Amplitube UPDATE

Amplitude update 3.7.1 inhances CPU usage and  lowers RAM usage.  Try it out www.ikmultimedia.com

THANKS! IK needs to send out emails for these things or am I off the grid? Does anyone get emails for updates?

Yup! Save 30% in CPU usage and 35% in RAM usage with the new FREE update! More info on the IK Site: http://www.ikmultimedia.c./NewsDisplay.php?Id=3516

got it, thanks

I saw it on Facebook! No email, I never get an email from IK about updates either.

LANEY


I saw it on Facebook! No email, I never get an email from IK about updates either.

Where's OBI?
 
We need to be informed about these things.
 
TIA!

IK Obi


Yup! Save 30% in CPU usage and 35% in RAM usage with the new FREE update! More info on the IK Site: http://www.ikmultimedia.c./NewsDisplay.php?Id=3516

Does it still install mysterious files all over the shop?

http://forum.cakewalk.com/fb.ashx?m=2472729

Got it!

Thanx for the heads up!

20-40% better - as all updates should be.

Hey guys, we do send out emails, but we like to send out newsletters that have all the news, specials and announcements for the week in 1 email instead of 4-5 a week. :)

Yesterday we had the AmpliTube 3.7.1 update released, today we have DJ Rig up in the app store which we are excited about. Our new app totally blows away the competition in features, price and performance. Oh and our T-Racks Group Buy, Total Workstation 2 Bundle sale and a few other things down the pipeline too!

IK Obi


Hey guys, we do send out emails, but we like to send out newsletters that have all the news, specials and announcements for the week in 1 email instead of 4-5 a week. :)

Yesterday we had the AmpliTube 3.7.1 update released, today we have DJ Rig up in the app store which we are excited about. Our new app totally blows away the competition in features, price and performance. Oh and our T-Racks Group Buy, Total Workstation 2 Bundle sale and a few other things down the pipeline too!

So, does the 3.7.1 update still install mysterious files on my computer or not?

If it does can you de-mystify them?

 Thanks Laney, I'm on that like white on rice......

Jonbouy

IK Obi


Hey guys, we do send out emails, but we like to send out newsletters that have all the news, specials and announcements for the week in 1 email instead of 4-5 a week. :)

Yesterday we had the AmpliTube 3.7.1 update released, today we have DJ Rig up in the app store which we are excited about. Our new app totally blows away the competition in features, price and performance. Oh and our T-Racks Group Buy, Total Workstation 2 Bundle sale and a few other things down the pipeline too!

So, does the 3.7.1 update still install mysterious files on my computer or not?

If it does can you de-mystify them?

Not sure what your talking about with a mysterious file. IK only installs files needed for our software to work. It wouldn't be there if it wasn't needed. If you have more questions or want more info  please contact our support.

IK Obi

Jonbouy

IK Obi


Hey guys, we do send out emails, but we like to send out newsletters that have all the news, specials and announcements for the week in 1 email instead of 4-5 a week. :)

Yesterday we had the AmpliTube 3.7.1 update released, today we have DJ Rig up in the app store which we are excited about. Our new app totally blows away the competition in features, price and performance. Oh and our T-Racks Group Buy, Total Workstation 2 Bundle sale and a few other things down the pipeline too!

So, does the 3.7.1 update still install mysterious files on my computer or not?

If it does can you de-mystify them?

Not sure what your talking about with a mysterious file. IK only installs files needed for our software to work. It wouldn't be there if it wasn't needed. If you have more questions or want more info  please contact our support.

Well then let me clarify, I'm talking about the files indicated in this post.

http://forum.cakewalk.com/fb.ashx?m=2472729

If you are still unclear of the files I referred to in the same link in an earlier post in this thread and I've now repeated here for clarity, I'll go even further let me list them for you to save you the trouble of clicking the link.

Windows\msocreg32.dat
Windows\System32\msvcsv60.dll
Windows\System32\w3data.vss
ProgramData\autobk.inc
AppData\Roaming\msregsvv.dll

I don't care to contact your support department being as you are here for your own purpose of publicising the update maybe you can clarify what these files do.  Perhaps you should contact your support dept and report back.

I appreciate they wouldn't be there if they weren't needed which is why I'm curious as to what they are needed for.  Indeed I can see they are needed to such a degree as they will self-replicate if deleted all the while amplitude is installed.

I'm sure your customers here would appreciate the clarity, rather than me discussing it discreetly with your support department.  That way everyone will become aware of what they are for which I'm sure you'll agree will likely save you a few support requests down the line.

What I don't like is they seem to look like bona-fide system files by the names they have been given and the locations they are installed in but they are directly related to your product.

I certainly shan't be contacting the sales department or indeed support department of a product that displays a behaviour that even arouses su****ion as to what it is up to over and above the use I want to put it to. IOW for the reasons I'd purchased it.

