Kaspersky detects keylogger!
Moderator: ZSNES Mods
Kaspersky detects keylogger!
Hook installation C:\WINDOWS\system32\dinput8.dll
Allowed: KLPrivileges/KLPermissionAppAccess/KLPermissionProcEmbed/KLSetHook
Does zsnes do key logs? What for?
Does it not?
What the hell on earth does "Hook installation" mean? Is my dinput8.dll file surely hacked? OR Is this a normal behavior that falls in the category of keylogging in the perspective of kaspersky?
or what the hell else... ?
Do normal programs that do not do surveillance, like zsnes, use keylogging - style activity for input-output? Is Winamp's hotkey support a keylogging - style activity?
Allowed: KLPrivileges/KLPermissionAppAccess/KLPermissionProcEmbed/KLSetHook
Does zsnes do key logs? What for?
Does it not?
What the hell on earth does "Hook installation" mean? Is my dinput8.dll file surely hacked? OR Is this a normal behavior that falls in the category of keylogging in the perspective of kaspersky?
or what the hell else... ?
Do normal programs that do not do surveillance, like zsnes, use keylogging - style activity for input-output? Is Winamp's hotkey support a keylogging - style activity?
-
- ZSNES Developer
- Posts: 3904
- Joined: Tue Jul 27, 2004 10:54 pm
- Location: Solar powered park bench
- Contact:
Well of course we do key logging, you're playing a game and can make movies after all.
To my knowledge though, we don't use any Win32 Keylogger API.
To my knowledge though, we don't use any Win32 Keylogger API.
May 9 2007 - NSRT 3.4, now with lots of hashing and even more accurate information! Go download it.
_____________
Insane Coding
_____________
Insane Coding
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
Re: Kaspersky detects keylogger!
Please google what DirectInput is before you start getting random ideas.watnes wrote:Hook installation C:\WINDOWS\system32\dinput8.dll
Allowed: KLPrivileges/KLPermissionAppAccess/KLPermissionProcEmbed/KLSetHook
It only does that when it records a movie, otherwise, it doesn't do anything of that sort.Does zsnes do key logs? What for?
Does it not?
Normal behavior. At this point, I think you need a better AV program.. or at the very least not freak out over every minor thing. If you make your AV program become sensitive to everything (as in use aggressive settings in fear of nothing) then you will get normal behavior looking like "bad stuff" when it isn't. Reminds me of a story...What the hell on earth does "Hook installation" mean? Is my dinput8.dll file surely hacked? OR Is this a normal behavior that falls in the category of keylogging in the perspective of kaspersky?
or what the hell else... ?
Keylogging is recording+logging input. Hotkey support is waiting for keyboard input. These two things are not connected to each other in the way you are thinking about it.Do normal programs that do not do surveillance, like zsnes, use keylogging - style activity for input-output? Is Winamp's hotkey support a keylogging - style activity?
Last edited by Deathlike2 on Sat Dec 27, 2008 10:22 pm, edited 1 time in total.
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
Nach:
Of course? is it that normal to log keys by using the system?
Is nero not a windows / 32 bit application? what the hell with all this confusing / esoteric / crap terminology? What does win32 mean?
I played the dos version of zsnes and it made movies. The save feature seems to access things without going to them with a long series of recorded strokes.
Why use something that makes kaspersky cry "keylogger"?
Why aren't you showing them your programs is good, so they don't ask me to take decisions?
Of course? is it that normal to log keys by using the system?
Is nero not a windows / 32 bit application? what the hell with all this confusing / esoteric / crap terminology? What does win32 mean?
I played the dos version of zsnes and it made movies. The save feature seems to access things without going to them with a long series of recorded strokes.
Why use something that makes kaspersky cry "keylogger"?
Why aren't you showing them your programs is good, so they don't ask me to take decisions?
Last edited by watnes on Sat Dec 27, 2008 10:29 pm, edited 1 time in total.
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
Pay attention, it only applies WHEN you record movies. Since movies rely on recording keystrokes made at certain times, it would require those keystrokes to be "played back" when you play back the movie.watnes wrote:Of course? is it that normal to log keys by using the system?
