WXforum.net
Weather Station Hardware => Davis Instruments Weather Stations => Topic started by: droiddk on March 03, 2018, 04:52:53 PM
-
Antivirus, yes or no?
Do you believe in conspiracy theories?
Regards
-
https://www.davisnet.com/support/vantage-pro2-wireless-console-firmware-direct-pc-install-3-80/
Regards
Getting a Virus flagged when downloading this update, anybody else?
-
https://www.davisnet.com/support/vantage-pro2-wireless-console-firmware-direct-pc-install-3-80/
Regards
Getting a Virus flagged when downloading this update, anybody else?
All good here.
-
Running W7 X64. Microsoft Security Essentials also flagged my download. I flagged it under History to ignore it. I'm running the update now.
-
All three 3.80 updates are showing a Trojan:Win32/Azden virus, there is no other Davis update prior to this 3.80 version that is being flagged, be careful ignoring MSE as it is very rarely ever wrong. Actually have never seen it wrong.
-
The executable runs the Davis firmware updater. it finds my console, updates it (5-10 minutes) and reboots the console. I had to power cycle the console as per a message at the end of the update. Everything is back to normal and updating my weather site via WD.
-
My system shows infection.
-
sometimes the virus checkers are the virus (i,e with false positives)
-
sometimes the virus checkers are the virus (i,e with false positives)
However there are no other download files from the same source which are being flagged as these three new 3.80 files are.
-
Thank
-
it will be a false positive, it happens a lot with these virus checkers
one change in code, a new compile, and bang its comes up as false positive
trust me, I know from experience
-
Or it could load ransomware. Seriously - doesn't anyone check these things?? I ran it through several scanners and it came up RED.
-
I'm not seeing anything with it. Used both virus scan and malware and nothing.
[ You are not allowed to view attachments ]
[ You are not allowed to view attachments ]
-
Perhaps we need to reach out to Davis.
After I ran the update, I noticed that a new service had been installed called something like Google Chrome Remote Desktop, and a new active task called something like Microsoft Printer Driver. The install date/time was the same as the firmware program executed time. I use WinPatrol so it was easy to delete both items before they ran - which would have been at next boot.
-
That's not good. Google Chrome Remote is similar to Team Viewer allows outside access to computer and if you didn't want it installed something is going on and it's not good.
-
Kaspersky? LOL
-
Scanned with McAfee and Sophos Home, no issues found.
-
Nothing detected with webroot either.
-
I cant tell you all how many times Ive built my own software that does nothing malicous to have it detected by a virus scanner as a false positive. A lot of software also use components that COULD be used in a malicous manner by someone else, but isnt by the software in question, and is detected by AV just because its there.
I highly doubt any of you have something to be worried about -- highly likely its a false positive.
-
I just downloaded and scanned VP2_Wireless_3_80.exe with Avast Free...no issues were found.
Now, my question is...it looks like the coders have tweaked the heat index table to work better for high heat and high humidity areas (sounds like my area!). Being as I'm currently running v3.12 I guess a move up to v3.80 wouldn't be a bad move...????
-
Kaspersky? LOL
What's so funny? Is it because you have a system that gives false positives? LOL
-
Can anyone tell what "Restored "Receiving From" from initial boot screen for easier setup configuration." covers? Guess its related to how long time "Receiving From Screen" will be on before switching to "normal use". But how long time? Hopefully very short time, always hated that feature.
Regards
-
Kaspersky? LOL
What's so funny? Is it because you have a system that gives false positives? LOL
Clearly you have not followed the issues with Russian antivirus software. It is funny/not funny. There is a reason why lots of governments have banned its use.
-
Kaspersky? LOL
What's so funny? Is it because you have a system that gives false positives? LOL
Clearly you have not followed the issues with Russian antivirus software. It is funny/not funny. There is a reason why lots of governments have banned its use.
I've followed it somewhat. Who I don't trust is any article by Bloomberg. Any of these countries including USA could be spying with software so who do you trust? Romanian, China, Czech Republic, Slovakian, Dutch, Brits, Israel etc. They all are involved in AV.
I think because of the negative scrutiny put on Kaspersky which they denied may make it the safest.
-
https://www.dhs.gov/news/2017/09/13/dhs-statement-issuance-binding-operational-directive-17-01 Frankly, the only people who REALLY scare me is Mossad. I deal with lots of "interesting" people in my work, but these guys scare the crap out of me. Google Operation "Wrath of God also known as Operation "Bayonet" as an example.
-
Hi Guys
Please stick to topic.
Regards
-
I use Kaspersky Internet security on my iMac. I had Bitdefender but it used up a lot of resources in my opinion. Both were good. Even with MacsOSX you need security even if you are sending data to a website, smart practice.
I have run complete scans of my computer and had no problems with any software so far. I run a dual platform using Parallels, for those programs that suck on a mac.
No problems and I don't care what the DOJ says about Kaspersky. By the way, it is an interesting read about this guy.
