i found it while scanning in a rar file or something…i must go in…use winrar…then on the top has the virus scan option…then it detected like 2000 + files…and in like every 5 sec…it says…auto protected detected infostealer.gampass…it was blocked…yes…sometime deleted ( removed )…then is scan again…no hope…the infostealer keep coming out but blocked…why ?

anyway, why does norton not detect when i scan just the outside rar file…it says 1 file scanned…no virus or threat…if that is the case…will it find it in full system scan ? i am trying it now =)

i found it while scanning in a rar file or something…i must go in…use winrar…then on the top has the virus scan option…then it detected like 2000 + files…and in like every 5 sec…it says…auto protected detected infostealer.gampass…it was blocked…yes…sometime deleted ( removed )…then is scan again…no hope…the infostealer keep coming out but blocked…why ?

anyway, why does norton not detect when i scan just the outside rar file…it says 1 file scanned…no virus or threat…if that is the case…will it find it in full system scan ? i am trying it now =)

Sounds like your downloading some cracks and keygens. Norton in real time scanning doesn’t scan rar or zip files till they are opened. This is normal and a lot of other anti viruses do the same.

how do you know if its cracks or keygens..maybe its not =P ????

and i dont understand when you say norton does not scan it in real time rar or zip..

does it scan in full system scan 

: you 2 are fast LOL i just went to see other thread when i see 2 post...incredible !

I know all about cracks and keygens. I can show you tons of cracks and keygens that come up as Infrostealer.Gamepass. If you going to do riskystuff like this then you should do it inside a Sandbox.

yes all cracks reconigzed by Norton are infostealer.gampasses because they people who constructed it are computer savvy, for lack of a less stereotypical term, and gampass is designed to pull information about paid online gaming accounts.

I just submitted a file crack to virustotal.com and Symantec was the only  AV to reconigze that it was malicious (gampass). All of the other detections were heruistic, suspicious packer, or keygen, which is partially correct, however it is not just a keygen, but a infostealer. Kudos to Symantec for this one. Even Avira and Kaspersky and NOD32 did not reconigze it. When I first submitted it 22/37 reconigzed it. Refresh = 23/37. 

And I submitted it to ThreatExpert.com

http://www.threatexpert.com/report.aspx?md5=c1807dc1af5cff6d052064f7d8cb810c

http://www.virustotal.com/analisis/e301828d6bc87443a77616a7277f1cd2