"We have checked the reported file PhysX-mod-1.03.rar (SHA1: 6465e342ecd5fc5e059e1345d32d765136cb383b). This uses non standard executable packing mechanisms/encryption schemes. Such mechanisms are usually employed in malicious files to prevent AV programs from detecting them, that is why a generic approach in detecting such behaviors becomes necessary. This is one such detection and If you plan to use this file further, you can add it to exclusion list." -Vaishnavi.V.K, Comodo AntiVirus Lab.
大致意思是经过Comodo检查,系误报。可以加入例外文件。 On another note, we found out that Guru3D has wiped all the comments on its site. Apparently it was just a plot to damage the mod's reputation. It is a disgrace that corrupted sites like Guru3D and HardOCP are leading the industry, and what a shame that so many vendors support them.
感谢云豹的投递
If anyone still has a doubt about the latest scam from HardOCP and Guru3D, this one is for you. We have emailed a few Antivirus developers (including Symantec) and asked for their analysis to prove our false positive stand. And here is the first reply:
"וְלֹא-תִקַּח שֹׁחַד--כִּי הַשֹּׁחַד יְעַוֵּר עֵינֵי חֲכָמִים, וִיסַלֵּף דִּבְרֵי צַדִּיקִם"
早些时间,曾有报道新版Hybrid PhysX Mod Nvidia驱动补丁破解程序据查含有盗号木马病毒 现在,ngohq.com作出声明,经过Comodo检查,该驱动不含木马。
Comodo: PhysX Mod Doesn't Contain Trojan
原始网页
"And you shall not take a bribe, for a bribe blinds the eyes of the wise and perverts the words of the righteous" -Deuteronomy 16:19
新闻来源:NGOHQ
Posted by Regeneration on May 16th, 2010, 09:43 AM
郑重声明:本文版权归原作者所有,转载文章仅为传播更多信息之目的,如作者信息标记有误,请第一时间联系我们修改或删除,多谢。