Echoboy, filterfreak2 trojans?

Discussion in 'Software' started by don_questo, Mar 3, 2014.

  1. don_questo

    don_questo Noisemaker

    Joined:
    Aug 30, 2013
    Messages:
    214
    Likes Received:
    3
    Right, quite strange. I had 4.1.8 version installed on my computer for quite some time, few months or so. And yesterday, out of the blue norton quarantined these two plug ins. We all know about false positives, but something like this never happened to me before. Did anyone experience this lately with these? Could it be that norton added them to the list afterit was discovered they really are trojans? All the other plug ins from the bundle are still fine, only these two are f#cked. I restored them, but maybe I m making a mistake?
     
  2.  
  3. Evorax

    Evorax Rock Star

    Joined:
    Feb 28, 2013
    Messages:
    1,761
    Likes Received:
    320
    Location:
    Bowerstone Castle
    Well.. judging the effects capabilities of the FilterFreak2, i might consider that it can cause sonic trojans :grooves: :rofl: Sorry for being off-topic a little, but indeed it seems strange (and funny :rofl: ) why some of your plugins got quarantined with nothing suspect happenin'. :dunno:
     
  4. xHitoKiri

    xHitoKiri Member

    Joined:
    Sep 8, 2013
    Messages:
    243
    Likes Received:
    9
    :drummer: norton :dont:

    We can't really tell which specific download you have. It could be a reupload of a reupload of a reupload. :dunno:

    Norton is probably the most obnoxious anti virus out there though..
     
  5. nadirtozenith

    nadirtozenith Rock Star

    Joined:
    Nov 20, 2011
    Messages:
    397
    Likes Received:
    325
    Location:
    navigating between nadir zenith vectoring upwards
    hello, don,

    strange, indeed... *yes*
    doing some search about the possibilities of scanning these files through the web, with other similar programs, might help, this way you can be more sure about the false positives... *yes*

    norton, with its heuristics set to maximum value, always was, quite possibly at the prestent still is, somewhat prone to such readings... *yes*

    it also helps to disable it fully when you are not connected to the web, as for your actual audio work, there is no need for using it... *yes*

    there were, years ago, some key generators in use, causing havoc, revealing type win32, trojan type, virii, or at least, such warnings, caused by some packers, cryptors... *yes*

    another possibility, the plug-ins did something similar to suspicious activities on some (open, web connected) ports, thus triggering norton to do its best (which became the actual worst)... *yes*

    so, scan your system with some outer source, on the web there are countless possibilities to do it, then decide... *yes*

    all the best... :bow:
     
  6. studio5599

    studio5599 Producer

    Joined:
    Sep 25, 2011
    Messages:
    988
    Likes Received:
    97
    if your using Norton? You gotta have one slow Ass PC , that app scans every thing you do, taken forever for programs to load ect... it is a bigger memory resource, then the operating system itself ! i swear
    bad bad bad do yourself a Huge Favor and get rid of it.... :wink:
     
  7. MrAnonymous

    MrAnonymous Producer

    Joined:
    Feb 18, 2014
    Messages:
    442
    Likes Received:
    112
    I downloaded it from audioz and just done a scan with virus total and the results were:

    Echoboy:

    16/48

    https://www.virustotal.com/en/file/862b6f970cf51d454a2b213ae68d418a567fbf8f6994a067d496c7f856d8b74d/analysis/

    Filterfreak2:

    12/45

    https://www.virustotal.com/en/file/7e87553adb1214b708844014831f81e1d9f3831773dae6b0bcae31d0871d5362/analysis/

    But in saying that i don't believe they are virus and a just false positives
     
  8. SineWave

    SineWave Audiosexual

    Joined:
    Sep 4, 2011
    Messages:
    4,674
    Likes Received:
    3,844
    Location:
    Where the sun doesn't shine.
    It might be that the dlls got infected right before Norton detected them as trojans? That means you have to clean the whole OS. Virii like to stick to exe files and dlls many times rendering the files unusable. :(
     
  9. drakem20

    drakem20 Member

    Joined:
    Nov 29, 2012
    Messages:
    64
    Likes Received:
    9
    This!!
    What a crap app :rofl:
     
  10. Dude2000

    Dude2000 Newbie

    Joined:
    Sep 4, 2013
    Messages:
    3
    Likes Received:
    0

    Those analysis' are quite old, ask virustotal for a reanalysis'.

    Maybe things look different then.
     
  11. Guitarmaniac64

    Guitarmaniac64 Rock Star

    Joined:
    Jun 5, 2011
    Messages:
    1,377
    Likes Received:
    332

    Just the fact that many other AV say its ok is good.

    B.t.w i have an old midi program that my old AV was showing as virus.
    And i also have an old learning keyboard interactive program that my AV said is virus.

    I dont use AV anymnore only Firewall.

    AV is the biggest selling point that win computer can have.
    Your computer can easely be infected buy our antivirus program.

    It scar the hell out of people and even big companys that dont think they are safe without a AV program.

    I will say if you dont visit porno sites and other very suspect sites you be ok with a good firewall.

    My girlfriend dont have an AV on here computer she it was years ago since the last time and she only using windows firewall.

    It was when i uninstall here old AV that we discover that most AV companys fool you that your PC is infected she used to get tons of alarms every week 30 spammail about enlarged her penis viagra and stuff like that.

