STEAM GROUP
(GARRYSMOD) GMATS GMATS
Join Group
STEAM GROUP
(GARRYSMOD) GMATS GMATS
17
MEMBERS
0
IN-GAME
5
ONLINE
Founded
11 November, 2016
Language
English
Overview Announcements Discussions Events Members Comments
All Discussions > Addon Support > Topic Details
 This topic has been pinned, so it's probably important
Yukari Shinoki & Maddie 11 Nov, 2016 @ 11:56am
"Remember Remember The 25th of December"
As you all know there is a "Backdoor" going around. If you encounter this, It is advised to locate the addon that caused this.

Signs of the "BackDoor":

1. Randomly getting a video in the steam overlay that starts playing
2. "OE2016" being said in chat.
3. "Remember December 25th" Being said in chat
4. Being sent to a group page in steam overlay
5. Being randomly sent to a server
6. The words "Remember Remember 25th Decemember" showing on screen with a ISIS flag behind it.

Possible signs of a suspicious addon:

1. The author's profile is private
2. The author's name is suspicious or edgey
3. The addon is a duplicate or remake
4. The addon lacks a description/Or has a poorly written description
5. The addon has No preview image or only one.

Removed Addons:

1. Overwatch Tracer Playermodel
2. Jihad Bomb SWEP
3. Vape Pen Content
4. AHack New
5. Adv Dupe 2 - Faster Version
6. Adv Dupe 1 - Extended Content
7. Halo 4 Master Chief Playermodel
8. CS:GO Knives SWEP Content Pack

How to fully remove a addon:

1. Unsubscribe from the addon
2. Windows: C:\Program Files (x86)\Steam\steamapps\workshop\content\4000
Linux:
MAC:
3. Delete the folder of the addon that you want to remove (The ID is the name of the folder EX: http:// gtm.steamproxy.vip/ sharedfiles/filedetails/?id=819591067 , Find the folder with the name "819591067" and delete it)
4. Windows: C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\garrysmod\addons
Linux:
MAC:
5. Find the name of the addon and delete it.


Please leave information that will help this thread in a post. I will get around to adding further information.
(Any information you have on this will be helpful!)
Please note, that the information below is not factual. There is a chance that it may or may not occur.

There has been talk that the Gman Virus is going to be ressurected on Dec 25th. And that these videos are a message of this. Please note that the old Gman Virus is long gone but that doesn't make it impossible for a entirely new one to be created. A different coding and much much stronger.

(Thread Author Note)
This thread is here for informational purposes. It will stay up until this problem has ceased. The purpose of this thread is to keep the GMod community updated with news on this problem. This is NOT a thread for drama.
PLEASE KEEP THE COMMENTS DECENT!
NO MISLEADING PEOPLE WITH FALSE INFORMATION OR CAUSING A SCENE!
Last edited by Yukari Shinoki & Maddie; 19 Dec, 2016 @ 11:49am
< >
Showing 1-15 of 26 comments
Gene Worm 6 Dec, 2016 @ 2:54pm 
I wasn't sure where else to post this, but last night, I had an interesting conversation with one of the cheater.team people. View it here.
http://pastebin.com/9uFhMEPB
#1
Robo 14 Jan, 2017 @ 7:40pm 
Originally posted by Gene Worm:
I wasn't sure where else to post this, but last night, I had an interesting conversation with one of the cheater.team people. View it here.
http://pastebin.com/9uFhMEPB
The person who was recently insulting all of us and got recently banned and was extremely annoying was by the name of Chriso. I've been talking with Chriso a month ago and I decided to post this information here. He kept saying that we lost, Cheater.Team was innocent. Hackcraft talked to him. I did also.
#2
Gene Worm 14 Jan, 2017 @ 7:49pm 
Originally posted by Robo7988143:
Originally posted by Gene Worm:
I wasn't sure where else to post this, but last night, I had an interesting conversation with one of the cheater.team people. View it here.
http://pastebin.com/9uFhMEPB
The person who was recently insulting all of us and got recently banned and was extremely annoying was by the name of Chriso. I've been talking with Chriso a month ago and I decided to post this information here. He kept saying that we lost, Cheater.Team was innocent. Hackcraft talked to him. I did also.

You know, after all this time I wasted researching about this cheater.team drama, I realized something.

OE = Obfuscation Experiment?