As you can see given the file list here I'm sure you'd be alarmed if something distrubuted a similar cache of files on your system without you knowing good cause of what they were and why they were there.

Some people clearly don't mind that kind of thing, but I'm not one of them.  Of course if they are innocuous and serve a useful purpose then I shall look forward to your clarification.

These files are indeed related to IK software it seems. See this old thread, post no 3...

http://forum.cakewalk.com/tm.aspx?m=1584863

you're my hero Jonbouy

btw

Files that reproduce themselves after I have issued a delete command on my own personal computer are at the very least described as 'Malware'.

A file that is named as a .dll and clearly doesn't have the structure expected of a Microsoft style dynamic linked library is a 'Spoof'.

An application that prompts a user to execute because it has an appealing function in order to distribute such files on the host computer is usually described as a 'Trojan'.

I think my concerns here are legitimate, and I think Obi would be hard pushed here to convince me that he had trouble understanding what I  meant by 'mysterious files'.

I will be interesting to note what this stuff is all about especially as Rain's link points to a post from Christmas 2008.  Support would have been a good place to send me as it looks like they managed to circle jerk that guy around for a month without answers to something that is clearly policy with IK installs.

Update:

I just had to remove that list of files manually after running the Amplitube uninstaller as it even leaves them behind...

Obi can you kindly ask your support dept if I missed any, my computer seems to have been infected?

Please contact our support for more help. I don't have the same knowledge and they will be asking questions about your set up. Please PM me the ticket number so I can follow along and make sure you get an answer.

IK Obi


Please contact our support for more help. I don't have the same knowledge and they will be asking questions about your set up. Please PM me the ticket number so I can follow along and make sure you get an answer.

You don't get it.  (or do you?)

This isn't a setup problem, it's a problem with your installer.  Everyone here running your product will find those files distributed across their system.  Some people don't care about that kind of thing and your product will still likely appeal to them regardless, but it seems my own protection schemes vs yours are obviously not compatible.

I am not a customer of yours and I'm not likely to be given my experience of your installer and your lack of transperency as to what those files are about.  You will be aware of them as it is already been established they have been part of IK policy since at least 2008.

I therefore have no intention of being spun by your support department which also seems to have a record of not disclosing what the nature of these files are.  It's hard enough sometimes dealing with support departments to get information on products that I own.

I shall however be in contact with PGMusic's support department as your installer was supplied by them in the first instance and indicate my displeasure at having to roll back to a previous disk image to ensure that it is clear of the unwanted files introduced by your product as your uninstaller clearly failed to remove these 'necessary' files which obviously became 'unecessary' after I ran it.

There's one of two things occuring here, one is that I'm more aware of what the product does than the representive of the company that makes it, the second is that, perish the thought, the representative is not being straight.  Neither thing would inspire me to make a purchase from that company.

I'll be straight with you then. We have support in place for a reason and if your not willing to work with our support there isn't much we can do. We like to keep track of issues, questions and problems that arise to better our software.

I come to this forum specifically because of the good conversation, good company and love to answer questions when I can. I can't always answer everything and am trying to get you an answer, but I can only do so much. If you want an answer you need to contact our support, I'll even follow along and help you out with these 3 easy steps: 

Here is the link: http://www.ikmultimedia.com/support

Fill it out with your information.

Wait for us to get back to you. 

Optional: PM me the ticket number so I can follow the ticket along or even push it up the queue marking it urgent. I'm here to help, but I don't do everything at IK. 

To everyone else trying out the new update, how you liking 30% less CPU and 35% less RAM? Anybody tried to see how many AmpliTube's they can load in their DAW now?

I love the 30% less CPU I have loaded 6 amplitubes and they sound great! I may push it to the limit later and let you know what number maxes my system out!

Thanks IK!

I'll be straight with you then

When?

I don't have an issue that requires support I had a genuine pre-sales query as to why your installer distributes dodgy looking files on my computer.

So where is the straight answer to that question?

Are you trying to tell me you don't know the answer?

 I don't understand,a rep from IK comes here to tell everyone about an update. I appreciate that.
 I  think Obi did answer any concerns by referring you to someone who knows or maybe can help. You don't intend on buying the product so why are you concerned about it?

 Are you insinuating that the borg are trying to take over our computers?

Starise


 I don't understand,a rep from IK comes here to tell everyone about an update. I appreciate that.
I  think Obi did answer any concerns by referring you to someone who knows or maybe can help. You don't intend on buying the product so why are you concerned about it?

Are you insinuating that the borg are trying to take over our computers?

I appreciate that nobody likes somebody making a noise when they just want to get on with playing with their new toys.

But I think Obi has not answered any concerns at all.  He ignored my first request for knowledge pleaded ignorance the second time and has since passed the buck to his support department.

