|
Post by cullenhall on Nov 17, 2015 23:21:26 GMT -5
Hey all,
I recieved my little Ego yesterday and installed the drivers on my personal PC and enjoyed the evening listening to my favorite tracks (I use built in antivirus on that pc). I brought the Ego to my office this morning to potentially replace my XDA-2. As I was unzipping the drivers downloaded from Emotiva's website my office PC's Symantec indicated that the file contained a Trojan.
I submitted the file to symantec to confirm the file should have been flagged and they gave me the following response:
EmotivaUSB20_DriverSetup_v2.24.0.exe is detected by Symantec AV products with the latest definitions. Assessment
File1: EmotivaUSB20_DriverSetup_v2.24.0.exe MD5: 0xA3C0178C1C9B32F542407B02CA3A12F6 SHA-1: 0x4DA28B50F02AA36F4D964AC3A09289EA451017B0 Machine: Machine Determination: AlreadyDetected Submission Detail: This file is detected as Trojan.Gen.SMH with our existing certified LiveUpdate definitions. Signature Protection Name: Trojan.Gen.SMH Live Update Sequence Number: 169797
Has anyone else come across this? Perhaps Emotivas site was hacked and the trojan planted....
|
|
|
Post by Boomzilla on Nov 18, 2015 2:56:21 GMT -5
I suspect that there's no trojan at all. The more sensitive your anti-virus program, the more "false positives" you receive. Yet, the more you reduce the sensitivity of your anti-virus program, the more likely you are to have viri sneak through. It's a no-win. Don't you just love Windows?
Boom
PS: When I have such issues, I take my laptop to the local computer store whose techs I trust. In three days, and for about $100, they detect and clean all real threats and add more detection tools. I now have a total of four clock-cycle-eating, machine-slowing, sometimes-conflicting, and boot-delaying programs running at all times. This music server laptop runs Windows 10, is kept up to date for all products, is scanned weekly, and is NEVER used for general internet browsing or for email. Despite this, my laptop gets a virus at least annually.
I'd recommend getting some "professional" help to see if your machine isn't infected despite having clean drivers.
|
|
|
Post by geebo on Nov 18, 2015 8:06:40 GMT -5
No issues when I installed the drivers on a new Windows 10 laptop a week ago. I've used nothing but Windows Defender for years and I just don't have any problems with my PCs.
|
|
|
Post by yves on Nov 18, 2015 9:26:32 GMT -5
Just upload it to VirusTotal. Immediately you will see why Symantec antivirus is the culprit, and why people who typically blame almost everything on Windows are people who should probably quit using computers...
|
|
|
Post by garbulky on Nov 18, 2015 9:32:37 GMT -5
I suspect that there's no trojan at all. The more sensitive your anti-virus program, the more "false positives" you receive. Yet, the more you reduce the sensitivity of your anti-virus program, the more likely you are to have viri sneak through. It's a no-win. Don't you just love Windows? Boom PS: When I have such issues, I take my laptop to the local computer store whose techs I trust. In three days, and for about $100, they detect and clean all real threats and add more detection tools. I now have a total of four clock-cycle-eating, machine-slowing, sometimes-conflicting, and boot-delaying programs running at all times. This music server laptop runs Windows 10, is kept up to date for all products, is scanned weekly, and is NEVER used for general internet browsing or for email. Despite this, my laptop gets a virus at least annually. I'd recommend getting some "professional" help to see if your machine isn't infected despite having clean drivers. ^^This should not be happening...the annual virus. Especially if no internet browsing is taking place. I reccomend using windows update and a different antivirus program. I reccomend Malwarebytes anti malware Free for weekly scans. And AVG free for real time monitoring. When you do use the internet use firefox or google chrome instead of windows vista. My system uses Vista and hasn't had a virus in 5 years. It's possible your other machines have a virus and it transmits itself around your network. (And your AV program is not good enough to catch it).
|
|
|
Post by Boomzilla on Nov 18, 2015 9:40:31 GMT -5
The shop (Tim's PCs) has installed a different AV program for me to try every time I come in. After returning home, I immediately scan ALL external drives, including USB flash drives - no virus found.