ZSNES is a 32-bit app. If you aren't sure of what Win32 means in general, Google. It is common terminology to suggest "Windows 32-bit application".Is zsnes not a windows / 32 bit application? what the hell with all this confusing / esoteric / crap terminology? What does win32 mean?
The save feature is not connected with recording stuff. It only writes out data that a game would normally write out to the battery backed up media for those games that used it.I played the dos version of zsnes and it made movies. The save feature seems to access things without going to them with a long series of recorded strokes.
It's not our fault if an AV mistakes normal behavior for something that it is not. It's not our responsibility when AV programs screw up in thinking an app is a virus (which I've seen in other forums and have been mentioned before). AV programs screw up too.Why use something that makes kaspersky cry "keylogger"?
Why aren't you showing them your programs is good, so they don't ask me to take decisions?
Last edited by Deathlike2 on Sat Dec 27, 2008 10:33 pm, edited 1 time in total.
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
Kaspersky is not a central authority on application safety. It can try to detect if an application is safe, but it can never be 100% accurate, simply because thousands upon thousands of applications exist, each with different behavior.
Also, there are multiple anti-virus programs that exist, and none of them will ever be 100% accurate either. It's simply not possible for an anti-virus to be foolproof.
And it's not the responsibility of an application programmer to notify the dozens and dozens of anti-virus companies out there that their app is safe.
Also, there are multiple anti-virus programs that exist, and none of them will ever be 100% accurate either. It's simply not possible for an anti-virus to be foolproof.
And it's not the responsibility of an application programmer to notify the dozens and dozens of anti-virus companies out there that their app is safe.
Well it's your resp to notify the user. Make a link central on the web page that shows what is mistaken as virus/mall/shit on each major antivirus. It will take some hours max.And it's not the responsibility of an application programmer to notify the dozens and dozens of anti-virus companies out there that their app is safe.
And say what action of zsnes is in the same class as virus and tell exactly how and when it does it so I know that if it's done differently, it's a hacked file.
Does zsnes access the directx input key logging shits at program start? or at movie making?
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
I don't see that as a requirement. Might as well tell every emu or app that does the same right? What if the AV determines if that's not an issues in an AV update? It's a waste of time to even ponder this.watnes wrote:Well it's your resp to notify the user. Make a link central on the web page that shows what is mistaken as virus/mall/shit on each major antivirus. It will take some hours max.And it's not the responsibility of an application programmer to notify the dozens and dozens of anti-virus companies out there that their app is safe.
Just consider this.. if you don't trust downloading something.. then don't bother using it at all. Noone is forced to download and run something they are not comfortable with.And say what action of zsnes is in the same class as virus and tell exactly how and when it does it so I know that if it's done differently, it's a hacked file.
It's not worth answering the question when you don't understood how DirectX is used to monitor for joystick input, not just keyboard input. Some people do want to use a controller to play the games.Does zsnes access the directx input key logging shits at program start? or at movie making?
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
I don't think there are many things in a prog that could go as virus/shit. Don't wait for the AVs, put it there from the start.I don't see that as a requirement. Might as well tell every emu or app that does the same right? What if the AV determines if that's not an issues in an AV update? It's a waste of time to even ponder this.
I trust developers. I don't trust the guys on the cable. My government fucks with me and I don't even know who I'm talking to through the net. Some small smarts could clarify a lot in a lot of progs. I do want to use computers.Just consider this.. if you don't trust downloading something.. then don't bother using it at all. Noone is forced to download and run something they are not comfortable with.
I don't need to understand shit. Answer like this: movie key logging loads at start, together with the joystick.Does zsnes access the directx input key logging shits at program start? or at movie making?
It's not worth answering the question
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
I'm sure the next thousands of programs that already exist who don't have those kinds of statement will start putting them up your desired future.watnes wrote:I don't think there are many things in a prog that could go as virus/shit. Don't wait for the AVs, put it there from the start.I don't see that as a requirement. Might as well tell every emu or app that does the same right? What if the AV determines if that's not an issues in an AV update? It's a waste of time to even ponder this.