No matter my question has been answered by implication IK installs spyware/malware on my computer and the representative wants to be cagey about it rather than clarify.  It isn't an approach that attracts my business.

Do you know why your IK installer has installed that exact same stuff on your machine?  Do you even care?  I'm telling you it matters to me whether it matters to you or not. I actually know what those files contain and what their likely function is, why would I need a support department help me with that?

The point is it is underhanded practise I don't want any part of it.  It's part of the reason I'm on a Cakewalk forum rather than say a Steinberg one the clarity and openness is a big factor.

No it's not the borg that takes over, it's pudgy little business men constantly pushing the boundaries of acceptability.  Obi seems a nice guy and I'm sure he is but he's putting his name to some bad policy and defending it at the expense of good customer relations.  Shame.

But by all means carry on.  I shan't be going near it with a ten foot pole.

If it seems like I spoiled anyones fun I do apologize but remember it isn't me that's deploying malware over your machines.

Jonbouy

Well then let me clarify, I'm talking about the files indicated in this post.  

http://forum.cakewalk.com/fb.ashx?m=2472729

If you are still unclear of the files I referred to in the same link in an earlier post in this thread and I've now repeated here for clarity, I'll go even further let me list them for you to save you the trouble of clicking the link.

Windows\msocreg32.dat
Windows\System32\msvcsv60.dll
Windows\System32\w3data.vss
ProgramData\autobk.inc
AppData\Roaming\msregsvv.dll

 

FWIW, I only have the last 2 of these on my system (haven't installed the new update yet), but they look innocuous.

Mine are identical 48 byte hex files. A little sleuthing and a hex viewer reveals 3 lines of 16 bytes each. Mine looks like this (I've replaced the bytes I couldn't identify with "??", as they could contain information that would be better left unshared):

000000  ?? ?? ?? ?? ?? 00 00 00  8D 07 D2 4D DC EF 58 4F    ????......ÒMÜïXO
000010  ?? ?? ?? ?? ?? 00 00 00  8D 07 D2 4D DC EF 58 4F    ????......ÒMÜïXO
000020  ?? ?? ?? ?? ?? 00 00 00  48 93 56 4E DC EF 58 4F    ????....H“VNÜïXO

The remaining bytes are date stamps, 2 per line, in reverse order.

The "DC EF 58 4F" repeated at the end of each line, when reversed to "4F58EFDC", is the time A3 was last opened, expressed as the number of seconds since 1/1/1970. 

On mine, "8D 07 D2 4D" is (apparently) the time A3 was installed, again  expressed in the number of seconds since 1/1/1970 (when reversed).

And the "48 93 56 4E" looks like it might match the time at which I installed Amplitube Fender.


So I would regard these files as innocuous (despite some odd locations and naming conventions), and possibly copy protection related.


Extra credit to anyone who can tell me when I installed A3 and/or A Fender. 

Yes Drew you were wise to obfuscate a few characters there...

Yes I believe they are inncuous in themselves which is why I can't understand the cagey-ness of the filenaming style and the sharing of what the purpose of them is.

I mean I use protected software with licences, challenge/response methods, even a CodeMeter stick among other things.  I'm not anti-copy protection by any means, data mining is another matter however. 

So it's not that part that concerns me it's the lack of clarity when challenged turns into defensiveness that makes me smell a rat.

Mind you a quick search reveals that IK's protection methods aren't working so again it seems that it's the bona fide users are being subjected to these kinds of methods when the theiving seems to carry on regardless and genuine customers are made to jump through hoops.

Had I been told at the outset 'ah, those are to do with copy-protection, I can assure you that they are innocuous but I can't go into further detail' and I wouldn't have batted an eyelid and taken that on good faith, but trying to pretend that I'm some kind of knob that is imagining things didn't go down to well.

And actually Starise I was very, very interested in getting into this particular product, and I'll appreciate you not putting words in my mouth in future.

btw Drew you might find those missing files in the SysWow folder on a 64 bit system I initially did my appraisal on my 32 bit partition.

btw2 I'd tell you the dates but I can't be arsed to do the hex to decimal conversion to derive the date from...

Jonbouy

Had I been told at the outset 'ah, those are to do with copy-protection, I can assure you that they are innocuous but I can't go into further detail' and I wouldn't have batted an eyelid and taken that on good faith, but trying to pretend that I'm some kind of knob that is imagining things didn't go down to well.  

Sometimes the problem with these things is that the people capable of giving a simple answer are insulated from the customer support people. Often to get to the programmers you have to go through a few layers and they don't want programmers dealing with support issues that aren't really bugs, 'cause they have programming to do.

So a simple, ridiculously easy-to-answer (for the right people) question like this never gets answered.

