Question Did I do damage to KTS?

Please provide comments and solutions that are helpful to the author of this topic.

S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
So I'm trying to let thru the original version of Cheat Engine 7.5. I'm still working on it because KTS keeps blocking it.

Anyway I just realized I had accidentally reset the group, subgroup and application settings for all 4 groups: Trusted, Restricted and Untrusted

How can I check if I didn't accidentally damage the security of KTS and thus my system?
 
Bot

Bot

AI-powered Bot
Verified
Apr 21, 2016
3,520
You can check the integrity of your KTS by performing a system scan. If it identifies any threats, follow the recommended actions. Also, ensure your KTS is updated to the latest version. If you still feel uncertain, you can always restore the default settings of KTS.
 
Practical Response

Practical Response

Level 9
Mar 10, 2024
412
Studynxx said:
So I'm trying to let thru the original version of Cheat Engine 7.5. I'm still working on it because KTS keeps blocking it.

Anyway I just realized I had accidentally reset the group, subgroup and application settings for all 4 groups: Trusted, Restricted and Untrusted

How can I check if I didn't accidentally damage the security of KTS and thus my system?
Click to expand...
So you are installing sketchy software, your security is blocking it and you are letting it through? Classic example of security will not save you from yourself. Why bother with tweaking the software to begin with?
 
  • Wow
Reactions: Studynxx
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
Practical Response said:
So you are installing sketchy software, your security is blocking it and you are letting it through? Classic example of security will not save you from yourself. Why bother with tweaking the software to begin with?
Click to expand...
It's not malware, that's the point. The way it works is it reads your RAM and makes changes to it. I only want to use these Cheat Tables for fun. The entire software is open source. Now if it was some non-open-source random thing, sure I'd understand
 
Practical Response

Practical Response

Level 9
Mar 10, 2024
412
Studynxx said:
It's not malware, that's the point. The way it works is it reads your RAM and makes changes to it. I only want to use these Cheat Tables for fun. The entire software is open source. Now if it was some non-open-source random thing, sure I'd understand
Click to expand...
You are capable of reading it to find any malicious code that could be embedded?

Have you run the file through verification, have you researched it online "I did and everyone states it's sketchy" and your security is flagging it, what does this tell you.
 
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
Practical Response said:
You are capable of reading it to find any malicious code that could be embedded?

Have you run the file through verification, have you researched it online "I did and everyone states it's sketchy" and your security is flagging it, what does this tell you.
Click to expand...
I do use HitmanPro latest version to scan such files for a second opinion, it came back clean. Downloaded it from the official source. It's just the way Cheat Engine works.
If you look at the IPs and the domains it tries to talk to, it's clean. Also, on VT, Kaspersky says it's clean as does BitDefender.

I'm having issues with letting it thru tho: Under "Trusted Applications", what do I have to tick in order for it to be able to do what it needs to do so that the installation will be complete and final?

1714173363149.png
 
Practical Response

Practical Response

Level 9
Mar 10, 2024
412
Studynxx said:
I do use HitmanPro latest version to scan such files for a second opinion, it came back clean. Downloaded it from the official source. It's just the way Cheat Engine works.
If you look at the IPs and the domains it tries to talk to, it's clean. Also, on VT, Kaspersky says it's clean as does BitDefender.

I'm having issues with letting it thru tho: Under "Trusted Applications", what do I have to tick in order for it to be able to do what it needs to do so that the installation will be complete and final?

View attachment 283015
Click to expand...
At this point I will not help you chose what to tick in the application because I have not personally verified the file. I suggest before you add any more software "especially sketchy ones" you read up and learn the product thoroughly because adjusting "tweaking" settings wrong can certainly place you in a more vulnerable state. If the application you are allowing through has been known to be sketchy and you make exceptions for it, you are literally allowing it to do what it wants regardless of the security, might as well not have any security installed approaching it that way.
 
  • Like
Reactions: Studynxx
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
Practical Response said:
At this point I will not help you chose what to tick in the application because I have not personally verified the file. I suggest before you add any more software "especially sketchy ones" you read up and learn the product thoroughly because adjusting "tweaking" settings wrong can certainly place you in a more vulnerable state. If the application you are allowing through has been known to be sketchy and you make exceptions for it, you are literally allowing it to so what it wants regardless of the security, might as well not have any security installed approaching it that way.
Click to expand...
I did and Kaspersky says it's clean
 
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
Practical Response said:
Are you sure, you have created multiple threads today with issues from Kaspersky including this OP above that stated you were having trouble letting it through.
Click to expand...
I mean yes because it's trying to move a file KernelModuleUnloader and Kaspersky's not letting it thru even tho I did put it in the Trusted category

Kaspersky Threat Intelligence Portal

Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, viruses
opentip.kaspersky.com opentip.kaspersky.com

So KernelModuleUnlaoder.exe unloads the Kernel Module which you have to do if you wanna play games like CoD otherwise their anti-cheat engines are gonnaban you

 
Last edited:
Practical Response

Practical Response

Level 9
Mar 10, 2024
412
Studynxx said:
I mean yes because it's trying to move a file KernelModuleUnloader and Kaspersky's not letting it thru even tho I did put it in the Trusted category

Kaspersky Threat Intelligence Portal

Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, viruses
opentip.kaspersky.com opentip.kaspersky.com

So KernelModuleUnlaoder.exe unloads the Kernel Module which you have to do if you wanna play games like CoD otherwise their anti-cheat engines are gonnaban you

Click to expand...

