- This topic is empty.
-
AuthorPosts
-
-
November 24, 2020 at 11:40 pm #116216MarcelParticipantHi,I try to run H9 Series Bundle Installer (Win 64-bit) but my Kaspersky Internet Security won’t let me, it removes the entire installer from my system. I add the report.Kaspersky sees trojans in the installer of this type: Backdoor.Win32.Agent.Any clues? I def trust Eventide, this is weird.
-
November 25, 2020 at 3:04 am #156397MarcelParticipant
I managed to install plugins via the individual installers. This was successful exept for: Crystals, Undulator, Rotary Mod and Spring. These 4 installers appear to contain trojans of the type I mentioned earlier. Kaspersky doesn’t allow the installation because of that.
-
November 25, 2020 at 11:34 am #156401joeydegoParticipant
Can’t you just disable the AV for the installation?
-
November 25, 2020 at 3:08 pm #156419MarcelParticipant
I could do that, but I don’t want trojans in my system. Can’t Eventide clean the installers?
-
November 25, 2020 at 3:46 pm #156422MarcelParticipant
Are you an Eventide staff member?
-
November 25, 2020 at 4:33 pm #156423
We believe this to be a false positive. I am investigating now.
-
November 25, 2020 at 6:14 pm #156434
Ok, Kaspersky is flagging these installers (64-bit versions only) because it believes the .aaxplugin files are malware. They are not malware, and there is no Backdoor.Win32.Agent trojan in the binary.
We are submitting these to Kaspersky for whitelisting, although their web portal appears to be having problems at the moment.
-
November 25, 2020 at 8:24 pm #156445joeydegoParticipant
Yay I can put my salt, pepper and ketchup away!
-
November 26, 2020 at 2:13 am #156452MarcelParticipantStill had problems after installing the 4 mentioned plugins with Kaspersky disabled during installation.Vst3 of Undulator and Rotary Mod gave alarming messages and Vst2 of Spring (and perhaps Crystals not sure about this) also.In the end I installed Spring and Crystals with only vst3 (plus docs) checkboxed and Undulator and R-mod with only vst2 (plus docs) checkboxed.Everything works now……Not only the aax are flagged as trojans by Kaspersky.
-
November 30, 2020 at 4:42 pm #156485
To follow up, I've been in touch with Kaspersky, and they've verified that the installers are false positives. It should be fixed in their next update.
I'll mention that they're also flagging other files inside of the installers. Interestingly, those VST files passed when I tried validating them on Kaspersky's online portal.
-
November 25, 2020 at 3:17 pm #156421joeydegoParticipantMarcel wrote:
I could do that, but I don’t want trojans in my system. Can’t Eventide clean the installers?
There are no viruses in the installers. It is called a false positive. Not uncommon. Simply disable your AV and install. I promise it’s fine.
-
November 25, 2020 at 4:35 pm #156424MarcelParticipanttlongabaugh wrote:
We believe this to be a false positive. I am investigating now.
ok, thanks.
-
November 25, 2020 at 4:38 pm #156426joeydegoParticipantMarcel wrote:
Are you an Eventide staff member?
No. Installed yesterday and it passed AV here. No unusual activity, everything auto updates and scan after this post passed as well.
-
November 25, 2020 at 4:52 pm #156427MarcelParticipantjoeydego wrote:Marcel wrote:
Are you an Eventide staff member?
No. Installed yesterday and it passed AV here. No unusual activity, everything auto updates and scan after this post passed as well.
Ok. Still weird that Kaspersky Internet Security detects trojans. You probably have a different AV program. I add that a virus is not the same thing as a trojan, so an AV program might not detect these trojans. I await Eventide’s investigation of it.
-
November 25, 2020 at 4:59 pm #156429joeydegoParticipantMarcel wrote:joeydego wrote:Marcel wrote:
Are you an Eventide staff member?
No. Installed yesterday and it passed AV here. No unusual activity, everything auto updates and scan after this post passed as well.
Ok. Still weird that Kaspersky Internet Security detects trojans. You probably have a different AV program. I add that a virus is not the same thing as a trojan, so an AV program might not detect these trojans. I await Eventide’s investigation of it.
I understand and that’s cool. If this is actually a Trojan I will print and eat this post. FWIW I’m just using Windows defender.
-
November 25, 2020 at 9:21 pm #156447MarcelParticipanttlongabaugh wrote:
Ok, Kaspersky is flagging these installers (64-bit versions only) because it believes the .aaxplugin files are malware. They are not malware, and there is no Backdoor.Win32.Agent trojan in the binary.
We are submitting these to Kaspersky for whitelisting, although their web portal appears to be having problems at the moment.
Thanks for investigating it! I will install them while temporarily disabling my internet connection and Kaspersky.
-
November 25, 2020 at 9:23 pm #156448MarcelParticipantjoeydego wrote:Yay I can put my salt, pepper and ketchup away!
Ha, ha, ha, indeed, no need for that now 🙂
-
November 25, 2020 at 9:32 pm #156449Marcel wrote:
Thanks for investigating it! I will install them while temporarily disabling my internet connection and Kaspersky.
No problem, thanks for bringing it to our attention.
-
November 26, 2020 at 12:17 pm #156457joeydegoParticipantMarcel wrote:Still had problems after installing the 4 mentioned plugins with Kaspersky disabled during installation.Vst3 of Undulator and Rotary Mod gave alarming messages and Vst2 of Spring (and perhaps Crystals not sure about this) also.In the end I installed Spring and Crystals with only vst3 (plus docs) checkboxed and Undulator and R-mod with only vst2 (plus docs) checkboxed.Everything works now……Not only the aax are flagged as trojans by Kaspersky.
Not that it has anything to do with the AV, but is there a reason you install both VST 2 and 3 versions of the same plugin?
-
November 26, 2020 at 2:05 pm #156458MarcelParticipantjoeydego wrote:Not that it has anything to do with the AV, but is there a reason you install both VST 2 and 3 versions of the same plugin?
Just to be on the safe side. Problems with vst3’s are rare but happen.
-
November 30, 2020 at 5:48 pm #156489MarcelParticipanttlongabaugh wrote:
To follow up, I’ve been in touch with Kaspersky, and they’ve verified that the installers are false positives. It should be fixed in their next update.
I’ll mention that they’re also flagging other files inside of the installers. Interestingly, those VST files passed when I tried validating them on Kaspersky’s online portal.
Thanks for the update.
-
-
AuthorPosts
- You must be logged in to reply to this topic.