reddit post says after downloading Plutonium "malicious" ips was trying to connect to device
-
https://www.reddit.com/r/CallOfDuty/comments/n0dscs/bo2_plutonium_virusspyware/
here it is. any expiations?
-
It could be unrelated: keep in mind that (sadly) some people only take Plutonium as a crack and therefore have a lot of shitty cracks on their PC. So if you download 3 it doesn't mean it's Plutonium specifically.
Also if you are hosting a game or server then IPs from the outside will connect to you, that's how the internet works. Without context it's hard to tell why it happened.
I can't really give you a better answer as Plutonium is safe and doesn't have servers in those countries.
We have more than 2.5 million accounts and almost 170 000k Discord members and existed for almost 5 years.
The project wouldn't be alive or would have a lot more reports if it was actually malicious.I'm not part of the dev team so I cannot give you a better/more technical answer as this is the only things that comes to my mind
-
yeah i understand that i wasn't even sure if the ips connecting to your pc was even a thing, i scanned Plutonium with malware bytes and windows it both came back as malware, is it really realistic its a false positive if malware bytes somehow knew exactly what it was??? not even like "hey this program COULD be malware" it was like nope malware, thanks for the reply btw im just wondering why
-
-
-
Koreyyy said in reddit post says after downloading Plutonium "malicious" ips was trying to connect to device:
is it really realistic its a false positive if malware bytes somehow knew exactly what it was???
but it didn't. neither malwarebytes nor any other av software has the ability to automatically disassemble software and find out exactly what that software does. All these programs just work based on behavioural patterns, if for example a piece of software has the ability to modify it's own executable it's considered malicious however in pluto's case this is completely legitimate as the launcher needs to be able to update itself.
the ips in that reddit post most likely just come from torrenting the game.. no idea why they are considered malicious, maybe mbam just detects dht traffic as malicious.