Forum Replies Created
-
AuthorPosts
-
I’m wondering, would this issue be bypassed if the DL file were zipped instead of being downloaded
as a direct .exe file?Your issue https://miqobot.com/forum/forums/topic/bit-defender-prevents-download/#post-40359
And this threads issue are unrelated. This thread is when you actuaklly run the bot, your is a 3rd party AV blocking your download.
You’d still have to unzip the file to run it.
Another thing to also keep in mind, at the end of the Script/Wacatac.H!ml, the “ml” is for machine learning, these isnt detection based on pre set parameter of a file, its literally defender using basic AI to look at what its trying to do and then flags it. So that assumption that “its predetermined” bad files, that right there is wrong.
Also one last clarification, Windows classifies threats based on “know action types” that Screenshot showing the Script/Wacatac.H!ml is a falase positive, windows simply places that designation on it because thats the closest thing it can find to what the bot is doing.
I’m sorry but no, things aren’t identified as a Trojan unless they meet specific criteria. Windows Defender and other Virus scanners don’t flag things unless the things embedded within the code match known threats.
The specific trojan being reported with this release of Miqobot indicates key logging, backdoor access to the PC and remote installation of software capabilities. There are a ton of apps on the internet that do key logging without being classified as a trojan. Whatever approach they’re using that is indicating potential remote access to the systems is a huge red flag. Or at a minimum provide a technical reason on what they are doing, how they are doing (without giving away proprietary information) to help.
Developers staying quiet on the issue and the community pushing for people to just “whitelist and move on” is how bot nets are formed across the internet. It happens all of the time with trusted software. I won’t renew my license without the code being changed to be less intrusive or the developer openly share what’s going on to cause it.
It is far more complicated the that.
The reason windows flags Miqo is because of the way it does key presses to emulate human input, to avoid Bot detection in the game.
Any program that reads your keys and can simulate key presses, with out a digital signature from Microsoft is going to get flagged. And Miqo would not be able to get a Digisig from Microsoft given the nature of their software.
This has been a thing since forever with miqobot, the reason why it is showing up more is microsoft is pushing new updates in the past few months that are increasing the level of reading it can detect for those programs access this specfic set of .dll.
Any bot program that simulates key presses is going to trigger this. Peroid. And thats far more preferable then a bot that injects cause those ARE detactable by most games that have basic anticheat.
So sit there and try to slander the bot when you have no basis other then to, what apepars be a troll.
As to why I am responding this way, I am a 6+ years cybersecurity manager, I deal with Windows defender and its systems intergration on a daily basis as a part of enterprise security. It’s also why we typically rely on 3rd party AV because windows applies this new blanket inclusion only via digisig.
Did you know RPG maker also gets flagged on my system because of how it access my GPU drivers? One of the most used single party in home rpg maker tools is now a virus by your logic.
Just because “Microsoft” flags it, doesnt mean they are all knowing. It simply means its doing somehting they would prefer things not to do normally.
Edit: I felt I needed to post this because honestly theres this huge misunderstanding that defender is an AV, and its not, its meant to protect windows first, you second, anything that manipulates windows core .dll makes Microsoft nervous because it can come back to them as an exploit.
Given the state of their country, I expect that Miqobot will be down for the foreseeable future after the 10th.
I am as much an optimist as I can be, but I also work in a job that gets me alot of info coming out of that area, most places barely have power for 2-4 hours a day, let alone working internet etc.
I plan myself to keep subbing just as a show of support. I’ve already taken steps to have things in place to replace as much of miqo as I can while they are away.
All we can do it wait, I would not expect alot of updates from them during this time, especially since Russia just hit their grid again this week.
Unless Miqobot changed the core of Combat assist, it will have issues, I believe they stated in the past that Miqo scans your hotbars every 3ish seconds. Which means that combos which are almost all short then that on the GCD, will sometimes cause miqo to not see the updated combo button in time and may reset itself to another button.
And I experienced this myself when I attempted to use Miqo in conjunction with SlothCombo, so while it will kind of work, it will perform worse then just using Miqobot itself. Combo condensers should be used independent of miqo.
- This reply was modified 2 years, 2 months ago by NepNep.
I know you don’t take donations, just curious if temporarily fleeing to the closest EU is an option? There are resources out there and the community would be more than happy to help in any way. Hypothetically speaking if Russia does not stop do you guys plan on relocating or remaining where you are? My prayers go out to you and your families!
See this post.
https://miqobot.com/forum/forums/topic/endwalker-6-0-miqobot-status/#post-36300
They are at war, every country is different but from what I understand able bodied people are required to stay and help, leaving would essentially have them marked as deserter/traitors. They would never be able to return home.
when i try to download the file contains virus
This is normal, the file isnt signed by microsoft and contains .dll, trust me, its no virus.
Unpopular opinion: I won’t be resubbing indefinitely as a charity. Miqo was way behind on their roadmap before a war broke out, achieving zero updates for 6.0 thus far. Unless you’re actively fighting in the war or running for your life what’s the hold up? If you have internet access and nothing else to do what’s the excuse? I like this application, but I’ll be taking my money somewhere where people are more motivated to keep their program up to date until hopefully Miqo gets their act together.
Stay safe.
I don’t even know what to say, keep that to yourself. you clearly have 0 perspective of what is actually happening. They are in a country that is borderline having genocide committed against them and you say this. Get out.
Edit: Miqo or mods, can delete this if I crossed a line, just I know more then 1 person who lives in Ukraine so this struck a nerve. I apologize if it does.
- This reply was modified 2 years, 7 months ago by NepNep.
Has anyone heard from the Miqo team lately? I hope they are ok!
I have been worrying about them every day. They’ve been gone for 2 weeks and I was worried, but for now, it seems they are at least “checking in” to some extent, both yesterday and today, if you check the “last users on in 24 hours” on the main forum page, their account name has popped up.
Wont lie I was very happy and relieved to just see that.
I can’t even imagine what it’s like to be there.I understand why new functions don’t work, but why things we’ve been using the whole time, like fishing and combat for old jobs? I also use this bot due to disability and physical limitations, and I’m sad that I can’t play the game because it causes pain.
When a program is compiled, everything is assigned a certain sort of “memory” value, that the system uses to find things, when a patch for the client hits, those memory values change, its just a part of programming, miqobot has to read those values to know what to do. So when a patch changes all those values, the team has to go back and in basically update all the values in miqobot to match what the new patch has changed.
Its why 90% of plugins break for most mmorpgs when patches hit, the memory addresses change and the hooks they used have to all be updated to the new values.
-
AuthorPosts