No virus. We already know about the false positives, either use it or do not.
[Mod]Testosterone (C19H28O2)
08/06/2009 06:59
theoneofgod#4216
08/06/2009 07:02
DO0FER#4217
i have the latest version. what version should i have? and how do i get it?Quote:
Install the lastest version :)
08/06/2009 07:28
alius#4218
bro for some ppl the best way to fix the problem is downloading the .ini fileQuote:
here look at this post [Only registered and activated users can see links. Click Here To Register...]
and for next time ....do say what didnt work .......
bro pls do read the first page >.<Quote:
here u can see the newest Loader [Only registered and activated users can see links. Click Here To Register...]
and again ...dont forgot to read the first page ..it will help u alot
#Merged
sry for posting two ....i dont write often ...only read :)
08/06/2009 09:15
elswefy9#4219
its work now.. Thk guys
08/06/2009 09:25
klaar2#4220
I changed the server number and ip adres but i just get that silkroad
online banner thingy ( before gameguard loads) it won't go open silkroad?
online banner thingy ( before gameguard loads) it won't go open silkroad?
08/06/2009 10:09
quintal#4221
oh yes, perfectly safe!Quote:
that's why he updates it with each new version of the loader !
;-))
results on virustotal.com less than 48 hours after release :
a-squared 4.5.0.24 2009.08.06 Trojan.Win32.Vapsup!IK
AntiVir 7.9.0.240 2009.08.05 TR/Vapsup.wer
F-Secure 8.0.14470.0 2009.08.06 Trojan.Win32.Vapsup.wer
Fortinet 3.120.0.0 2009.08.06 W32/Vapsup.WER!tr
Ikarus T3.1.1.64.0 2009.08.06 Trojan.Win32.Vapsup
Kaspersky 7.0.0.125 2009.08.06 Trojan.Win32.Vapsup.wer
McAfee-GW-Edition 6.8.5 2009.08.06 Trojan.Vapsup.wer
Panda 10.0.0.14 2009.08.05 Suspicious file
Prevx 3.0 2009.08.06 High Risk Cloaked Malware
[Only registered and activated users can see links. Click Here To Register...]
08/06/2009 10:13
quintal#4222
excuse me?Quote:
"false positives" that get updated in version (vapsup.wer this time, vapsup.something else before, etc.) with each update of the loader?
i'm not using it anymore AND i'm warning others about it, wether you like it or not.
You go proving your "false positives" point anytime, buddy... or not.
From Rumata's FAQ on original post :
I don't know about you, but I'm not satisfied.Quote:
Why is there this "Win32.Malware.gen!80 (suspicious)" and this "Sus/ComPack-C" in virus scan?
I use simple VM protection in my programs. Some anti-virus detect it.
Anyway I only miss the multiclient feature now that the auto-login feature is in place in the original client.
Maybe I'm just wrong and these are false positives indeed. I don't know, so I'll keep playing safe. And so should you if you don't know either.
08/06/2009 10:19
theoneofgod#4223
Get some knowledge of the forum first before accusing rumata of infecting users, do you honestly think IF he wanted to, it would be detected??
PS: If the loader was built to steal account information, it would not be on the forum.Quote:
False positive
Synonyms: False alarm
A false positive is another way of saying ‘mistake’. As applied to the field of anti-virus programs, a false positive occurs when the program mistakenly flags an innocent file as being infected. This may seem harmless enough, but false positives can be a real nuisance.
* You waste productivity due to user down-time.
* You may take e-mail offline, as a security precaution, thus causing a backlog and more lost productivity
* You waste even more time and resources in futile attempts to disinfect ‘infected’ files. And if you load a backup, to replace ‘infected files, the backup appears to be infected too.
In short, false positives can be costly nuisances.
The term is not confined just to the anti-virus world. It also applies, for example, to anti-spam protection, where it refers to the misidentification of a legitimate e-mail message as spam. This too could be very costly, since the undelivered e-mail may be a business critical message.
08/06/2009 10:55
quintal#4224
1/ "get some knowledge of the forum first."Quote:
PS: If the loader was built to steal account information, it would not be on the forum.
I have some, I have browsed this thread a long time before I first downloaded from it months ago, then I checked out the last pages after release each time I downloaded again, and that amounts to about 10 releases.
How much knowledge and what knowledge in particular you think I would need before either trusting (bad move) or rejecting the loader based on suspicions of a virus?
I post the virus check as a warning and wait for replies. Here comes your reply with nothing substantial to contradict my suspicions and/or claims.
If you have any proof that it's only a false positive, just post it.
2/ "do you honestly think IF he wanted to, it would be detected??"
