466 replies to this topic

[Tonton Fred]

Using the Beta BWS btw.

Then why are you posting here, and not where you are supposed to post...

The malformed HTTP response occurs no matter which version of the BWS is used, so I did not think it was related. But since Dabus said this problem should not happen even with an unspecified file length, I added the detail about using the beta ; I am still unsure if the problem is related to the BWS or the server hosting the file. Feel free to have my post moved to the beta thread if you'd like.

Fred

[Krohon]

Got a malware alert on "Big_World_Setup.exe", on the file "AutoIt3.exe". Comodo IS v 4.1 found the "Packed.Win32.Klone" signature. Can somebody confirm it or check if non Italian installs are clean?

Thank you.

[dabus]

Well, you can throw away the BWS if you don't trust the AutoIt3.exe.
The BWS is a script that uses AutoIt3, a basic-like script-language.
You can right-click the exe and look at the digital signature-tab.
This way you can confirm yourself where it's from and who coded it.

Your software seems to be a little unsure about this interpreter since you can do a lot of stuff. Some of it may be used to harm a system. As the BWS itself comes in source(=text)-format, you are free to check all the au3-scripts and look if they may screw you.

And what has that to do with "non Italian installs"?

[Krohon]

Well, you can throw away the BWS if you don't trust the AutoIt3.exe.

Never trust.

The BWS is a script that uses AutoIt3, a basic-like script-language.
You can right-click the exe and look at the digital signature-tab.
This way you can confirm yourself where it's from and who coded it.

Nice, but has it a malware attached?

I will answer that, Yes.

The digital signature tab shows the old version (v3.2.12.1) of AutoIt3 included with BWS has an invalid signature, expired on 3/2/2009. Also the newer AutoIt3.exe (v3.3.6.1) I downloaded from the developpers' web site pass all AV tests.

The fix would to replace the old AutoIt3.exe as soon as you install BWS but a script is run when unpacking BWS so the trojan may infect the computer even before we are able to fix it. Better not use it in any way.

Your software seems to be a little unsure about this interpreter since you can do a lot of stuff. Some of it may be used to harm a system. As the BWS itself comes in source(=text)-format, you are free to check all the au3-scripts and look if they may screw you.

? Nonsense.

And what has that to do with "non Italian installs"?

Nothing.

[dabus]

Uhm, ok.

If you don't choose to execute the script after extraction, nothing happens and you can replace the interpreter.
I'd just like to note that the script is made with/for v3.2.12.1.
There may be some breaking changes since then that may lead to misbehaviors or crashes.

Edit:

Just to make clear for people that read this statement:
I will not replace the interpreter any time soon.

-I don't want to look after the changes every time a new version comes out and see if my code is affected. Thinking of it, it's the first time anyone has reported that it would be malware and I noted it.
-I have 3 different anti-virus-checkers on different PCs and tested a few that don't bother about it but blocked a current version a few weeks ago.
Here is an overview of an analysis. I'd also trust that the guys from O'Reilly would not make a book about something that contains malware.
-Thinking of a developer creates malware, do you really think he would invest money to brand it as his software?
-Do you think it would be clean in later versions because he changed his mind and he would still have the bad version available as a download?
-If you don't trust me but the developer of AutoIt3.exe, you are free to download the old version and run a checksum on the file from the BWS and that download.
-And why would you still be using WeiDU anyway if you don't believe in false positives? There are a lot posts about "WeiDU is reported as..."
-The BWS (and as its interpreter the AutoIt3.exe) will go and try to connect to the internet. It will do because it's programmed to behave in that way.

If you (other readers) still don't feel like trusting the executable, you are free to skip my warning regarding the changes of the interpreter and see what happens or don't use the software.

Edited by dabus, 26 June 2010 - 11:01 AM.

[maciejkpl]

Hello.

I have 2 problems with installing mega mods using Big World Setup..

1. I have Baldur's Gate - Complete Edition (both games on one dvd) when i install BG II with ToB there is a problem. Big W Setup says that my instalation isn't full and 25movies.bif is missing. This file is not missing! I don't know what cause the error but i have to install English version of Baldur's Gate :/

2. I cant download anything from weidu.org. This site is dead :/ This mean i cant have updated weidu <= and that is a critical problem!
if someone could put weidu-windows-2.18.zip on some site like rapidshare or megaupload or some ftp i would be thankful. (Solaufein mod would be really nice too )

hail!

