NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
antivirus
8 Topics
[SOLVED!] Having strange issues using your device, and have antivirus enabled?
We have a few reports of users recently who had issues performing tasks on their device. We root-caused this to be related to the Antivirus engine. We successfully tested and pushed the patch to the update server last night. In order to receive this patch: You must be on ReadyNAS OS 6.9.2 (ReadyNAS OS 6.9.3 will contain the fix natively; we will not fix previous versions). Your ReadyNAS must be connected to the internet. You need Antivirus turned off to apply the patch properly. If you don't mind waiting a bit, your ReadyNAS should automatically download and receive the hotfix within 24-48 hours. Check below how to check if you received the patch before turning Antivirus on again. If you want the apply the patch immediately, reboot your ReadyNAS and wait 15 minutes. Check below how to check if you received the patch before turning Antivirus on again. How to check if you received the patch: Go to your ReadyNAS's Admin Page Go to System > Logs, and click Download All Logs Open the downloaded zip file, and open the file apt-history.log Scroll to the bottom and look for a line that shows an upgrade of readynasos to 6.9.2+1: Start-Date: 2018-01-31 10:55:16 Commandline: apt-get -qq install -fy rn-dictionary freeapp-collection readynasos ca-certificates Upgrade: readynasos:armel (6.9.2, 6.9.2+1) End-Date: 2018-01-31 10:55:18 If you have this, then you have received the patch and you can turn on Antivirus again. Please create a thread if you have any issues. Thanks for your patience. Last updated: Jan 30 2018 @ 7:45 PM PacificSolved33KViews2likes2Comments
Antivirus update: message with bug
Model: ReadyNAS 104 Firmware: 6.7.5 Hello, after updating the antivirus, I get an alert (in Italian): "Il file di definizione scansione antivirus è stato aggiornato a { defid }." What is { defid }? I think it's a placeholder for the virus definition version, how to notify this bug to developers? Thanks2.3KViews0likes1CommentAntivirus False Positives Very High
Hi, Are other people getting a frustrating number of obvious false positives from the ReadyNAS antivirus? The emails get rather annoying. They generally seem to report Heuristics.Broken.Executable on totally reputable files. A recent update said these would be reduced, but that hasn't been the case for us. Also, in regards to issues like WannaCry, the antivirus wouldn't achieve anything would it? I'm assuming the virus would simply run from Windows and any encryption or other malicious activity would be seen as legitimate write requests over the network.2.9KViews0likes2Comments
Bjango iStat App infected?
My 626X has been offline for a few days due to an electrical rework, when I turned it on I noticed these antivirus notices in the log: Sun Apr 2 2017 6:35:34 System: Antivirus scanner found a threat (Heuristics.Broken.Executable) in the file /Data/Data/Software/iStat/iStat Menus Installer.app/Contents/Resources/iStatLocal. Please delete the infected file soon if automatic delete setting is not enabled. Sun Apr 2 2017 6:35:34 System: Antivirus scanner found a threat (Heuristics.Broken.Executable) in the file /Data/Data/Software/iStat/iStat Menus Installer.app/Contents/Resources/PrefpaneLauncher. Please delete the infected file soon if automatic delete setting is not enabled. So are the Antivirus heuristics wrong, or is the iStat App really infected? Anyone noticed anything unusual? I have the equivalent iStat App on all my Macs (3), which have very effective antivirus checking, and they have not reported anything unusual.Solved2.9KViews0likes7Comments
6.6.1 New AV Limits Real-Time Scan to Files Smaller than 5MB?
Was checking into something else and stumbled across this small admission in the journalctl output... Jan 20 03:46:47 hostname clamd[11846]: ScanOnAccess: Max file size limited to 5242880 bytes It's seriously configured not to scan files larger than approx 5MB?2.4KViews0likes3CommentsAntivirus scanner found a threat (Unix.Trojan.Mirai-5607459-1) in the file /bin/busybox
6.6.1 on board and just did a fresh install for a new deployment, new drives. Went ahead and enabled AV, and almost immediately got this warning. Antivirus scanner found a threat (Unix.Trojan.Mirai-5607459-1) in the file /bin/busybox. Please delete the infected file soon if automatic delete setting is not enabled. How in the world is this happening on a fresh install? Very concerned since it's complaining about Mirai. Should I reinstall OS or factory default it again? Could the image in flash be bad? Yikes.Solved7.9KViews1like13Comments
Checking a NAS for Malware
From my Device System Page Model: ReadyNAS 314 (not an option in the model field above) Antivirus (Green dot) August 3, 2016 Firmware 6.5.1 My ISP sent me an email and later on a phone call with thier security deparment that they detected BOTNET activity from my Modem. They suggested to scan all my deviced to remove the virus/malware. My iMac, MBPro, MBAir all come up clean. I have scanned them multiple times. I am also scanning my Parallels Virtual PCs (the ones I use all the time are clean, I am scannign the older ones that I do not use often just in case. They give me this line from thier logs when I pressed them for details: a06391550038,24.162.84.210,2016-07-31 20:37:27 +0000,Austin.isrr,6563,BackDoor-EXI.gen.aa,Cycbot They then said since my machines are scanning clear it must my my iPhones or iPads. HAHAHAHAHA. And that i should contact Apple. HAHAHAHA I did, and the apple tech and I had a good laugh. Ad iOS deviced cannot not get Backdoor/Cycbot infected or anyting else for that matter. So that leaves me to wonder, can my NAS be infected? and does the Antivirus Plus App app just scan the contentes of the NAS or does it in clude the NAS OS too?Solved4.2KViews0likes2Comments