That's supposed to determine my choice of using a suspicious file? The belief that Rumata would be able to include an undetectable trojan in his program?
We're talking security here, not religion. Belief isn't an option except for suckers.
3/ (your generic quote about false positives.)
Completely redundant as the term "false positives" explains it well enough.
There again, you think your simple claim that it is a false positive, and the explanation of what it means, should be enough to prove that it is one?
4/ And finally "If the loader was built to steal account information, it would not be on the forum."
If you intended this to be a last argument, that one's called an 'argument out of authority'. It's a fallacy. It doesn't prove anything.
So where are you standing? Deluded and/or deluder?
Bring me some valid points if you want to prove your claim.
08/06/2009 11:10
theoneofgod#4225
Google packet sniffer, download one of those trials, and run it while you launch the loader, you will see the only connection is to 121.128.133.29 gwgt1.joymax.com or whichever login server you first connect.
And when you successfully login, you get the guild/union logo alert, that is from Joymax as well.
Like I said, if you do not trust the forum, or the moderators here, then please do not use any programs, we are aware people do try infect our users with keyloggers and such, and most of the time the threads do not even appear, and if they do, and something is found to be suspicious, it is looked into and actions are taken accordingly.
And when you successfully login, you get the guild/union logo alert, that is from Joymax as well.
Like I said, if you do not trust the forum, or the moderators here, then please do not use any programs, we are aware people do try infect our users with keyloggers and such, and most of the time the threads do not even appear, and if they do, and something is found to be suspicious, it is looked into and actions are taken accordingly.
08/06/2009 13:12
quintal#4226
Very well, you gave me and others a way of checking for suspicious activity.
Yet your real point is about encouraging people to trust you and your forum.
So... in conclusion, whoever wants to trust this forum on a matter of security of their own system, go for it.
And the elite few who can check things by themselves, lucky you:)
(I have a packet sniffer... but I have no idea if checking things that way is enough.)
Sorry for being a bother but you might be aware that even on the SRO servers, people ("legits" usually) are claiming the loader is "loaded".
Have a nice day and thank you for your service. I have used the loader and enjoyed it much.
Yet your real point is about encouraging people to trust you and your forum.
So... in conclusion, whoever wants to trust this forum on a matter of security of their own system, go for it.
And the elite few who can check things by themselves, lucky you:)
(I have a packet sniffer... but I have no idea if checking things that way is enough.)
Sorry for being a bother but you might be aware that even on the SRO servers, people ("legits" usually) are claiming the loader is "loaded".
Have a nice day and thank you for your service. I have used the loader and enjoyed it much.
08/07/2009 03:22
corzy666#4227
When I launch my loader, the silkroad pops up to start loading but it never gets to the login screen(when using nuconnector and agbot), it just stays at the rectangle box that says silkroad online. Thx 4 your help.
If I use 121.128.133.28 ip and 15779 port, the nuconnector won't recognize sro, but sro will load.
If I use 121.128.133.28 ip and 15779 port, the nuconnector won't recognize sro, but sro will load.
08/07/2009 03:47
rumata#4228
Look at the first page of this Thread. Do you see date 02-26-2008? The 1,635 users say thank me for this post. Two years I give you the result of my work absolutly free. What should I have to do more to prove my unselfishness???Quote:
"false positives" that get updated in version (vapsup.wer this time, vapsup.something else before, etc.) with each update of the loader?
i'm not using it anymore AND i'm warning others about it, wether you like it or not.
I use NOD32 antivirus and when it incorrectly identified the virus in my program, I wrote to ESET company and they removed it.
Look on virustotal analisis:
[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]
Do you see the same MD5 : 59dc4cd550cccdc9fe9fb81222dc6714 in both cases?
How it can be? I don't understand what I should to do to avoid it.
Version 7.23 Clean.
Version 7.24 Trojan.Win32.Vapsup.vka
Version 7.25 Trojan.Win32.Vapsup.wbk
Version 7.26 Trojan.Win32.Vapsup.vsu
Version 7.27 Trojan.Win32.Vapsup.vuh
Version 7.28 Trojan.Win32.Vapsup.vwq
Version 7.29 Trojan.Win32.Vapsup.wbc
Version 7.30 Trojan.Win32.Vapsup.wer
08/07/2009 09:17
je_suis_un_crabe#4229
I trust in rumata !
He did a great job and he did it free !
He did a great job and he did it free !
08/07/2009 12:34
kurdeosman93#4230
Let me guess, you dont know anything about viruses, only is it clean when not its a virus....Quote:
He did a great job and he did it free !
On-Topic : Just bring a Loader put without any Viruses. Then I would start to use it again but from now on I stopped..