Or maybe they got busted for their warnings so many times they figured out whatever they had in mind would fail. Who knows? And at this point, who cares?
#3
Robo 14 Jan, 2017 @ 8:04pm 
Originally posted by Gene Worm:
Originally posted by Robo7988143:
The person who was recently insulting all of us and got recently banned and was extremely annoying was by the name of Chriso. I've been talking with Chriso a month ago and I decided to post this information here. He kept saying that we lost, Cheater.Team was innocent. Hackcraft talked to him. I did also.

You know, after all this time I wasted researching about this cheater.team drama, I realized something.

OE = Obfuscation Experiment?

Or maybe they got busted for their warnings so many times they figured out whatever they had in mind would fail. Who knows? And at this point, who cares?
I find it ironic that many people like Chriso kept threatning us that we lost a battle, but what battle? I mean, I do know for the fact that all of this is fake, but who knows. Maybe it's a prank from the developers? All we know is that everything is back to normal. Maybe the guy you talked to is probably pranking you. I guess we all learned a lesson, always think that whatever happens is a joke. The Decemember thing isn't real, the coughing virus was immedaitly patched. Tons of users got banned for spreading the truth in the forums.
Last edited by Robo; 14 Jan, 2017 @ 8:06pm
#4
Gene Worm 14 Jan, 2017 @ 8:15pm 
Originally posted by Robo7988143:
Originally posted by Gene Worm:

You know, after all this time I wasted researching about this cheater.team drama, I realized something.

OE = Obfuscation Experiment?

Or maybe they got busted for their warnings so many times they figured out whatever they had in mind would fail. Who knows? And at this point, who cares?
I find it ironic that many people like Chriso kept threatning us that we lost a battle, but what battle? I mean, I do know for the fact that all of this is fake, but who knows. Maybe it's a prank from the developers? All we know is that everything is back to normal. Maybe the guy you talked to is probably pranking you. I guess we all learned a lesson, always think that whatever happens is a joke. The Decemember thing isn't real, the coughing virus was immedaitly patched. Tons of users got banned for spreading the truth in the forums.

Eh, I doubt it's anything from the developers. I can confirm that it was indeed cheater.team that was behind it though. The threats were just a bunch of cheap backdoors that displayed such threats in the form of a poorly edited video or 3D text.
Last edited by Gene Worm; 14 Jan, 2017 @ 8:16pm
#5
Robo 14 Jan, 2017 @ 8:20pm 
Originally posted by Gene Worm:
Originally posted by Robo7988143:
I find it ironic that many people like Chriso kept threatning us that we lost a battle, but what battle? I mean, I do know for the fact that all of this is fake, but who knows. Maybe it's a prank from the developers? All we know is that everything is back to normal. Maybe the guy you talked to is probably pranking you. I guess we all learned a lesson, always think that whatever happens is a joke. The Decemember thing isn't real, the coughing virus was immedaitly patched. Tons of users got banned for spreading the truth in the forums.

Eh, I doubt it's anything from the developers. I can confirm that it was indeed cheater.team that was behind it though. The threats were just a bunch of cheap backdoors that displayed such threats in the form of a poorly edited video or 3D text.
Strange that Cheater.Team is a very inactive group. All of it's members have been offline for a year.
#6
Gene Worm 14 Jan, 2017 @ 8:26pm 
Originally posted by Robo7988143:
Originally posted by Gene Worm:

Eh, I doubt it's anything from the developers. I can confirm that it was indeed cheater.team that was behind it though. The threats were just a bunch of cheap backdoors that displayed such threats in the form of a poorly edited video or 3D text.
Strange that Cheater.Team is a very inactive group. All of it's members have been offline for a year.

They have a subgroup called "BMW Squad" where the people associated with the backdoored addons hang out I guess. Except for some reason Dark Byte isn't in there, and "Cheater" (Blaspha, Senator? Idk) left recently.
#7
Robo 14 Jan, 2017 @ 8:29pm 
Originally posted by Gene Worm:
Originally posted by Robo7988143:
Strange that Cheater.Team is a very inactive group. All of it's members have been offline for a year.

They have a subgroup called "BMW Squad" where the people associated with the backdoored addons hang out I guess. Except for some reason Dark Byte isn't in there, and "Cheater" (Blaspha, Senator? Idk) left recently.
I tried looking for the related group, sadly I didn't finded any results related.
#8
Robo 14 Jan, 2017 @ 8:33pm 
Originally posted by Gene Worm:
Originally posted by Robo7988143:
Strange that Cheater.Team is a very inactive group. All of it's members have been offline for a year.