At the very least, do some research first. Otherwise, you are jumping to faulty conclusions... unless you think everything written online is one big lie. Then, I really can't help there you there. If you don't even know how things work, then why try to connect dots that can't be connected in the first place?I trust developers. I don't trust the guys on the cable. My government fucks with me and I don't even know who I'm talking to through the net. Some small smarts could clarify a lot in a lot of progs. I do want to use computers.
Logging only occurs when you record movies. That's all. There's nothing else to repeat when it was mentioned before and you're not putting the pieces together.I don't need to understand shit. Answer like this: movie key logging loads at start, together with the joystick.Does zsnes access the directx input key logging shits at program start? or at movie making?
It's not worth answering the question
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
From someone who deals with reverse engineering of applications, I can say categorically that your AV app is fucked.
Get a better one.
Thats the bottom line. If it detects ZSNES as a malicious app, then it is fucked. ZSNES does nothing out of the ordinary when using DInput for key input. It is completely safe. If you know how to code, you could see that yourself.
Personally, you should be more worried if ZSNES really installs global system hooks and uses WriteProcessMemory(), but lets forget that, since:
a) Kaspersky or whatever the fuck its called is defective.
b) ZSNES devs are smart enough not to implant malicious code
c) DirectInput is a completely valid API
d) There is clear signs that there is ZERO malicious code in the app
So, I'd say do more research instead of making conspiracy theories.
Get a better one.
Thats the bottom line. If it detects ZSNES as a malicious app, then it is fucked. ZSNES does nothing out of the ordinary when using DInput for key input. It is completely safe. If you know how to code, you could see that yourself.
Personally, you should be more worried if ZSNES really installs global system hooks and uses WriteProcessMemory(), but lets forget that, since:
a) Kaspersky or whatever the fuck its called is defective.
b) ZSNES devs are smart enough not to implant malicious code
c) DirectInput is a completely valid API
d) There is clear signs that there is ZERO malicious code in the app
So, I'd say do more research instead of making conspiracy theories.
-
- Trooper
- Posts: 369
- Joined: Tue Jun 10, 2008 6:19 am
- Location: Australia
- Contact:
A) theres nothing wrong with kaspersky, the application does hook the keyboard, and because it has no digital signature it is reported as a keylogger. Kaspersky has a trusted+exceptions list for this very reason, and had you been running kaspersky in non-interactive mode, it would've just automatically added the exception.
B) This is typical of an OS Firewall, and is actually better then that crap they call UAC, not as intrusive either since you can educate it based on what you select in the prompt.
B) This is typical of an OS Firewall, and is actually better then that crap they call UAC, not as intrusive either since you can educate it based on what you select in the prompt.
[img]http://img.photobucket.com/albums/v253/squall_leonhart69r/Final_Fantasy_8/squall_sig1.gif[/img]
[url=http://vba-m.com/]VBA-M Forum[/url], [url=http://www.ngohq.com]NGOHQ[/url]
[url=http://vba-m.com/]VBA-M Forum[/url], [url=http://www.ngohq.com]NGOHQ[/url]
I've seen some. So I'm not the only one. Join us!I'm sure the next thousands of programs that already exist who don't have those kinds of statement will start putting them up your desired future.
A lie? Objectively, the world's governments fuck up more than half of the net, I would say. But that's only tangent to my shit here.
You don't need to know the content of shit in order to figure shit out. Logically, it all came down to this: is the shit infected? Or if it's not, put the suspicious but legitimate form of the shit on the shit's web page. Thus you fight alterations, ineffective principles and world conspiracy altogether. Isn't that great?
Are you telling me kaspersky should see the keylogging shit only when I record the movie? It's telling me the shit when I open the program.Logging only occurs when you record movies.
The conspiracies are scaring me....since ZSNES itself is fine. There is ZERO need to say what it does, since its perfectly fine. Its the AV that has the issue, not the ZSNES devs.You don't need to know the content of shit in order to figure shit out. Logically, it all came down to this: is the shit infected? Or if it's not, put the suspicious but legitimate form of the shit on the shit's web page. Thus you fight alterations, ineffective principles and world conspiracy altogether. Isn't that great?