I understand what it is but am not going to help you make an exception for that and or use cheat codes for games. There is a reason it's deemed sketchy and being stopped by your security.

Just as you need to learn the security before you just tweak it without knowing what the settings do.
 
  • Like
  • Sad
Reactions: Nevi, harlan4096 and Studynxx
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
Practical Response said:
I understand what it is but am not going to help you make an exception for that and or use cheat codes for games. There is a reason it's deemed sketchy and being stopped by your security.

Just as you need to learn the security before you just tweak it without knowing what the settings do.
Click to expand...
Learn the security? I have reset it since and re-applied Harlan's changes ie High Restricted for those apps that couldn't be categorized and for those apps that loaded before KTS loaded up, and Do Not Trust Digitally Signed Programs, and added a Master Password for the entire app for anti-tampering KTS. These are all the changes I've made. Nothing else. I don't intend to tweak them any more than that
 
mlnevese

mlnevese

Level 26
Verified
Top Poster
Well-known
May 3, 2015
1,542
CheatEngine is often detected for two reasons:
1) It's a tool that can be used to effect direct changes to memory and so is very easy to use it to deploy an attack
2) The installer used to have an adware included. It was easy to bypass it by turning off your net connection while installing. I have no idea if the current version still does carry an active adware in the installer.

So be careful to download it only from their home page and be careful while installing it.
 
  • Like
Reactions: likeastar20 and Studynxx
S

Studynxx

Level 1
Thread author
Jan 20, 2023
58
mlnevese said:
CheatEngine is often detected for two reasons:
1) It's a tool that can be used to effect direct changes to memory and so is very easy to use it to deploy an attack
2) The installer used to have an adware included. It was easy to bypass it by turning off your net connection while installing. I have no idea if the current version still does carry an active adware in the installer.

So be careful to download it only from their home page and be careful while installing it.
Click to expand...
yes I skip thru all 3 of those bundled sh#t. I only need CE. From their original homepage, CheatEngine.org.

Can you tell me how to unblock the file? Putting it in Trusted category wasn't enough, KernelModuleUnloader keeps getting blocked during the installation. I just wanna tweak my games for my fun, offline, no multiplayer.
 
  • Like
Reactions: Khushal
mlnevese

mlnevese

Level 26
Verified
Top Poster
Well-known
May 3, 2015
1,542
Studynxx said:
yes I skip thru all 3 of those bundled sh#t. I only need CE. From their original homepage, CheatEngine.org.

Can you tell me how to unblock the file? Putting it in Trusted category wasn't enough, KernelModuleUnloader keeps getting blocked during the installation. I just wanna tweak my games for my fun, offline, no multiplayer.
Click to expand...
The most straightforward way I can think of right now would be to set KTS to quarantine the file automatically or ask the user what to do then set it to trusted. It shouldn't disturb you anymore. Don't forget to restore the setting to whatever you were using before.
 
Victor M

Victor M

Level 9
Verified
Well-known
Oct 3, 2022
401
Do a drive image of your machine at it's un-infected state.
Uninstall Kaspersky
Install the Cheat
Play the game offline, don't connect the machine online.
When you have finished playing the game, Restore from drive image, then you can resume going online, web browsing, emailing .etc.
 
  • HaHa
Reactions: Studynxx
Victor M

Victor M

Level 9
Verified
Well-known
Oct 3, 2022
401
Well I was kidding. You can go online while the Cheat is installed and Kaspersky is not. Just backup your data and Restore from drive image when you are done with your game. Restoring from drive image protects you from the bad case where the Cheat has some kind of bad effect.
 
  • Like
Reactions: Nevi
harlan4096

harlan4096

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Apr 28, 2015
8,686
My reply in Kaspersky Community:

forum.kaspersky.com

Kaspersky blocking the installation of CheatEngine7.5

Downloaded from https:// www . cheatengine . org/downloads.php official website Apparently lots of vendors love to think of it as a virus, trojan specifically. I'm just looking to mod games for fun *single player so for me only*. I have 3 rules that are different from Default in KTS: Programs tha...
forum.kaspersky.com forum.kaspersky.com
 
  • Like
  • Hundred Points
Reactions: mlnevese, Berny, Studynxx and 4 others

Similar threads

Trident
    • Like
    • Hundred Points
    • +Reputation
New Update Prevention-First Kaspersky
Replies
30
Views
4,559
Kaspersky
Xeno1234
Xeno1234
RoboMan
    • Like
    • +Reputation
    • Applause
  • Sticky
Hot Take RoboMan's Kaspersky 2023 Light & Solid Settings
Replies
55
Views
7,698
Kaspersky
petok
P
C
    • Like
    • +Reputation
App Review ESET Internet Security 2023
Replies
2
Views
1,859
Written Reviews - Security and Privacy
ForgottenSeer 103564
F

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top