CheatEngine Adware #2105
Comments
|
which specific registry edits are they? ceregreset and fixwindows both access the registry and are picked up as malware by different AV's and inno setup itself will register the ct file extension and disable some anti cheat autolaunch which would block CE from running |
|
It would be nice if you could reach these 41 vendors. https://www.virustotal.com/gui/file/6d0e14d66da69c163f824f8fa7d87de3eea41cdbd48c0973de296cf6d2d0fed3 |
|
@cheat-engine distributing installers with anything other than the desired software is unacceptable these days I urge you to cease the behavior and remove the binaries. While I can understand and even empathize with the desire to make economically viable products; my empathy ceases at malicious distribution of software. The people that this will be installed for are people who are unwittingly doing so. The practice isn't just a morality issue or a business issue, but is it in fact a violation of the Computer Fraud and Abuse Act (CFAA); a law that Github and Patreon are both liable to. To make it clear, I'm going to give this about a month or so to be corrected and if it's not, I'll be spending my hard earned dollary-doos on legal recourse to protect the technologically disinclined on this matter. I hope you understand and I hope you do the right thing. |
|
Less than 15 minutes of digging and it is very clear that these users are incapable of agreeing to any type of EULA for this type of monetization. The type of user most commonly attracted to this software is also going to be children. Going to leave this here, I think I've made my point and hopefully wont have to return with a big stick to knock out the money pipelines of patreon and paypal. |
|
I wish Cheat Engine and it's user community long and happy life. |
|
You can dismantle the setup and get rid of the adware, alternatively there leaks of the clean setup from Patreon you can also use, and yes this behaviour is unacceptable. |
People should actually just compile it from source. |
Does insulting people make you feel good about yourself? |
|
@cheat-engine You are making 11k/month on Patreon. When will you get rid of this malware in your installer process? You clearly don't need it to make money since the Patreon is successful. I could understand keeping the adware/malware while you check if voluntary donations are sustainable. But now you have seen it works. There is NO NEED to keep the adware except for greed and avarice at the expense of those not savvy enough who will install the adware by mistake. Because no one will install it voluntarily. I can build from the source fine but most people can't/won't. You should really be shamed of yourself for this practice that was already shady from corporations 20 years ago. I know I'm in the minority but I will build the sources myself and you will never get a cent from me as long as this practice continues. |
You not a minority, he simply been silencing everyone who mentions this. |
Okay so, I understand that Cheat Engine itself isn't infected or compromised but the installer from cheatengine . org is being quite suspicious. When installing Cheat Engine, it appears that different executable files are dropped into AppData/Local/Temp, which then they are executed and start trying to edit the Windows registry. These files are created at the end of the CE installation, regardless of whether you opt out from the offers or not. I ran the installation twice to see, and two separate, different programs were executed after creation.
So I decided to check these two programs on Virus Total, and it appears both are detected as adware and other such things.
If I opt out of these offers, why is it that adware is still dropped and then executed?
The text was updated successfully, but these errors were encountered: