Malwarebytes messages while starting re: blocking trojans and compromised sites

Since installing Malwarebytes Premium when I start SOTA it pops up messages saying that it has blocked a site(it shows the IP address) "due to Trojan" or "due to Compromised". It has happened many times and shows what seems to be different IP addresses. It doesn't happen every time I start the game but often enough to be an annoyance and a concern. It happens most enough, it seems, during an update but will happen when there is no update to install.

It keeps happening even after adding "Shroud of the Avatar.exe" and "Shroud of the Avatar - Launcher.exe" to Malwarebytes 'Allow List'.

Searching the forums I found a mention of a problem similar to this having to do with having the "Help Upload Game Data via P2P" option selected. I have that option turned off so that shouldn't be the issue here.

/edit: I should add that it doesn't just block one IP address per game start but that message can pop up several times while the game is loading.

 

Sounds like false positives based on SotA being a P2P game and connecting directly to other players in scenes with you. You should submit a support ticket to MB and see what they can offer for a solution.

 

My antivirus doesn't like the QA installer.

 

Do you use Steam for prod? Non Steam installers use P2p which might cause some false positives on endpoint AV - you can turn off seeding in the options in the installer which might help. You can also submit the binary to virustotal.com to get an idea of what major AVs think.

 

No, regular installer. I was able to install it anyway.