[Jarno Mikkola]

1. I have Baldur's Gate - Complete Edition (both games on one dvd) when i install BG II with ToB there is a problem. Big W Setup says that my instalation isn't full and 25movies.bif is missing. This file is not missing! I don't know what cause the error but i have to install English version of Baldur's Gate :/

Install the game to a folder which name is "BGII - SoA", and if you have Vista or W7, make sure you DO NOT install into the Program Files sub-folder, and make sure you patch it with the v(2.5.)26498 patch, then start the game and play it so game it autosaves, and the quit it and open the file called baldur.ini, there make sure that the [Alias] paths all point to the game directory, and the CD directories the game folder has... only the CD1 directory should be missing.

2. I cant download anything from weidu.org. This site is dead :/ This mean i cant have updated weidu <= and that is a critical problem!
if someone could put weidu-windows-2.18.zip on some site like rapidshare or megaupload or some ftp i would be thankful. (Solaufein mod would be really nice too )

Here... I put the solafein mod into a .rar, cause I cannot upload a .exe file.

Attached Files

•  WeiDU-Windows-218.zip   2.24MB   387 downloads
•  Weimer-SolaufeinMod-v104.rar   1.13MB   264 downloads

Edited by Jarno Mikkola, 26 June 2010 - 11:36 AM.

[dranged]

Should this install Secrets of Bonehill? Managed to get this up and working using Vista with the Recommended Settings no problems but noticed Bonehill was missing, can I install this manually and if so when/where? Not sure where to post this as one forum would say you're using BP and the other it's a BoneHill post.

[dabus]

BoneHillv275 is included from the Standard- upwards or can be added in a customized selection...

[Jarno Mikkola]

I had one question about the install: Everything installed fine, but at the command-line install part of the process, it said that I had "chosen" not to install the widescreen mod. In reality, I was never given a choice, or presented with the option of a widescreen mod.

Will this affect the resolution of the game? Also, is there a way of retroactively installing said mod?

Erhm, the widescreen mod might not be in the compilation you choose, and so it doesn't effect the game... you can of course then go and later install the Widescreen mod. But be darn sure that you don't install a GUI-changer mod after that or you'll have problems like these... yes there is a list that should have all the mods that do that.

[Jarno Mikkola]

So just to confirm (so that I don't screw up the incredibly long BWS install), installing the widescreen mod on top of the BWS won't affect the mods or BG1/BG2 that are installed?

Yes, no, yes, no, no, yes yes, no and yes .... time to perhaps ask a clear question ? Yes. Näh, let's just go for it.

The Widescreen mod does affect the mods and the games it's installed on top of, but it doesn't brake them, as long as the BWS install order is kept, the whole list can be read from the BWP manual's, the English, ... and it can be modified too, if you know why things are set in the way they are... so when I say that you can install the widescreen mod on top of the mods you had, you can as long as you don't install the mods in this list after the Widesceen mod:

the BG1Tutu, EasyTutu, BGT, SoS, TDD, ROT, TS, TS-BP, NEJ's, the setup-GUI in BGT-WeiDU, BG2 GUI Skin Mod, W_GUI, TutuGUI, with Total Conversion mods like; Shadow Hand GUI, Classic Adventure, Epic Endeavours, Return to Trademeet, IwD in BGII, The Glory of Istar, IwD1Tutu, IwD2Tutu...

But then again installing any of them would probably destroy your whole entire BWS game anyway.

Edited by Jarno Mikkola, 04 August 2010 - 01:56 PM.

[freestone]

Well, you can throw away the BWS if you don't trust the AutoIt3.exe.

Never trust.

The BWS is a script that uses AutoIt3, a basic-like script-language.
You can right-click the exe and look at the digital signature-tab.
This way you can confirm yourself where it's from and who coded it.

Nice, but has it a malware attached?

I will answer that, Yes.

The digital signature tab shows the old version (v3.2.12.1) of AutoIt3 included with BWS has an invalid signature, expired on 3/2/2009. Also the newer AutoIt3.exe (v3.3.6.1) I downloaded from the developpers' web site pass all AV tests.

The fix would to replace the old AutoIt3.exe as soon as you install BWS but a script is run when unpacking BWS so the trojan may infect the computer even before we are able to fix it. Better not use it in any way.

Your software seems to be a little unsure about this interpreter since you can do a lot of stuff. Some of it may be used to harm a system. As the BWS itself comes in source(=text)-format, you are free to check all the au3-scripts and look if they may screw you.

? Nonsense.

And what has that to do with "non Italian installs"?

Nothing.

hi all.