And sometimes people think just giving a file a misleading name or storing it in odd location offers some kind of security benefit for some reason, even though it's a complete joke to any real hackers and crackers. 

drewfx1


And sometimes people think just giving a file a misleading name or storing it in odd location offers some kind of security benefit for some reason, even though it's a complete joke to any real hackers and crackers. 

Or indeed concientious discerning users that keep track of what stuff is doing to their system...

Hi guys

I downloaded the new version but have run in to a few problems :S

I Installed the update from Version 3.6 to 3.71 and now when I scan my plugins in Sonar I get the error VPA PlUGIN REJECTED HOST

If I then try and load the plug in I get a error saying it failed to load followed by the error that its not installed correctly

I decided to uninstall and start over but now when scaning my vst folders amplitube is not showing up even though I am scaning the folder with the .dll file in it.

Any idea what might be going on ?

Thanks in advance for all help

Norrie

drewfx1 said: And sometimes people think just giving a file a misleading name or storing it in odd location offers some kind of security benefit for some reason,

I say: And sometimes people just think it's amusing:

http://blogs.msdn.com/b/larryosterman/archive/2011/05/02/reason-number-9-999-999-why-you-don-t-ever-use-humorous-elements-in-a-shipping-product.aspx

Norrie


Hi guys

I downloaded the new version but have run in to a few problems :S

I Installed the update from Version 3.6 to 3.71 and now when I scan my plugins in Sonar I get the error VPA PlUGIN REJECTED HOST

If I then try and load the plug in I get a error saying it failed to load followed by the error that its not installed correctly

I decided to uninstall and start over but now when scaning my vst folders amplitube is not showing up even though I am scaning the folder with the .dll file in it.

Any idea what might be going on ?

Thanks in advance for all help

Norrie

Try uninstalling and re installing, if that doesn't work try our supportsupport that'll look into it further. 

Thanks for the reply :)

I have tryed that but with no luck now sonar wont even see the .dll when I scan the folder it is in

I have a ticket already #600833

Thanks again

Norrie

Norrie


Thanks for the reply :)

I have tryed that but with no luck now sonar wont even see the .dll when I scan the folder it is in

I have a ticket already #600833

Thanks again

Norrie

Did you install it with administrator privileges? Better yet, turn UAC off.

Hi Gustabo long time no see ! I have UAC turned off but good call with instaling with run as admin I will try tht first thing in the morning

IK Obi

Try uninstalling and re installing, if that doesn't work try our supportsupport that'll look into it further. 

I feel better now realising I was talking to an automated message all along.

Jonbouy

IK Obi

Try uninstalling and re installing, if that doesn't work try our supportsupport that'll look into it further. 

I feel better now realising I was talking to an automated message all along.

What you've been saying has been bugging me all day, so I did a lil digging and talked to some of my IK peeps. 


AmpliTube 3 is a standalone application as well as a plugin, and as a standalone audio application, it needs many of the same DLLs a DAW does, for both 32 and 64 bit. These are DLLs from Microsoft and Intel, and from Apple to support the QT framework. These are not present on a clean Windows installation, so our installer installs them. If you have DAW software, then most or all will already be present.

The cookies that are written are by the Authorization Manager, not the plugin, and are stored in the AmpliTube folder, not your cookies folder, and are accessible only to the Authorization Manager. These store your Authorization Manager settings.

There also seems to be a fundamental lack of understanding of what a global hook is here. ..

It is a way to reliably receive keyboard and mouse events without having to rely on the DAW, because many of them don't send the messages we need, or are buggy. Remember all those requests for mousewheel support? The global hook is what makes that possible and universally reliable.

Help, User Account, and Custom Shop use an internet connection, and do not open in a browser. They have their own SECURE applications they communicate directly with IK servers through via https. This is to enable the Custom Shop to be ultra secure, so a user does not even need to open a browser and go on to the WWW to use the Custom Shop.

All of these "invasive" things AmpliTube does are to either make realtime audio work on Windows, or to make transactions through the Custom Shop secure for our users. 

Now really, the fact that I kept referring you to support wasn't a ploy to "pass the buck" because you already said you weren't a customer. So support for you would leave us in the red for the support. I meant it to sincerely get you an answer. I hope this proves that. If not, meh. Can't win em all.

Thank you.

See, because of my diligence you may have learned something more about the product you are promoting.

Although the explanation still doesn't quite cover the reasons for those particular 5 files, the naming conventions used and their locations or whether they gather my usage information for the benefit of IK Multimedia.  Note particularly the two dll files included in that list are not actually dlls other than in name and they all occupy normally system reserved locations.

I do appreciate you taking the time to formulate a considered reply although I am disappointed what started out as a simple and reasonable request for information and clarification had to end up with a 'meh' from you.

