 19, 19:37:54
|
You're pretty much doomed to be shouted at. Only instead of people shouting at you for criticizing the game, you will be shouted at for your horrible grammar and abuse of punctuation. Errr, Pes, she did apologize/explain any bad spelling/grammar/punctuation in her initial posting... e.g. Sorry if there is any spelling mistakes using my phone. NOT an excuse, especially for the walloftext. You are on notice, too, choobooby, for suggesting that there is some kind of free pass for crackberriers. Besides, even if the phone explains the capitalization, it doesn't excuse the apostrophe abuse. Spelling and grammar count, people. Don't make me eat your heads. I would like to see you upload a video where you show us your grammar skills when using a phone. Bitch. Angi, donīt takee the gremmar murons tou seriuos hera. This is MATY. Land of assholering and MOAR fight for the sake of fighting |
|
|
|
|
24
|
TS3/TSM: The Pudding / The World Of Pudding / Re: THE HORROR: The REAL TS3 Scoop As It Unfolds
|
on: 2009 May 18, 19:40:51
|
Again, what proofs do you have that this is an early beta/alpha version? You're spreading that both here and at the BBS, under your SBlade handle. You wouldn't be spewing rumors, now would you?
As you can see by PM, I speak of something Iīve tested it myself. If this isnīt a Beta, this is the biggest shit Iīve ever seen. |
|
|
|
|
25
|
TS3/TSM: The Pudding / The World Of Pudding / Re: THE HORROR: The REAL TS3 Scoop As It Unfolds
|
on: 2009 May 18, 17:56:03
|
No worries, Skadi. Nightmare is a complete douche who frequents PMBD and never reads.
I think it's obvious that Nightmare is a moron, as Nightmoron apparently thinks that SecuROM is a "he". Nightmoron also believes that software can have cronies. Quoting the proof, in case it's deleted: You are doing Securom and his cronies a big favour.
Ah! The MATYcian love, I expect no less from you. Send me your phone number, you might win the lotto and Iīll call ya  I donīt think leaking an early beta of a game that has Securom will do any benefit to the gaming community. It is true that the news is that a securom version was cracked. But they could have waited to the release day to compare between the real deal. |
|
|
|
|
|
