Ibra1 wrote:So looking into my windows defender history, I see where it quarantined D2Sigma.dll. It says that it sees a trojan, and "This program is dangerous and executes commands from an attacker." Alert level: Severe.
Can we get at least an explanation to why this would be triggering an alert like this? Plus, this was only triggered after the latest update came out. (When the launchers says "Install" instead of "Play")
Technically speaking, D2Sigma.dll has the same behavior as a virus. It injects third party code in an executable process running on your computer. So it's not a big surprise that it would get flagged by an antivirus, which are designed to detect this kind of behavior. Also we don't have any measures in place to try to hide it from antiviruses (since we're not building a virus), so this makes it even easier for AV softwares to "catch us". As far as timing goes, antivirus are constantly updated, and new "patterns" are being flagged as "malicious", the fact your detection started acting up with the new update has nothing to do with whatever was pushed in the update, in fact, nothing in the dll changed from 1.5.1 to 1.5.3, other than the version number (for display purposes).
As far as what we can do about it goes, we've been in touch with multiple AV providers and some of them recognized there was nothing malicious about our software and added us to their "whitelist", but this process needs to be renewed practically every time we make an update to our code, and possibly when they update their database as well (all depends on the AV we're talking about). Anything we can do from our code's perspective is a never ending cat and mouse game, and would actually put me in the same role as a virus developer, where I try to hide my "malicious" code from the AV's detection via obfuscation, and that's just not a path I wanna take.
That being said, all I can give you is a guarantee that there's nothing meant to harm your system or to spy on your personal/financial/whatever information in the dll, we're making a game and the product is safe to use. If you wanna avoid issues and enjoy the game to it's full extent, you can whitelist it (assuming your AV software allows it, not all of them allow user whitelisting)