It's nothing personal and I appreciate that IK has to employ a policy to protect it's interests unfortunately in this case it isn't in-line with the policy I employ to ensure security on my own personal system.  I hope you can understand that and there are no hard feelings.

Update installed here. A breeze, as usual. And the CPU usage reduction is much welcome, especially since Amplitube is usually my main guy for tracking. 

Uninstalled then ran as admin and all has worked :)

Thanks to all

Norrie

IK Obi

AmpliTube 3 is a standalone application as well as a plugin, and as a standalone audio application, it needs many of the same DLLs a DAW does, for both 32 and 64 bit. These are DLLs from Microsoft and Intel, and from Apple to support the QT framework. These are not present on a clean Windows installation, so our installer installs them. If you have DAW software, then most or all will already be present.  

 

Just to clarify here Obi, it is that my understanding is that the files in question are not DLL's (or whatever else their extension implies). Instead they are some sort of data file used by Amplitube.

Also, though I didn't have the "Windows\System32\msvcsv60.dll" file listed earlier on my particular system here, according to some stuff I read after searching, it is both not a .dll and it also needs write permission set (a BIG no-no for something stored in Windows\System32\). Also, the "ms" at the front of the filename imply it's a Microsoft file, even though it's not.

This makes it all look very much like malware. And if you Google any of the files JonBouy listed, you will find lots of malware-related hits that show this. And this gives people, like JonBouy, who discover these files on their machine a great degree of concern that they have been infected with something.

It may be that you guys had what seemed a reasonable reason for trying to "hide" these files, but it's one of those things where the people involved might not have considered that it makes an otherwise wonderful product look like malware.

Seems like amplitube 3 now uses about 3% of my system on my i3 core. 
So in theory I should be able to have over 30 instances at once but I have never found that to be needed at this point in time.

Thanks again it is a very welcome update IK! 

Also, though I didn't have the "Windows\System32\msvcsv60.dll" file listed earlier on my particular system here

Drew, just to clarify, as I mentioned earlier these are likely in the SysWOW64 folder on a 64 bit system rather than the System32 folder as on my 32 bit OS partition.

It is a shame because I was very impressed with the free version that came bundled, along with some cool presets, with my BIAB update sounds great even within the limitations of that version, and was seriously considering the full version to completely cover the limited needs I have of an amp sim.

Norrie


Uninstalled then ran as admin and all has worked :)

Thanks to all

Norrie

Your welcome, glad you got it working.

IK Obi

Jonbouy

IK Obi

Try uninstalling and re installing, if that doesn't work try our supportsupport that'll look into it further. 

I feel better now realising I was talking to an automated message all along.

What you've been saying has been bugging me all day, so I did a lil digging and talked to some of my IK peeps. 


AmpliTube 3 is a standalone application as well as a plugin, and as a standalone audio application, it needs many of the same DLLs a DAW does, for both 32 and 64 bit. These are DLLs from Microsoft and Intel, and from Apple to support the QT framework. These are not present on a clean Windows installation, so our installer installs them. If you have DAW software, then most or all will already be present.

The cookies that are written are by the Authorization Manager, not the plugin, and are stored in the AmpliTube folder, not your cookies folder, and are accessible only to the Authorization Manager. These store your Authorization Manager settings.

There also seems to be a fundamental lack of understanding of what a global hook is here. ..

It is a way to reliably receive keyboard and mouse events without having to rely on the DAW, because many of them don't send the messages we need, or are buggy. Remember all those requests for mousewheel support? The global hook is what makes that possible and universally reliable.

Help, User Account, and Custom Shop use an internet connection, and do not open in a browser. They have their own SECURE applications they communicate directly with IK servers through via https. This is to enable the Custom Shop to be ultra secure, so a user does not even need to open a browser and go on to the WWW to use the Custom Shop.

All of these "invasive" things AmpliTube does are to either make realtime audio work on Windows, or to make transactions through the Custom Shop secure for our users. 

Now really, the fact that I kept referring you to support wasn't a ploy to "pass the buck" because you already said you weren't a customer. So support for you would leave us in the red for the support. I meant it to sincerely get you an answer. I hope this proves that. If not, meh. Can't win em all.

Actually on reading this again it doesn't prove anything other than you still don't want to identify the existence of the specific files mentioned let alone clarify their purpose.

It mentions the secure measures you take to facilitate financial transactions for the benefit of IK Multimedia but nothing about the security of the user with regard to information gained from IK Multimedia from that particular user or what purpose IK Multimedia use any information gained for.

I'll emphasise again the files specifically mentioned by me are excluded from any description you have given here.

This either indicates you actually still don't know what they are for or you are being purposefully evasive.  Simple as that.  Either scenario rings too many alarm bells with me to be able to trust IK Multimedia to be a firm that I'd be prepared to do ANY business with.

