ohnepixel reacts to is valorant chinese spyware?

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

is valerant spyware so is valerant malware is it a CCP root kit or spyware or whoa is this the guy or just another game it is the guy the PC security Channel CH I kind of want to watch this bro just another game well today didn't Riot get bought by um uh not to put like another dimension on it but didn't Riot get bought by um by um 10 cent or something yeah we have a test system I remember ordering a um Huawei laptop and I bought it from the official like website and it arrived I needed it for uni I arrived I booted it up for the first time and it told me that I have a Trojan like Windows Defender Pro nah I swear to God it came with some extra stuff let's just say that and we're going to monitor try to answer this question def then I Googled and said as well like yeah who are you just get windows again like new one once and for all like read redo windows or something which hopefully will'll also answer questions about similar applications and anti-che software in general are invasive applications a risk to your security and what should you do about it so first off I want to say it should be kind of obvious but when you install valerant on your computer it makes a lot of connections and I mean a lot most of these are to the servers across the riot CDN network but what kind of data is it sending and where well that's a difficult question to answer because the data itself is going to be encrypted so you're not going to be able to tell even if I were to trace some of these individual connections like the IP addresses that it connects to most of these are going to be Amazon servers in a nearby location so you can't really tell where the data is really going after that but here are some facts if we do a quick search the riot games the company behind Fant is owned completely by the Chinese Mega giant tensent now asking if tensent is interested in spying on you is like asking if the dog wants its bone in certain situations the answer may be no but in general it's a resounding yes so we're going to continue with our investigation of the behavior but knowing the ownership where we can't find answers we're going to have to assume the worst so let's start with the client and what it does we take a look at process Explorer and examine all the valerant processes we have the riot Client Services seems perfectly safe and if we examine the loaded dlls nothing strange here either now if we take a look at Vanguard which is the actual anti-che application this particular exe doesn't really do anything this is based in program files and it's only a simple 3M application but do not make the mistake of assuming that this is the Vanguard application this is the notification application for Vanguard the real anti-che is embedded deep within your system as a driver now where you as a driver dude I remember screenshots of people like trying to uninstall valer it says like five like two terabytes or something like the whole drive like while you have it open it like takes everything I wonder if it goes into that like why that is because to me as a as a as I don't know what it means like I don't I I couldn't explain like how it's a Windows back okay I wonder know if you will talk about you are going to see it is if we ignore all of this and take a deeper look at the system and here we have a list of dlls that are loaded including drivers like AMD drivers kernel drivers display drivers Bluetooth and if we scroll through this list we're eventually going to find Vanguard vdk dosis which is a kernel mode driver by Riot games so when you see discussions on Reddit about ferin being malware spyware most people just look at this and panic cuz this is essentially like a root kit it's a driver that's embedded within your system but it's also important to have some perspective here so I want to look at a competitor to valerant Counter Strike 2 and there face it anti cheet so if we head over to my system oh God is face is going to be worse or not nobody ever talks about this I don't even know fa antiche is also Kel no where I do have faets anti-che running and similar L look at the system we are also going to find the face it anti-che loaded as a system driver so this Behavior itself is not unique to Vanguard if you want an application to be able to Monitor and police what's happening on your system it has to be embedded in the system and it's the same reason the next thing on list is malware bites anti-ransomware protection now this is again one of things that people on Reddit when they see kasperski install Vanguard 10 cent AKA faet ESL fa group AKA Saudi both okay with me have my D it's fine do a driver like this they're like oh it's Russian spyware and completely ignore the fact that every other AV needs to have their driver embedded there as well but here's the thing that makes f as long as it's not the Netherlands or Germany we Gucci face at Santi cheat can be turned off at any time and if I wanted to I could simply relaunch it opening the app but with ferin not to have anything to hide just to make that clear if I want to go ahead and exit out of Vanguard it gives me a warning saying that the game depends on its functionality and will stop working until I restart my computer and that is actually correct so if I go ahead and exit it I can no longer play the game and if we try there's an airor message saying no no you can't play the game no more no that I need to reboot the computer and this is a huge difference because effectively is someone who wants to play valerant needs to have a Vanguard running on their system all the time whether they're playing the game or not you could be browsing the internet for 6 hours before you decide to get into a valerant game and vanguard's going to be running the whole time if you want to be able to quickly start up and load your game when you want to play now for you technical folk there are also different levels of Kernel access and it turns out Val needs very significant Colonel access and that's one of the excuses as to why it needs to load up with the system when you restart but that's not convincing for me especially considering there are other applications that manage to do it without and then when you add a nefarious end user license agreement that includes a forced arbitration so you can't even have a class action lawsuit against them I don't know but that just sounds a little bit messed up I can't look into these connections and tell you if they're spy on you the whole time or if they're only sending information when the game is launched we simply don't have that access but ask yourself if you want to run 10 cent software 24/7 on your computer in theory monitor everything you do if I were an anti-che software why I wonder if 10 cent because they know that valorent is konel level antiche I wonder if that was like part of the reason why they acquired that you know probably bro maybe I don't know there's a successful game with konel level anti-che may have been like a reason of the acquisition I don't know why would I need to be running on someone's computer the whole time simply doesn't make sense and I think this is what we need to pay more attention to the behaviors that we being forced into not necessarily the fact that loads a kernel level driver because applications do that what concerns me more is they have set up they bought it before valoren okay okay never mind the system in a way that people are going to have this application from 10cent running on their computer the whole time whether or not they're playing valerant and I'm just not convinced of the reasons for it so look if you really enjoy playing valerant what I would suggest is just exit Vanguard whenever you stop playing valerant I know it's going to be a little bit more inconvenient to have to restart your system when you want to start playing but I don't think you should give an anti-che application a permanent place in your memory and as a principal I think it makes sense to ask why an application is doing what it's doing if an AV it makes sense for you to want to have a driver to monitor everything all the time but if you're an anti-che for a game you only need to be running when the game is running now of course this could all just be a technical implementation thing but the more I think about it 10-cent Chinese ownership data collection and then hm an anti-che system that conveniently is set up in a way that in order to have a good gaming experience you just need to let it run on your computer the whole time I don't know there's something about that that puts me off it just seems to line up too conveniently for a data collection company like tenset but let me know your thoughts in the comments below and let me know if you enjoy these kinds of analysis videos now since we did notice the uh malor bites driver I thought this would be a great video to show the newest version so there is sponsor they have a brand new UI dude double your video and oh man it's like CS could probably as well have quickly like a nice anti-che but they don't want to do the kernel level thing you know it's against the philosophy the thing is like I I don't know like most people don't care right I don't care I would rather have a nice antie than like I never I don't really care I'm not I'm not this like data freak of like oh no but this data leaked and this that I I don't really care I don't know my want to play the game without cheers Wonder CH going to do with it

Info

Channel: ohnepixel raw

Views: 83,785

Rating: undefined out of 5

Keywords: csgo, csgo skins, ohnepixel, cs2

Id: dy17lvdbTTI

Channel Id: undefined

Length: 9min 51sec (591 seconds)

Published: Fri Apr 19 2024