Actually, internet "browsing" IS taking place - JRiver searches for cover art (internet music database?) each time a rip occurs. If JRiver doesn't find a cover (or, more commonly, finds the wrong cover), I use Google image search to locate and download the cover I need. It's not unusual for the browser to find the only available album cover art in Europe or Asia. Beyond that, no browsing or email is used on this machine.
I have used AVG free edition in the past. I currently have Avast anti-virus free edition, C-Cleaner, Malware Bytes anti-malware, and SuperAntiSpyware running, all latest versions.
My browser is Mozilla Firefox (latest version).
Thanks - Boom
|
|
|
Post by cullenhall on Nov 18, 2015 9:45:03 GMT -5
Unfortunately another antivirus is not an option as I work for a large corporation and IT gets to make that decision not me. I agree that I had no issues with my windows 10 (personal) computer with either defender or the Emotiva drivers. Sadly something about the driver installer meets Symantec's definition of a Trojan and is promptly deleted on my corporate PC before I could even attempt to install it. I suppose if I am going to use the EGO in my office I am going to have to put it in driver-less mode, which is a bit of a pain. That or I just keep my XDA-2 in service and keep the EGO for home and travel use...
I wonder if Emotiva would just send me the actual drivers (not in an .EXE) and if that would allow me to get it working...
|
|
|
Post by garbulky on Nov 18, 2015 10:49:30 GMT -5
Unfortunately another antivirus is not an option as I work for a large corporation and IT gets to make that decision not me. I agree that I had no issues with my windows 10 (personal) computer with either defender or the Emotiva drivers. Sadly something about the driver installer meets Symantec's definition of a Trojan and is promptly deleted on my corporate PC before I could even attempt to install it. I suppose if I am going to use the EGO in my office I am going to have to put it in driver-less mode, which is a bit of a pain. That or I just keep my XDA-2 in service and keep the EGO for home and travel use... I wonder if Emotiva would just send me the actual drivers (not in an .EXE) and if that would allow me to get it working... call them and ask for keith
|
|
|
Post by Loop 7 on Nov 18, 2015 12:36:10 GMT -5
I'm guessing this is over zealous anti-virus policy configuration. I too work for a mega corporation and see this issue. Luckily, many of us have moved to apple laptops which run a fairly conservative, well-tuned anti-virus suite.
|
|
|
Post by garbulky on Nov 18, 2015 13:24:56 GMT -5
It also could be something preventing any kind of system configuration change. Does the EGO have a USB one mode? Also doesn't the big ego have optical? IF your machine has optical then maybe the big ego would work for you. Also my behringer UCA202 has an optical out on its DAC. Its $30 but it's not a great solution to be honest
|
|
|
Post by Boomzilla on Nov 18, 2015 13:52:26 GMT -5
I'm guessing this is over zealous anti-virus policy configuration. I too work for a mega corporation and see this issue. Luckily, many of us have moved to apple laptops which run a fairly conservative, well-tuned anti-virus suite. Hi Loop 7 - Might I ask the name of your Apple AV suite?
|
|
|
Post by cullenhall on Nov 18, 2015 14:18:24 GMT -5
It also could be something preventing any kind of system configuration change. Does the EGO have a USB one mode? Also doesn't the big ego have optical? IF your machine has optical then maybe the big ego would work for you. Also my behringer UCA202 has an optical out on its DAC. Its $30 but it's not a great solution to be honest Thankfully in my corporate PC I am a local administrator so I can install hardware and software on my own - this is certainly not stopping me from making the changes necessary to use my EGO with the Emotiva drivers. I am not completely sure what you are referring to when you say "USB one mode", however, I think this is the same and "driver-less mode" in the EGO. That works fine on any computer I have tried. None of my PCs have an optical output. The big ego does have an optical connection, however its an output not an input - the only input on the Ego's are via USB so I don't see that being useful in my case.