Maybe if you are out of your depth here, and to be fair I don't know what your role is with the company, then it might be an idea to invite somebody in a position to speak with some relevant knowledge to clarify these points to remove any doubts that potential users may be having about your companies products in the light of this discussion.

Maybe your company has no wish to re-assure it's customers in this regard, plenty don't these days knowing that many people will part with their money, financial details and usage habits regardless.

At this point, if you really want more information from the developers, fill out a support ticket. http://www.ikmultimedia.com/support

IK Obi


At this point, if you really want more information from the developers, fill out a support ticket. http://www.ikmultimedia.com/support

Like I said I don't wish to contact support I know the nature of those files and what they contain and I now know you are reluctant to discuss them openly.  That's all I needed to find out.

Your customers can ask for more information if they are interested, I'm long past it being a concern for me I cleaned my system of it and won't be putting anything further from IK on my machine, simply because of the fact that my initially simple request for information has met with so much visible resistance from yourself to be drawn on the subject of those specific few files.

Other readers can draw their own conclusions given these facts.

1/ These specific files are disguised with system like names and extensions.

2/ They are stored in locations which could render a system vunerable by needing write access in system folders.

3/ They are nothing to do with the authorization manager at all as previously implied by the representative here.  They are there if it is installed or not.

4/ They are not limited to this particular product, indeed at least Sampletank will create them so they are part of a scheme that IK employs, whatever that scheme's intent is does remain unclear.

5/ The files will re-appear if deleted by the user even if that user is the system administrator. (Malware)

6/ They are in fact data files which have no bearing on the actual working functionality of the product other than it will dig it's heels in if the product isn't given read/write access to them.

7/ The IK representative here is clearly touchy about the subject and unwilling to clarify their existence any further let alone their function.

8/ The IK uninstaller does not remove them although provided you no longer have any IK products installed you can subsequently remove them manually without them re-appearing.

Here is the list of those specific files again.

Windows\msocreg32.dat
Windows\System32(SysWOW64 on a 64 bit OS)\msvcsv60.dll
Windows\System32(SysWOW64 on a 64 bit OS)\w3data.vss
ProgramData\autobk.inc
AppData\Roaming\msregsvv.dll

Two of these files are named with a .dll extension which is normally given to a dynamic linked library.  They are not .dll's in any recognized form they are data files.

One has an .inc extension which is normally used as an 'include' extension for higher level language code intended to be compiled into machine code.

.vss is a Microsoft reserved extension used for the system virtual shadow service.

.dat is an acceptable extension for a data file which is what all these are but note that the msocreg32 file name is intended to look like a bona fide OS file which it is not.

Now all this stuff may be innocuous and part of a naive copy protection scheme but either unawareness or reluctance shown here by the company representative leading any anything but a clear explanation leads me to think...

...If it looks like a duck, talks like a duck, then it probably is..............

btw if anyone does want to take it up with IK support feel free to link to this post if they need any clarification.

Candid openess.  Now there's what I call real customer support.

LANEY


Seems like amplitube 3 now uses about 3% of my system on my i3 core. 
So in theory I should be able to have over 30 instances at once but I have never found that to be needed at this point in time.

Thanks again it is a very welcome update IK! 

Anytime! Now you can rock with more! :D

Rain


Update installed here. A breeze, as usual. And the CPU usage reduction is much welcome, especially since Amplitube is usually my main guy for tracking. 

Yeah, we were really excited about this update too! 

Jonbouy

IK Obi


At this point, if you really want more information from the developers, fill out a support ticket. http://www.ikmultimedia.com/support

Like I said I don't wish to contact support I know the nature of those files and what they contain and I now know you are reluctant to discuss them openly.  That's all I needed to find out.

Your customers can ask for more information if they are interested, I'm long past it being a concern for me I cleaned my system of it and won't be putting anything further from IK on my machine, simply because of the fact that my initially simple request for information has met with so much visible resistance from yourself to be drawn on the subject of those specific few files.

Other readers can draw their own conclusions given these facts.

1/ These specific files are disguised with system like names and extensions.

2/ They are stored in locations which could render a system vunerable by needing write access in system folders.

3/ They are nothing to do with the authorization manager at all as previously implied by the representative here.  They are there if it is installed or not.

4/ They are not limited to this particular product, indeed at least Sampletank will create them so they are part of a scheme that IK employs, whatever that scheme's intent is does remain unclear.

5/ The files will re-appear if deleted by the user even if that user is the system administrator. (Malware)

6/ They are in fact data files which have no bearing on the actual working functionality of the product other than it will dig it's heels in if the product isn't given read/write access to them.

7/ The IK representative here is clearly touchy about the subject and unwilling to clarify their existence any further let alone their function.

