NIS 2010 - Attention if you are a Cheathappens.com Trainer User

Norton Security | Norton Internet Security
1

I have tested now 3 Games:

 

Dawn of War II

Trine

Left 4 Dead

 

At first every Trainer is deleted by SONAR - after deactivating SONAR every Game crashes now. Something else in NIS 2010 is blocking the Trainers.

 

This was never a Problem before .... who the Hell has taken part to the Beta-Test? :smileymad:

2

Trainers Alter games so that you can cheat, so due to the nature of the cracks Norton could be seeing the alteration as so sort of crack / hack or what ever you would like to call it.

 

Quads 

3

I agree with quads, moreover i didn't report it in beta because having high prot is better than having low prot.

At least sonar 2 detects something even false positives and also new viruses unlike sonar 1 which was shi*.

 

Prevention is better than cure.

And after excluding the trainer from option, u can play it flawlessly.

So, thats the reason i didn't report it in beta phase. 

4

The Hotfix for Autoprotect is only fixing the halve Problem.

 

Gametrainers are still crashing the whole Game now in fact they are only not longer detected as a Risk.  :smileysurprised:

5

redlabour,

 

If I'm interpreting your reply correctly, you've applied the hotfix and excluded these games/trainers from SONAR convictions. SONAR no longer detecting them is by design and is the purpose of giving you the option of an exclusion.  No need to be alarmed.  :smileywink:

 

As for the trainers crashing, which trainer/game combination exactly is the one crashing the system?  The poster above you seems to be using the trainer software "just fine".  Perhaps the cause of the crash is something else unique to your system?

 

Please note the following regarding trainer software from cheathappens.com:

 

  VIRUS WARNING?

Did you receive a VIRUS, TROJAN or SPYWARE warning from one of the files you downloaded from our site? Please be aware that we scan all of the files we upload with multiple antivirus and spyware applications before posting them on the website. Some files, such as trainers, can often set off a scanner's heuristic warnings which may result in them being labeled a "GENERIC" or "SUSPICIOUS" trojan or virus. This is simply because of the way trainers work. They modify another program while it's running and also listen for keys to be pressed on the computer so the options can activate. This is exactly what a real trojan might do

If you're ever in doubt, scan the file here: http://virusscan.jotti.org/

This will scan with 18 different antivirus scanners and report the findings immediately. If a file is truly infected, it should set off at least 70% of them. If the only thing that shows as positive is GENERIC, SUSPICIOUS or PACKER then the file is typically clean.

If after scanning, you believe the file is truly infected, you can use THIS FORM to let us know and we'll have a closer look at it. If the file is found to be infected by our scanners then the file will be promptly removed from the website.

                    <P class="blacktext15">SPECIFIC VIRUS WARNINGS<BR /></P>
                    <P>HotKeysHook.dll <BR /></P>
                    <P>This file is a part of the<EM> TRAINER MAKER KIT</EM>,
                      a popular program used to create trainers. This file
                      has been around for many, many years and somewhere along
                      the way it got labeled as a trojan keylogger. <STRONG>THIS
                      IS A FALSE READING</STRONG>. Many popular antivirus
                      applications have removed this false positive from their
                      signatures, but some still carry it (such as NOD32).
                      This file <STRONG>IS NOT A TROJAN KEYLOGGER </STRONG>and
                      is completely safe. It simply listens for keys to be
                      pressed inside the game so it can activate the options
                      from the trainer. </P></TD>
                  <TD>&nbsp;</TD>
                </TR>
                <TR>
                  <TD>&nbsp;</TD>
                  <TD class="blacktext15">&nbsp;</TD></TR></TBODY></TABLE><P>&nbsp;</P><P>&nbsp;-- <A href="http://www.cheathappens.com/virus_warning.asp" target="_blank" rel="nofollow">http://www.cheathappens.com/virus_warning.asp</A> </P><HR /><P>&nbsp;</P><P>To their credit, the creator of the trainer software is very upfront about what they are doing behaviorally that triggers a conviction from many heuristic engines.&nbsp; In the context of what they are doing, the key hooking/logging appears benign.&nbsp; We recognize this and consequently give our community of users the option to exclude a binary from heuristic convictions by SONAR if they believe the software in question is safe to use.</P><P>&nbsp;</P><P>We mustn't forget, however, that keyhooking/logging features can certainly be abused and compromised by malware.&nbsp; That is one of the reasons why our heuristic technologies use it as part of our secret sauce when determinining is something should be convicted.&nbsp; Thank you for bringing that to our attention.&nbsp; We're investigating this matter. </P><DIV class="message-edit-history"><SPAN class="edit-author">Message Edited by Carlos_Linares on </SPAN><SPAN class="local-date"> 09-11-2009</SPAN><SPAN class="local-time"> 01:02 PM</SPAN></DIV>