|
|
|
Post by garbulky on Nov 18, 2015 14:55:45 GMT -5
Yes driverless mode should work on your computer with no need to install drivers. Though it won't give you the advantage of asynchronous USB 2. It will be USB 1 and limited to either 48khz or 96 khz which is fine for anything with cd quality
|
|
|
Post by AudioHTIT on Nov 18, 2015 15:49:23 GMT -5
It also could be something preventing any kind of system configuration change. Does the EGO have a USB one mode? Also doesn't the big ego have optical? IF your machine has optical then maybe the big ego would work for you. Also my behringer UCA202 has an optical out on its DAC. Its $30 but it's not a great solution to be honest Thankfully in my corporate PC I am a local administrator so I can install hardware and software on my own - this is certainly not stopping me from making the changes necessary to use my EGO with the Emotiva drivers. I am not completely sure what you are referring to when you say "USB one mode", however, I think this is the same and "driver-less mode" in the EGO. That works fine on any computer I have tried. None of my PCs have an optical output. The big ego does have an optical connection, however its an output not an input - the only input on the Ego's are via USB so I don't see that being useful in my case. garbulky means UAC 2 (USB Audio Class 2). As I understand it, UAC 1 drivers are built into Windows therefore it appears "driverless", whereas UAC 2 drivers must be installed to take advantage of the additional capabilities it offers. OS X includes UAC 2 drivers so they appear "driverless" on that platform. These are independent of the USB version, these days USB 3 is most prevalent (and fastest), but many machines and devices still exist with USB 2.
|
|
KeithL
Administrator
Posts: 10,273
|
Post by KeithL on Nov 18, 2015 16:47:08 GMT -5
UAC1 and UAC2 are USB AUDIO CLASSES - essentially software modes for a computer to send digital audio to another device via USB. UAC1 (USB Audio Class 1) supports up to 24/96. UAC2 (USB Audio Class 2) is necessary to support higher sample rates. Apple computers support BOTH UAC1 and UAC2 without external drivers. Windows computers support UAC1 without external drivers, but require separate drivers to support UAC2. The Big Ego and Little Ego support both UAC1 and UAC2 (but you'll need to install our drivers to use UAC2 with Windows computers). Most Linux distributions support UAC1, and some Linux distros support UAC2. By default, the Egos operate in UAC2, which gives them more capabilities - specifically support for sample rates above 24/96. To get a Big Ego or Little Ego to operate in UAC1 (driverless) mode you hold the filter select button down WHILE CONNECTING THE POWER. If the computer is already on, this means holding the button down while connecting the DAC. If you've already turned the computer on, or it has gone to sleep and then turned itself back on, and the DAC is in UAC2 mode, you'll need to disconnect the DAC and plug it back in while holding the button (or hold the button while the computer powers up). The tiny RED LED down by the USB connector will be lit when the Ego is in UAC1 mode. (UAC1 and UAC2 are USB Audio Classes, which is something entirely different than "USB 1.0, USB 2.0, and USB 3.0" - which are hardware specs.) Note that the Ego DACs operate in asynchronous USB mode in both UAC1 and UAC2. Thankfully in my corporate PC I am a local administrator so I can install hardware and software on my own - this is certainly not stopping me from making the changes necessary to use my EGO with the Emotiva drivers. I am not completely sure what you are referring to when you say "USB one mode", however, I think this is the same and "driver-less mode" in the EGO. That works fine on any computer I have tried. None of my PCs have an optical output. The big ego does have an optical connection, however its an output not an input - the only input on the Ego's are via USB so I don't see that being useful in my case. garbulky means UAC 2 (USB Audio Class 2). As I understand it, UAC 1 drivers are built into Windows therefore it appears "driverless", whereas UAC 2 drivers must be installed to take advantage of the additional capabilities it offers. OS X includes UAC 2 drivers so they appear "driverless" on that platform. These are independent of the USB version, these days USB 3 is most prevalent (and fastest), but many machines and devices still exist with USB 2.