8/ The IK uninstaller does not remove them although provided you no longer have any IK products installed you can subsequently remove them manually without them re-appearing.

Here is the list of those specific files again.

Windows\msocreg32.dat
Windows\System32(SysWOW64 on a 64 bit OS)\msvcsv60.dll
Windows\System32(SysWOW64 on a 64 bit OS)\w3data.vss
ProgramData\autobk.inc
AppData\Roaming\msregsvv.dll

Two of these files are named with a .dll extension which is normally given to a dynamic linked library.  They are not .dll's in any recognized form they are data files.

One has an .inc extension which is normally used as an 'include' extension for higher level language code intended to be compiled into machine code.

.vss is a Microsoft reserved extension used for the system virtual shadow service.

.dat is an acceptable extension for a data file which is what all these are but note that the msocreg32 file name is intended to look like a bona fide OS file which it is not.

Now all this stuff may be innocuous and part of a naive copy protection scheme but either unawareness or reluctance shown here by the company representative leading any anything but a clear explanation leads me to think...

...If it looks like a duck, talks like a duck, then it probably is..............

btw if anyone does want to take it up with IK support feel free to link to this post if they need any clarification.

Candid openess.  Now there's what I call real customer support.

Done. Ticket #947694 has been opened for me.

 Installed and running smoothly!

Wow, very interesting... As IK Obi's manager, I had to clarify that he is not being evasive - he has simply, effectively, and properly pointed Jonbouy directly to content matter experts who can give the answers to specific technical questions (probably even above what a regular support rep would see during any given day) as well as relayed that support can even escalate further if they need to. This is sufficient in my eyes. I see bapu has taken advantage of IK Obi's advice, and I've asked IK Obi to follow this ticket with support as well. Sorry for the interruption, I hope those that visit the thread for information about the update are excited about it and make some great music.

IK_Multimedia


Wow, very interesting... As IK Obi's manager, I had to clarify that he is not being evasive - he has simply, effectively, and properly pointed Jonbouy directly to content matter experts who can give the answers to specific technical questions (probably even above what a regular support rep would see during any given day) as well as relayed that support can even escalate further if they need to. This is sufficient in my eyes. I see bapu has taken advantage of IK Obi's advice, and I've asked IK Obi to follow this ticket with support as well. Sorry for the interruption, I hope those that visit the thread for information about the update are excited about it and make some great music.

WOW even more interesting... you'll note that being evasive was only one of the options I gave for his reluctance to answer the question I posed directly.

I just casually stumbled across the particular files as I was monitoring what was being installed by your installer and being as then I was interested in the product I wondered what their purpose was.  You'll notice that Drew and myself have already correctly identified what they are I'm surprised that you are not aware or willing to clarify their purpose either.

You may be doing things correctly within your companies policy but I still don't see much of a customer facing attitude here, more like I'm at fault for monitoring what goes on with my system and having the cheek to ask what gives.

I too hope that people monitoring this thread for information about your product get some soon.  Not least of those being myself.

I was very specific as to the particular files in question and both you and Obi could have at least confirmed their existence by checking the locations yourselves.  I note with interest that neither of you have chosen that course.

I'm almost getting the impression at this point that you'd wish I'd just go away. Where in my old fashioned way to me a more appropriate response would have emerged by now which went along the lines of "Yes sir you are right, I see those files too I am not aware of their nature myself but I will check what they are about and report back".

All I did was discover these files your installer distributed, looked a little closer at their nature and asked for clarity.  If anyone has handled this badly it isn't me and one of the main reasons I've declined the offer to visit your support department is so that your customers existing or prospective can clearly see how you deal with such an enquiry.

To some that may matter.

btw Obi's manager person you wanna watch him, he may tell you he's over here working but he tells me this.  He's pulling a flanker on one of us the little scamp...

IK Obi

I come to this forum specifically because of the good conversation, good company and love to answer questions when I can.

Yes we apologize, it is all a conspiracy and we also admit to shooting JFK from the grassy knoll. Otherwise, we also apologize for trying to get you directly to technical personnel who can communicate with you in a one-on-one and two-way manner of direct discussion to refine and clarify instead of embarking upon a completely inefficient middleman approach for the information. Hopefully bapu gets some good information in discussions with Tech Support and of course we see that ticket # and will know that if the discussion is not satisfactory we can then make sure the Support Manager is made aware. Of course, this manner of possibly giving information to the person best suited to provide a resolution and information is likely frowned upon based on previous posts I see here so we could provide back-and-forth middle-man communication if that is preferred at that time.

Jonbouy

If anyone has handled this badly it isn't me and one of the main reasons I've declined the offer to visit your support department is so that your customers existing or prospective can clearly see how you deal with such an enquiry. 