    After the uninstall i did a regclean and guess what?
    No more spam mails
    And i also did an internet AV search and her PC was clean but the AV i just uninstalled said that she had 7 or 8 viruses.

    and she never have a virus but she only read newspapers chat with her friends and look at facebook and never installs anything.
     
  12. MrAnonymous

    MrAnonymous Producer

    Joined:
    Feb 18, 2014
    Messages:
    442
    Likes Received:
    112
    Thanks for pointing that out :wink:

    Reanalysis

    Echoboy:

    15 / 50

    https://www.virustotal.com/en/file/862b6f970cf51d454a2b213ae68d418a567fbf8f6994a067d496c7f856d8b74d/analysis/1393925435/

    Filterfreak2:

    15 / 50

    https://www.virustotal.com/en/file/7e87553adb1214b708844014831f81e1d9f3831773dae6b0bcae31d0871d5362/analysis/1393925569/
     
  13. Dude2000

    Dude2000 Newbie

    Joined:
    Sep 4, 2013
    Messages:
    3
    Likes Received:
    0
    That looks like false positives. (Though I cannot guarantee that). Maybe R2R can take a look into this case and figure out why some AV mix things up. :break:
     
  14. MrAnonymous

    MrAnonymous Producer

    Joined:
    Feb 18, 2014
    Messages:
    442
    Likes Received:
    112
    I think it's something to do with how they crack it which is the same reason keygens get flagged by Av also Kaspersky is the best of them all and it says it is clean so i wouldn't worry about it..
     
  15. don_questo

    don_questo Noisemaker

    Joined:
    Aug 30, 2013
    Messages:
    214
    Likes Received:
    3
    thanks! if only I knew what all this meant. The statistics it shows have dates next to them, pretty much all from last few days. Does that mean something, like newly found threat, or?
    EDIT. Oh shit, I m so stupid. Thanks
     
  16. SineWave

    SineWave Audiosexual

    Joined:
    Sep 4, 2011
    Messages:
    4,674
    Likes Received:
    3,844
    Location:
    Where the sun doesn't shine.
    Yes guys, antivirus software is big business. Most of the time you shouldn't need any AV software and it certainly cannot help you against NSA spying on you... I'd be more worried about that. What Guitarmainac64 said - use a good firewall. That's absolutely more important. I have a laptop that I use for location recording but here in the studio it doubles as an internet firewall and "proxy" [under Linux] and all Internet connections have to go through it. I do admit you have to have a bit of knowledge to set up all that "tech", but a good router should have a good firewall in it and all you need to do usually is enable the higher security mode, or simply install a quality firewall software like Sygate firewall, I used to like that one back in the days. No, Micro$oft firewall is not a good firewall... anyway, I have a router and the firewall in it, but an additional one like I have is a pretty good idea and Linux provides you with a plethora of great firewalls and NAS and whatever programs [except DAW and VST :(]. Linux's nature is to be a server OS, just like NetBSD, for example, which is an ultimate OS for security, always has been.

    I can't remember the last time I had an antivirus on my computer and I only got infected once many moons and NYE parties ago. I got infected through Internet Explorer 6 just by pressing a link to a malicious website. Since then I never used IE again, of course, only Firefox. The other way one's OS could get infected is through USB drives that people bring with them, but there are simple programs that block USB drives from autostarting and infecting your computer. The one I use is called "Wimp". It's a 205KB exe file that can save you from so much trouble. The third way one can get infected is through installing warez programs, but I use VirtualBox for all the installing of programs, to check them. I can wholeheartedly recommend everybody to use VirtualBox virtual OS for installing or just testing the programs you download [and keygens], then you transfer them to your real OS later when you're sure they're clean. It works especially great with VSTs since they're only plugins. You also keep the registry cleaner this way as you don't have to install the plugin, you just put its DLL into your VST folder like it should be done in the first place. I don't know of many plugin installers that do a good job. Most of the time they cannot even detect the VST folder properly... I think developers shouldn't bother with install programs at all if they cannot make them work properly. Many of them just want to install into Steinberg/VSTPlugins and only Cubase owners would *maybe* have such a folder, so it's quite stupid of them to assume that everybody has that folder on their computers and there is a registry entry for VST folder that some smart installers read and apply but not many.

    If you get infected by a virus, either you don't know shit about your OS of choice, or you're just plain dumb, or you're drunk/stoned, or just negligent. Or you believe companies that you shouldn't believe in, like I did many years ago. Hell, I wasn't even drunk... :)

    Cheers!
     
  17. webshark

    webshark Member

    Joined:
    Oct 2, 2013
    Messages:
    291
    Likes Received:
    10
    Nod 32 and malwarebytes is the way forward.
     
Loading...
Similar Threads - Echoboy filterfreak2 trojans Forum Date
Made a Space Echo skin for EchoBoy Software Feb 22, 2024
wtb Soundtoys Echoboy Selling / Buying Apr 24, 2023
Selling Soundtoys Decapitator + Echoboy + Echoboy Jr. Plugin Mac PC AAX VST AU Selling / Buying Jan 21, 2022
Can Someone calculate Dverb room2 medium into Soundtoys Echoboy? Mixing and Mastering Nov 16, 2020
[Soundtoys] Echoboy and Other Gems for $49 Software News Mar 28, 2018
Loading...