They have a subgroup called "BMW Squad" where the people associated with the backdoored addons hang out I guess. Except for some reason Dark Byte isn't in there, and "Cheater" (Blaspha, Senator? Idk) left recently.
I find it mysterious that nothing happened on the December 25th. Everyone in the forums said we lied in the day and after. Even a few people came and insulted us and said were monsters that scared lots of innocent children and people. I honestly don't believe that. But what if all of this hacking thing is a lie? It remains a mystery.
#9
Gene Worm 14 Jan, 2017 @ 8:46pm 
Originally posted by Robo7988143:
Originally posted by Gene Worm:

They have a subgroup called "BMW Squad" where the people associated with the backdoored addons hang out I guess. Except for some reason Dark Byte isn't in there, and "Cheater" (Blaspha, Senator? Idk) left recently.
I tried looking for the related group, sadly I didn't finded any results related.
This is it.
http://gtm.steamproxy.vip/groups/BMW-Squad

The guy "Stealth" and "jumpy" were the uploaders of some of the first backdoored addons that we missed, but the Facepunchers didn't.
Last edited by Gene Worm; 14 Jan, 2017 @ 8:46pm
#10
Robo 14 Jan, 2017 @ 8:57pm 
Just noticed something, the group owner got recently VAC banned. Maybe the group owner WAS the hacker.
#11
Gene Worm 14 Jan, 2017 @ 9:26pm 
Originally posted by Robo7988143:
Just noticed something, the group owner got recently VAC banned. Maybe the group owner WAS the hacker.

Senator's one of cheater.team's top guy's lol. In fact, I think he's their leader. He's even got an edgy YouTube channel, so do some of the others. Just look up "cheater.team" on YouTube and see what comes up.
#12
Gene Worm 15 Jan, 2017 @ 11:01am 
Originally posted by REDACTED:
Thank you for outlining what a suspicious addon looks like. Those type of addons already looked weird to me but could have also been explained away as someone just dumping their personal addon into the workshop or someone has english as a second language not wanting to write out a thing. All the signs together is a red flag. I think unless someone provides a description and makes the thing presentable it should be avoided on principal.

The cheater.team addons were frequently either an unoriginal "hack" type of addon, like "Wallhack" or "Aimbot" sort of addon or a reupload of someone else's addon with a description full of broken English and a giant wall of tags at the bottom.

For backdoored addons in general, mostly just watch out for addons that don't have too many ratings, addons with no clear description or information, or sketchy server content addons.
Last edited by Gene Worm; 19 Jan, 2017 @ 6:50pm
#13
Gene Worm 15 Jan, 2017 @ 12:42pm 
Originally posted by REDACTED:
Originally posted by Gene Worm:

The cheater.team addons were frequently either an unoriginal "hack" type of addon, like "Wallhack" or "Aimbot" sort of addon or a reupload of someone else's addon with a description full of broken English and a giant wall of tags at the bottom.

For backdoored addons in general, mostly just watch out for addons that don't have too many ratings, addons with no clear description or information, or sketchy server content addons.

How can someone test if an addon has a backdoor?

Download the addon and run through the Lua code in it, using GMad Extractor. If you don't know Lua, then I suppose you can just mess around with it and see if it does anything, or give the addon to someone who does know Lua like me or Hackcraft.
Last edited by Gene Worm; 19 Jan, 2017 @ 6:50pm
#14
Robo 15 Jan, 2017 @ 12:45pm 
Originally posted by REDACTED:
Originally posted by Gene Worm:

The cheater.team addons were frequently either an unoriginal "hack" type of addon, like "Wallhack" or "Aimbot" sort of addon or a reupload of someone else's addon with a description full of broken English and a giant wall of tags at the bottom.

For backdoored addons in general, mostly just watch out for addons that don't have too many ratings, addons with no clear description or information, or sketchy server content addons.

How can someone test if an addon has a backdoor?
Look for signs of a backdoor. Advertisements are a good sign of a backdoor. Do not mistake lag for a backdoor, most addons will cause weak PCs to lag. Check the console through time to time when testing the addon, should tell you all information and including suspicous scripts running as well. When you find a suspicous or infected addon, send it to me, Hackcraft or any other GMod veteran in this group and we'll check it.
Last edited by Gene Worm; 19 Jan, 2017 @ 6:51pm
#15
< >
Showing 1-15 of 26 comments
Per page: 1530 50

All Discussions > Addon Support > Topic Details
Date Posted: 11 Nov, 2016 @ 11:56am
Posts: 20
Start a New Discussion

Discussions Rules and Guidelines