Sorry, Jonbouy, but count me as one (of a likely growing number) that feel that this whole exchange only makes you bad.  It's not that your questions are bad or inappropriate.  I think the questions are fine.  It's the way you've gone about it, the condescending attitude ("look IK...maybe you've learned something"...give me a break), and the sheer refusal to simply at least attempt to contact their support to get answers to what are highly technical questions that our usual IK rep (who lives half a world away from the coders) would handle.  

You seemed to have entered the thread with a "IK is bad" mindset and are only interesting in looking at evidence or making conclusions that support that idea.  So far, I think IK have handled it professionally.  As long as they make sure the support ticket raised gets to the right people (who will then answer the question), then I think they will have done everything that is reasonable to answer your questions (which are in reality thinly veiled accusations).  

Quite frankly, if you know what they do, then maybe start another thread and let others know.  I fail to see how your cryptic back and forth in this thread warns people if indeed these are malicious files.  Just say what they do instead of going through the pointless back and forth.  For all we know, you may be right....but we can't even attempt to confirm if you're right with all of the veiled language.

Of course, this manner of possibly giving information to the person best suited to provide a resolution and information is likely frowned upon based on previous posts I see here so we could provide back-and-forth middle-man communication if that is preferred at that time.

It is for the various reasons I've made clear from the outset.

I haven't needed support not being the least.

And just to emphasise how unreasonable I've been have a look at my first post in this thread.

and again for anybodies information that is interested, as I'm well past caring.

Other readers can draw their own conclusions given these facts.

1/ These specific files are disguised with system like names and extensions.

2/ They are stored in locations which could render a system vunerable by needing write access in system folders.

3/ They are nothing to do with the authorization manager at all as previously implied by the representative here.  They are there if it is installed or not.

4/ They are not limited to this particular product, indeed at least Sampletank will create them so they are part of a scheme that IK employs, whatever that scheme's intent is does remain unclear.

5/ The files will re-appear if deleted by the user even if that user is the system administrator. (Malware)

6/ They are in fact data files which have no bearing on the actual working functionality of the product other than it will dig it's heels in if the product isn't given read/write access to them.

7/ The IK representative here is clearly touchy about the subject and unwilling to clarify their existence any further let alone their function.

8/ The IK uninstaller does not remove them although provided you no longer have any IK products installed you can subsequently remove them manually without them re-appearing.

Here is the list of those specific files again.

Windows\msocreg32.dat
Windows\System32(SysWOW64 on a 64 bit OS)\msvcsv60.dll
Windows\System32(SysWOW64 on a 64 bit OS)\w3data.vss
ProgramData\autobk.inc
AppData\Roaming\msregsvv.dll

Two of these files are named with a .dll extension which is normally given to a dynamic linked library.  They are not .dll's in any recognized form they are data files.

One has an .inc extension which is normally used as an 'include' extension for higher level language code intended to be compiled into machine code.

.vss is a Microsoft reserved extension used for the system virtual shadow service.

.dat is an acceptable extension for a data file which is what all these are but note that the msocreg32 file name is intended to look like a bona fide OS file which it is not.

Now all this stuff may be innocuous and part of a naive copy protection scheme but either unawareness or reluctance shown here by the company representative leading any anything but a clear explanation leads me to think...

...If it looks like a duck, talks like a duck, then it probably is..............

Frankly you can all discuss among yourselves whether I am right or wrong about any of the above, you can even confirm it on your own machines, but I've seen enough I'm out!

I'm sorry if any of that seems in veiled or cryptic language to you Smokey but it's as clear as I can make it.

Oh hello! Sorry it has taken me so long to respond, I'm on vacation in Austin, Texas for SXSW. Thanks for your patience here. 

After checking with my Dev team here, I can confirm that all of the mentioned files are part of the IK Multimedia authorization system and they are needed to use AmpliTube and other IK products. They are all safe and if checked, are not marked as malware by any anti-virus.

The names and locations refer to old files being in use way back to Windows 2000 and they are not removed by the AmpliTube installer because they are used also by older products.

Calling any of these files malware or spyware is incorrect, as:

- They don't store user specific data

- They don't transmit data to our server in any way

- Once all IK software has been uninstalled they can be removed and will not reappear

For more information on IK Multimedia's Privacy Policy, please refer to the following link: http://www.ikmultimedia.com/LegalPrivacy.html

Thanks Obi.

Yeah I got wind of those exact words about it yesterday.  I wasn't on vacation though it just took somebody that long and with a little bit of prodding to give that reply.

It's good to know and is a simple answer to the originally simple question.

So now we know they are safe, don't mine private data and can safely be ignored.

The definition of malware is just semantics, as I'll reserve the right to consider what is malware and what isn't on my system, and it may be worth pointing out that when users are giving Administrative write permissions to these specific files to make sure they don't allow the same access to the entire system folders they are in.

Thank you.