• You've discovered RedGuides šŸ“• an EverQuest multi-boxing community šŸ›”ļøšŸ§™šŸ—”ļø. We want you to play several EQ characters at once, come join us and say hello! šŸ‘‹
  • IS THIS SITE UGLY? Change the look. To dismiss this notice, click the X --->

Question - Data Protector Blocked Suspicious Action by eqgame.exe (1 Viewer)

I'm more concerned of the phone picture of your computer screen when you could screen snip =p

but reading that - it has concerns about your guild hall .json file?

I strongly encourage you to consider whitelisting your macroquest instal (and it appears to be in one drive as well --- hope you don't have auto syncing on - you can run into issues with all of the things that write frequently)
 
IMO, anti virus programs themselves are a security issue. they have admin rights and if there is a exploit in the program it can create a back door to all your files. your better off keeping a full backups of your hdd and run a stand alone virus scanner. if anything is found just restore your backup to a time when the infection wasn't there.
A good guy to check out on security is "Rob Braxman Tech" on youtube.
 
** if there is an exploit in ANY program with admin rights it can create a back door

This is why I advocate for people actually using windows defender. Itā€™s a much more robust capability than most give it credit for and it eliminates the need to download and use potentially problematic second party applications. There have been standalone anti-virus programs that have been compromised, too, and those are even more difficult to identify and rid yourself of because people for some reason trust them when they shouldnā€™t. Also, even for the good AV options, people often have issues keeping them up-to-date, which also reduces their effectiveness.

Just use defender, whitelist stuff you donā€™t want flagged, and pray you donā€™t get hit with something using a zero-day.
 
TLDR: use threat protection, use virustotal to check specifics

The efficacy of antivirus comes and goes. I think itā€™s important to use something and less important what you use. I like checking things against virustotal when Iā€™m not sure because itā€™s many different engines and I can gauge how many of them think the thing Iā€™m looking at is malicious.

Prior to defender getting moved to the current team, it was a bit of a joke. And there was something to be said for having a third party do scanning. But the current team is pretty awesome and the focus on changing defender into an enterprise viable threat management system has had great benefits for home users.

The best thing you can do is be careful. But everyone makes mistakes, which is what threat protection is for. Like I said, I compare apps against virustotal. Heuristic scanning, behavior analysis, and Potentially Unwanted Program scanning is generally going to pick up anything that injects into something else because that is a behavior of potentially unwanted programs.

I donā€™t usually recommend not scanning directories at all, but customizing exceptions for what you specifically need. Of course, the level of effort involved in that is higher and that leads into the ā€œsecurity vs usabilityā€ conversation which everyone has different thresholds for.
 
That article is about CCleaner which is a product that Avast owns but itā€™s not their antivirus product.

Avast has been successfully targeted at least twiceā€¦ both times it could have been pretty bad. The first time 2.3 million users were impacted. The second time (2019) they only detected it after the attacker escalated privileges and tripped an alert on a deployed Microsoft threat detection tool. While the ccleaner supply chain attack was super successful in 2017, it sounds like itā€™s just speculation that the same product was the target in 2019.

Letā€™s be real ā€¦ all of these companies are being reconā€™d and/or actively attacked all the time. But, Avast stands as one of the few that we know was fully compromised and successfully exploited at least twice.

My recommendation will still be to pass on avast.
 
Avast acquired CCleaner in 2017, thatā€™s very much not enough time to change how anything was being done. While Iā€™m not arguing for Avast, Iā€™m just saying CCleaner being compromised at the time Avast acquired them isnā€™t reflective of the Avast antivirus product.

And, I do actually believe that Avast handled both of those situations very well. I believe their disclosure of the second CCleaner compromise even though it had zero customer impact actually points to things being on the up and up. To your point about being targeted, you know about the second Avast one because they found it and disclosed it, not because of the impact.

Everyone can form their own opinion, Iā€™m just saying the CCleaner situation probably doesnā€™t reflect on the security of the Avast antivirus product. There may be other things that do have impact and give good reason to avoid Avast. But judging Avast on CCleaner like saying that Defender Antivirus isnā€™t good because Microsoft makes it and they also make the operating system with the flaws that Defender is trying to protect. Iā€™d be more concerned that Avast is merging with NortonLifeLock than the CCleaner situation~
 
Question - Data Protector Blocked Suspicious Action by eqgame.exe

Users who are viewing this thread

Back
Top