Messaggio originale di ☥☣ѦƵѦ~ᎶѺℜѺƊ☣☥:

I was just messing around on gmod when i get a notification of a attempted intrusion. I looked and it was connected to gmod "hl2.exe" or so my firewall/antivirus said.

I said this in the gmod discussion help section and said that it could be a addon.

I am just wondering do things uploaded to steam get any sort of scan for viruses and or intrusion attempts?

What EXACTLY was detected? AV/FWs are known to overstep the line between caution and paranoia detecting all kinds of imaginary threats. So what EXACTLY did it detect?

Messaggio originale di ReBoot:

Messaggio originale di ☥☣ѦƵѦ~ᎶѺℜѺƊ☣☥:

I was just messing around on gmod when i get a notification of a attempted intrusion. I looked and it was connected to gmod "hl2.exe" or so my firewall/antivirus said.

I said this in the gmod discussion help section and said that it could be a addon.

I am just wondering do things uploaded to steam get any sort of scan for viruses and or intrusion attempts?

What EXACTLY was detected? AV/FWs are known to overstep the line between caution and paranoia detecting all kinds of imaginary threats. So what EXACTLY did it detect?

"an intrustion attempt by ouh3igaeb.com was blocked. Malicious site: malicious domain 22. Network traffic from ouh3igaeb.com matches the signature of a known attack. The attack was resulted from
DEVICE\HARDDISKVOLUME2\PROGRAM FILES (X86)\STEAM\STEAMAPPS\COMMON\GARRYSMOD\HL2.EXE."

that is what it has said and same for a site/computer with www.ecpms.net.

I removed some addons and can confirm that it was a addon for garrys mod on the workshop.

Messaggio originale di ☥☣ѦƵѦ~ᎶѺℜѺƊ☣☥:

Messaggio originale di ReBoot:

What EXACTLY was detected? AV/FWs are known to overstep the line between caution and paranoia detecting all kinds of imaginary threats. So what EXACTLY did it detect?

"an intrustion attempt by ouh3igaeb.com was blocked. Malicious site: malicious domain 22. Network traffic from ouh3igaeb.com matches the signature of a known attack. The attack was resulted from
DEVICE\HARDDISKVOLUME2\PROGRAM FILES (X86)\STEAM\STEAMAPPS\COMMON\GARRYSMOD\HL2.EXE."

that is what it has said and same for a site/computer with www.ecpms.net.

That's rather generic. And actually wrong. If an intrusion attempt was from some internet server, what exactly does hl2.exe got to do with it? It didn't say what said "intrusion attempt" actually was either. Was it an attempt originating from that URL to access a port open by hl2.exe? Was it a mere port scan which just so happened to coincide with a port opened by hl2.exe? Frankly, the wording contradicts itself, it says that the attempt was by some URL and then it was from a local file.

I wouldn't give much on that. Treat it as a false-positive and if I were you, I'd uninstall that "security" software as it clearly doesn't even know what it's talking about.