For the past two days I have been having intrusion attempts from an attack call Zyxcel Command Injection CVE-2023-28771 and it was supposedly blocked hopefully and it has been mostly been from the same attacking computer but from another one other also but only once and I am hoping for any help on this please thank you.
googleupdater.exe is a process which belongs to the Google.com’s range of Internet search facilities. For it’s functioning, it may need access to ccsvchst.exe file from Norton program at different occasions. Here the Norton Product Tamper Protection in Norton 360 blocked it as an unauthorized access as the target is a Symantec file. Norton Product Tamper Protection will block any processes or services that attempt to access or change Norton files. The googleupdater.exe tried to get access to some of the Norton files or associated processes so that it can update some information and this was blocked by the Norton Tamper Protection. This behavior is normal as Norton Tamper Protection in intended to block any access to Norton files/processes irrespective of the source as most of the viruses/trojans will first attempt to damage the security program before infecting other files. This is all to keep you secure and keep the software from being tampered with by malware. This same message has been noticed with adobeupdater.exe also and you don’t have to worry as it is normal.
Nice one yogesh. Again you have given a really helpful and knowledgable reply.
Thanks yogesh.