Was playing with localy hosted server and my AV started detecting entry requests throught cultivation.exe. Tracked them down, 4 american ips with no blacklist listings. im from europe. Is this normal?
#Entry attempt on my system?
fringe rivet
hushed furnace
Not possible for anyone to access you through Cultivation. Are you sure it wasn't simply the automatic web requests from webview or the updater which checks github?
fringe rivet
Im not sure but i would like to be... i searched up the ips online they turned up low fraud risk but what makes me feel uncoftable is:
1 is registered to github (allegadly)
1 is GOOGLE LLC (allegadly)
and the other 2 ips are registered to amazon ?!
44.197.23.108
140.82.121.6
3.232.40.159
130.211.30.54
Tentativa de acesso Aplicação: C:\Users\migue\Desktop\Cultivation\Cultivation.exe
(tentativa de acesso means access attempt) (aplicação means application)
hushed furnace
Yeah so those sound completely normal to me. Don't forget your windows network traffic is going through Cultivation as well, so any web requests you are making are going through Cultivation too
fringe rivet
i hear you but i've been playing for hours and these poped up out of the blue. i told AV to block these entries and everything kept working as intended... i just want to make sure these arent harmful or fraudulent. i mean why would amazon be involved in this??
hushed furnace
everything kept working as intended
Yep, you can turn off your internet and it'll keep working as intended
i just want to make sure these arent harmful or fraudulent
Nothing by/from/for Grasscutter or Cultivation, is all. Those are from your system or from webview, and are going to be related to either something you're doing or some other automatic process.
i mean why would amazon be involved in this??
Amazon runs all sorts of web stuff, AWS
You can disable your internet adapter/unplug your ethernet cable/turn off your wifi/w.e and you will still be able to play on your own local server through Cultivation with no issues
fringe rivet
no i mean i get that cultivation and grasscuter themselves are safe but these ips tried to enter my system through some weakness in cultivation and sice im giving admin access to cultivation i dont really feel safe. im going to let go for now... thanks for the help though
hushed furnace
Sure
Not sure why you'd feel unconfortable about google and github registered ips connecting to your machine, but hey each to their own. Don't forget there's an offline mode in settings to disable automatic web requests such as the updater which requests github.
fringe rivet
honestly its not the github or google ones trying to enter that scare me the most... i mean its already weird but im willing to give bennefit of doubt. now amazon being involved? dont make sense to me.. dont want to know what would happen if av didnt pick it up and asked me if i wanted to block them or not
hushed furnace
Nothing would happen, nothing at all
I'm worried you'd have a heart attack if you opened wireshark to see how many ips are "entering your system" nonstop just by your pc being connected to the internet and using windows
fringe rivet
i didnt even risk it bro. it crossed my mind but i decided it was better for my own sake to keep it closed xD
anyway ill probably revist on a later day thanks for the hard work on the app
hushed furnace
I'm sure if you looked at those amazon ips they are related to aws, which is used all around the web for all sorts of things