-
Actually I don't blame the Feds for not using a Russian product but it's all based on fear of the unknown. Someone spread the alleged false rumor they had close ties with the Kremlin. If anyone's been following our FISA court we know what that's all about. Unfortunately I think a lot of politics are involved in this.
-
No problems and I don't care what the DOJ says about Kaspersky.
Exactly its hog wash...
[ You are not allowed to view attachments ]
-
Wonder when/if DAVIS™ might have update for the VUE Console?
-
Wonder when/if DAVIS™ might have update for the VUE Console?
Unfortunately you are on the wrong thread. We are speaking about anti-virus software here UU
-
Wonder when/if DAVIS™ might have update for the VUE Console?
Unfortunately you are on the wrong thread. We are speaking about anti-virus software here UU
Well some are but it really has gone into rubbish that has absolutely nothing to do with the topic.
-
Happens all the time with threads.
Start out talking about one thing and end up with something completely different.
-
I was able to update my usb Envoy, but not the one with the weatherlink IP logger.
I tried the IP address and of course it wouldn't connect. Now this update works on a PC, so I was able to use my Parallels and Win 10.
I have about half a brain to remove the loggers from the Console and IP logger (both are IP loggers) attach the USB logger . I wonder if that is a good idea or not
-
Wonder when/if DAVIS™ might have update for the VUE Console?
Unfortunately you are on the wrong thread. We are speaking about anti-virus software here UU
Well some are but it really has gone into rubbish that has absolutely nothing to do with the topic.
Did I tell ya'll about the rabbit I saw the other day? It was really cool...
-
https://www.davisnet.com/support/vantage-pro2-wireless-console-firmware-direct-pc-install-3-80/
Regards
Thanks for the (original) post informing of the new firmware.
What means this, exactly?
Minor improvements to allow use of new (or alternate)Temp/Hum and Barometer.
Is the Temp/Hum internal (inside) for new consoles? Same for Baro?
I'll probably install it regardless, but I was just curious.
Greg H.
-
Wonder when/if DAVIS™ might have update for the VUE Console?
Unfortunately you are on the wrong thread. We are speaking about anti-virus software here UU
Well some are but it really has gone into rubbish that has absolutely nothing to do with the topic.
It was you and Bushman that first posted it was being flagged as a virus/malware and Bushman laughing at what AV people were using that turned the topic.
-
Actually I don't blame the Feds for not using a Russian product but it's all based on fear of the unknown. Someone spread the alleged false rumor they had close ties with the Kremlin. If anyone's been following our FISA court we know what that's all about. Unfortunately I think a lot of politics are involved in this.
Off topic, but I worked for the public school system, now that is terrifying
-
Wow...no one's interested in the rabbit. :-k
-
Wow...no one's interested in the rabbit. :-k
Only if the rabbit "died."
-
They didn't happen to add the one update I would care about ability to display altimeter did they? It would be nice to be able to ditch the Vue console hooked to data logger because it displays and sends correct altimeter to website. Something the Vp2 console can't do.
-
They didn't happen to add the one update I would care about ability to display altimeter did they? It would be nice to be able to ditch the Vue console hooked to data logger because it displays and sends correct altimeter to website. Something the Vp2 console can't do.
...which is how my VP2 system is now configured...and...why I wondered if DAVIS™ might've also had a concurrent update for the VUE console.
-
The only download files being flagged with a virus is the three (3) most recent FW3.80 versions released February 21, 2018, none of the other downloads prior to this show any issues. The infection being flagged is Trojan:Win32/Azden.A!cl and several variants and limited specifically to the 3 Feb 21 released updates.
This is being flagged with Win7 & Win8.1 running MSE or WD
-
Wow...no one's interested in the rabbit. :-k
Only if the rabbit "died."
They've about all died.
-
@ Mattk
the virus checker are sensitive
one small change in the code can trigger a false positive
the prior version might have been very close to triggering a false positive...just 1 code change could have made it trigger it
-
Companies should check their stuff before they put it out into the wild. Just sayin'
-
Nice edit, droiddk! :lol:
-
Sooooo, is there consensus on the file status? Has Davis been contacted and/or responded?
-
Malwarebytes and Windows defender both report the VP2_Wireless_3_80.exe file as being clean.
Greg H.
-
Now THIS is interesting... I DL'ed it into a "containment area" since the last time it was kicked out with virus warnings, and now - POOF! _ no problems going past my virus scanners and malware controls. But uploading the
virus file to a scan engine shows mostly clean, except for some obscure scanners. https://www.virustotal.com/#/file/0015e3d3e0833a3c4f76b180f77b81dc4b3f61748cd65720dabd9b736c83445c/detection
I think Davis changed the file but am too lazy to check hashes etc.
-
Sooooo, is there consensus on the file status? Has Davis been contacted and/or responded?
Contacted Yes, responded No
-
Well appears those "clean files" have been pulled ;)
-
Well appears those "clean files" have been pulled ;)
Coincidence? I think not!! ;)