I’m no stranger to false positives, especially when virus scanners are all too keen to label things as “hacktools” and class them as malicious. However there is apparently no need for an online fix at the moment as there is no real authentication to play online so I just can’t understand why there are so many calls to specific IP addresses that aren’t in the legitimate version. (As there are currently no need to run pirated servers)

Also it’s the first time I’ve see so many sigma flags in the sandbox tests. When I see “Critical: Ransomware” I get spooked. (As I’ve never seen this level of warning before. Nothing above a medium, infact)

Ive done quite a bit of googling but haven’t been able to find much to dissuade my fears with sandbox flags like these… What’s more cracks from different users all have differing detection flags and call different IP addresses…

TL;DR: I’m out of my depth with this one.

Usually I have no issues with the above site but when looking for the latest patch this is the result of a virus total scan from a very prominent known-user: https://www.virustotal.com/gui/file/0a661adf06c2bef40749e9eba17ffccef0eb0e76321a5a21ec11ca60c34fb0dc/behavior

Gonna have to reassess my views regarding the safety of this site…