|
|
KeithL
Administrator
Posts: 10,273
|
Post by KeithL on Nov 18, 2015 17:00:02 GMT -5
Antivirus scanners work by looking for small segments of code in files that match similar segments known to exist in certain viruses. Unfortunately, while reasonably effective, this process is somewhat imprecise, and can often result in false positives (sort of like what might happen if you're unfortunate enough to "look sort of like" a famous terrorist). In this instance, Symantec seems to be acting a bit over enthusiastically (out of the 54 scanners offered on www.virustotal.com, ONLY Symantec thinks our driver contains a virus). THERE IS NO TROJAN (VIRUS) - AS CONFIRMED BY EVERYBODY BESIDES SYMANTECHere is a link to the report on VirusTotal.... www.virustotal.com/en/file/8564b98f807e2015d11b04eb380644545d44060eb2205e888807bbadf791f255/analysis/1447883427/Many home antivirus solutions offer you the option of "ignoring" a reported threat; if Symantec does so, then you should choose that option. Otherwise, you may have to use your Ego DACs in UAC1 mode on any computers running Symantec. Hey all, I recieved my little Ego yesterday and installed the drivers on my personal PC and enjoyed the evening listening to my favorite tracks (I use built in antivirus on that pc). I brought the Ego to my office this morning to potentially replace my XDA-2. As I was unzipping the drivers downloaded from Emotiva's website my office PC's Symantec indicated that the file contained a Trojan. I submitted the file to symantec to confirm the file should have been flagged and they gave me the following response: EmotivaUSB20_DriverSetup_v2.24.0.exe is detected by Symantec AV products with the latest definitions. Assessment File1: EmotivaUSB20_DriverSetup_v2.24.0.exe MD5: 0xA3C0178C1C9B32F542407B02CA3A12F6 SHA-1: 0x4DA28B50F02AA36F4D964AC3A09289EA451017B0 Machine: Machine Determination: AlreadyDetected Submission Detail: This file is detected as Trojan.Gen.SMH with our existing certified LiveUpdate definitions. Signature Protection Name: Trojan.Gen.SMH Live Update Sequence Number: 169797 Has anyone else come across this? Perhaps Emotivas site was hacked and the trojan planted....
|
|
|
Post by copperpipe on Nov 18, 2015 18:05:35 GMT -5
... or just install linux and be done with it. Windows is just garbage, though admittedly 7 pro is ok; still, it have issues with all that nasty infection stuff. OS X ain't much better. I bought a new mac mini few months ago, thing took forever to get anything done, incredibly sluggish. Wiped, installed ubuntu and my performance pretty much trippled. SMH. I can actually code java on this thing now.
|
|
|
Post by Tungx2 on Apr 21, 2016 11:54:11 GMT -5
While I am very confident that there is not Trojan in the driver file, but I'm just disappointed about this. It's been more an a year and there's no fixing the issue of detected Trojan.
Don't get me wrong, I got lots of emotive products running at my place. But for this issue, it's just an inconvenient and it reduces the customer experience. I bought the big ego with a full intention to use it at work. While using UAC1 mode works, but every time I restart the computer, I would have to unplug the big ego and plug it back to run it as UAC1 mode.
I tried installing the driver of course. The Trojan issue made it impossible for me to use UAC2 mode. I was not able to deactivate my antivirus at work, nor that is an option.
I just felt that if emotive wants to compete with the big boys, then customer service and user experience got to step it up. Yes, there's no Trojan on the driver. But if a product requires the customer to jump through hoops to make it work, I wouldn't call that a satisfactory customer experience.
Just some feedback.
|
|
|
Post by tsalter9 on Apr 22, 2016 7:25:09 GMT -5
I agree with you , Symantec is a little different than most anti virus products , i have it at work and it works differently than all the other big names in the anti- virus brands.
|
|
|
Post by geebo on Apr 22, 2016 7:54:22 GMT -5
While I am very confident that there is not Trojan in the driver file, but I'm just disappointed about this. It's been more an a year and there's no fixing the issue of detected Trojan. Don't get me wrong, I got lots of emotive products running at my place. But for this issue, it's just an inconvenient and it reduces the customer experience. I bought the big ego with a full intention to use it at work. While using UAC1 mode works, but every time I restart the computer, I would have to unplug the big ego and plug it back to run it as UAC1 mode. I tried installing the driver of course. The Trojan issue made it impossible for me to use UAC2 mode. I was not able to deactivate my antivirus at work, nor that is an option. I just felt that if emotive wants to compete with the big boys, then customer service and user experience got to step it up. Yes, there's no Trojan on the driver. But if a product requires the customer to jump through hoops to make it work, I wouldn't call that a satisfactory customer experience. Just some feedback. Is it Symantec's antivirus program?
|
|