-
- Seen it all
- Posts: 2302
- Joined: Mon Jan 03, 2005 5:04 pm
- Location: Germany
- Contact:
...watnes wrote:fuck shit shit shit shit infected shit shit conspiracy shit shit
vSNES | Delphi 10 BPLs
bsnes launcher with recent files list
bsnes launcher with recent files list
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
No. I'm telling you your AV is flagging it (needlessly) because we're using DirectInput, like all the other apps that use DirectInput. If you hadn't paid attention, it has nothing to do with logging.watnes wrote:Are you telling me kaspersky should see the keylogging shit only when I record the movie? It's telling me the shit when I open the program.Logging only occurs when you record movies.
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
Yes it has. You're just telling me there is no malware keylogging. Get your shit right. Kickass!Deathlike2
it has nothing to do with logging.
you forgot the helicopters. shiiit.creaothceann subject:
watnes wrote ...
The gov. disconnected my chat line from dc++ and hacked in their own channel. How the fuck (and shit! ..fuck!) do you know I'm downloading the right zsnes? There is 0+1 need to say what it does, as it's the general need with any programs that might stir shit. If people would cover all the problems then the gov. and other minor evils would be out of business. It's about perfection and thus removing any kind of evil.h4tred
ZSNES itself is fine.
So fuck this shit, it hit the fan and there's more shit material than the right shit. Bye!
-
- Trooper
- Posts: 369
- Joined: Tue Jun 10, 2008 6:19 am
- Location: Australia
- Contact:
Exactly, so you can either disable Keylogger detection under proactive defense settings, or you can just suck it up and add it to the exclusions list and keep the keylogger protection.Deathlike2 wrote:No. I'm telling you your AV is flagging it (needlessly) because we're using DirectInput, like all the other apps that use DirectInput. If you hadn't paid attention, it has nothing to do with logging.watnes wrote:Are you telling me kaspersky should see the keylogging shit only when I record the movie? It's telling me the shit when I open the program.Logging only occurs when you record movies.
Seriously, its only something to worry about if Kaspersky plays a sound and the prompt has a red warning logo.
Last edited by Squall_Leonhart on Sun Dec 28, 2008 12:31 am, edited 1 time in total.
[img]http://img.photobucket.com/albums/v253/squall_leonhart69r/Final_Fantasy_8/squall_sig1.gif[/img]
[url=http://vba-m.com/]VBA-M Forum[/url], [url=http://www.ngohq.com]NGOHQ[/url]
[url=http://vba-m.com/]VBA-M Forum[/url], [url=http://www.ngohq.com]NGOHQ[/url]
-
- ZSNES Developer
- Posts: 6747
- Joined: Tue Dec 28, 2004 6:47 am
I answered your question as to why it is logged. You simply don't understand what I said, but whatever.watnes wrote:Yes it has. You're just telling me there is no malware keylogging. Get your shit right. Kickass!Deathlike2
it has nothing to do with logging.
The gov. disconnected my chat line from dc++ and hacked in their own channel. How the fuck (and shit! ..fuck!) do you know I'm downloading the right zsnes? There is 0+1 need to say what it does, as it's the general need with any programs that might stir shit. If people would cover all the problems then the gov. and other minor evils would be out of business. It's about perfection and thus removing any kind of evil.
It sounds to me that your ISP blocked you from using that app's natural ports because it is a file sharing service and ISPs don't want you wasting their bandwidth. Then again, it could be any number of legitimate non-government related reasons.. but whatever I guess.
Continuing [url=http://slickproductions.org/forum/index.php?board=13.0]FF4[/url] Research...
-
- Trooper
- Posts: 369
- Joined: Tue Jun 10, 2008 6:19 am
- Location: Australia
- Contact:
-
- ZSNES Developer
- Posts: 3904
- Joined: Tue Jul 27, 2004 10:54 pm
- Location: Solar powered park bench
- Contact:
If you're worried about viruses and stuff, it's really easy to fix. Even kids know what to do.
Just watch this simple video and follow the kid's directions.
Just watch this simple video and follow the kid's directions.
May 9 2007 - NSRT 3.4, now with lots of hashing and even more accurate information! Go download it.
_____________
Insane Coding
_____________
Insane Coding