I unpacked this file from the setup, as of August 31 2010.

here is what is shown from virustotal.com

0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.
File name: AutoIt3.exe
Submission date: 2010-09-01 00:15:08 (UTC)
Current status: queued queued (# analysing finished


Result: 0/ 43 (0.0%)
VT Community

not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2010.09.01.00 2010.09.01 -
AntiVir 8.2.4.46 2010.08.31 -
Antiy-AVL 2.0.3.7 2010.08.31 -
Authentium 5.2.0.5 2010.08.31 -
Avast 4.8.1351.0 2010.08.31 -
Avast5 5.0.594.0 2010.08.31 -
AVG 9.0.0.851 2010.08.31 -
BitDefender 7.2 2010.09.01 -
CAT-QuickHeal 11.00 2010.08.31 -
ClamAV 0.96.2.0-git 2010.08.31 -
Comodo 5928 2010.09.01 -
DrWeb 5.0.2.03300 2010.09.01 -
Emsisoft 5.0.0.37 2010.08.31 -
eSafe 7.0.17.0 2010.08.30 -
eTrust-Vet 36.1.7829 2010.08.31 -
F-Prot 4.6.1.107 2010.08.31 -
F-Secure 9.0.15370.0 2010.09.01 -
Fortinet 4.1.143.0 2010.08.31 -
GData 21 2010.09.01 -
Ikarus T3.1.1.88.0 2010.08.31 -
Jiangmin 13.0.900 2010.08.30 -
K7AntiVirus 9.63.2406 2010.08.31 -
Kaspersky 7.0.0.125 2010.09.01 -
McAfee 5.400.0.1158 2010.09.01 -
McAfee-GW-Edition 2010.1B 2010.09.01 -
Microsoft 1.6103 2010.08.31 -
NOD32 5413 2010.08.31 -
Norman 6.05.11 2010.08.31 -
nProtect 2010-08-31.01 2010.08.31 -
Panda 10.0.2.7 2010.08.31 -
PCTools 7.0.3.5 2010.09.01 -
Prevx 3.0 2010.09.01 -
Rising 22.63.01.04 2010.08.31 -
Sophos 4.56.0 2010.09.01 -
Sunbelt 6820 2010.09.01 -
SUPERAntiSpyware 4.40.0.1006 2010.08.31 -
Symantec 20101.1.1.7 2010.09.01 -
TheHacker 6.5.2.1.360 2010.09.01 -
TrendMicro 9.120.0.1004 2010.08.31 -
TrendMicro-HouseCall 9.120.0.1004 2010.09.01 -
VBA32 3.12.14.0 2010.08.31 -
ViRobot 2010.8.31.4017 2010.08.31 -
VirusBuster

no virus showing at all.

there were three showing, back in march, as per that scan on this page, further up.
[ http://www.virustota...88b9-1267202765 ]

I guess it is safe.

freestone

Edited by freestone, 31 August 2010 - 04:21 PM.

[Vaelina]

After installing this, I'm experiencing a crash. When I start a new BG game, on the race selection screen, there are no names on the buttons for the various races, but it still lets me select them. On the class select screen, the buttons once again have names, but if I select certain classes, the game will crash. So far it definitely crashes on selecting fighter or ranger. It does not crash selecting mage. I can test other classes if that's in some way helpful, but the crashing on selecting fighter or ranger has happened in multiple iterations, while I am reliably able to select mage. Logging is on, but there is no output to Baldur.err when this crash happens.

Any help regarding this is greatly appreciated.

[dabus]

That's not related to the BWS.
Did you install TobEx and did you try to (not) use it?

[Vaelina]

I only installed everything that came with BWS, nothing that wasn't installed by it. And I launched with TobExLoader as described in the instructions.

[dabus]

Ok, to be more precise, your error is not likely caused by the BWS-script (the GUI you see at the beginning.) The error should be somewhere later in the process.

Look for some errors in the BiG World Debug.txt. Open it with a good text-editor if you can (notepad will take a loooong while to open and to search).

Maybe read the other posts about tobex on this site, there is one about logging with tobex. If you can't find it, just make sure the tobexs ini-file contains a section [Debug] with enabled external logging. Trying some more debugging could help.
Also make sure that your baldur.ini contains a section [Program Options] with Logging On=1.

[Miloch]

When I start a new BG game, on the race selection screen, there are no names on the buttons for the various races, but it still lets me select them. On the class select screen, the buttons once again have names, but if I select certain classes, the game will crash.

Offhand, I'd say this is an issue with not having the TobEx "racetext.2da" component installed, or having it installed without having a (valid) racetext.2da in your override folder.