This morning I was trying to fix the slow webpage loading issue on Windows machines that I see has been discussed in other threads, I rebooted my Homeseer server (Win10) and Homeseer didn't start up.
After some digging I found that the HS3.exe file had disapeared! I managed to find it in the Avast (free) Virus Chest, where it had been tagged as having an alexa (sp) variant virus.
I suspected it might be a false positive but to be sure I downloaded the HS3 installer again from the homeseer website, scanned it (clean), ran the installer and selected Repair, checked it put back a HS3.exe file and scanned the exe (clean).
I then ran it, which prompted me to register again, then had an issue with the BLLAN plugin to do with registering so installed it again from the Plugins section on the web interface, enabled it and all seemed fine again.
To be certain I rebooted to make sure everything started automatically but again homeseer didn't start and again Avast had moved the HS3.exe back to the Virus Chest.
I ran out of time to play more alas.
So I assume that either it is a false positive and that the registration process is changing the signature of the HS3.exe file so when it's next run Avast buries it.
Or it's getting re-infected from somewhere, possibly network/internet when it starts and reaches out to talk to somethng (I've scanned the entire server with Avast and it found no other files with any infections).
I could just add it to exceptions but I'd like to see if others have had this first. It should be the latest HS3 version (it updated recently when I rebooted and as mentioned I downloaded the installer again today to repair it) and Avast (free) is the latest program and virus defs. Win10 is up-to-date but the 'Creators' update hasn't come down yet.
After some digging I found that the HS3.exe file had disapeared! I managed to find it in the Avast (free) Virus Chest, where it had been tagged as having an alexa (sp) variant virus.
I suspected it might be a false positive but to be sure I downloaded the HS3 installer again from the homeseer website, scanned it (clean), ran the installer and selected Repair, checked it put back a HS3.exe file and scanned the exe (clean).
I then ran it, which prompted me to register again, then had an issue with the BLLAN plugin to do with registering so installed it again from the Plugins section on the web interface, enabled it and all seemed fine again.
To be certain I rebooted to make sure everything started automatically but again homeseer didn't start and again Avast had moved the HS3.exe back to the Virus Chest.
I ran out of time to play more alas.
So I assume that either it is a false positive and that the registration process is changing the signature of the HS3.exe file so when it's next run Avast buries it.
Or it's getting re-infected from somewhere, possibly network/internet when it starts and reaches out to talk to somethng (I've scanned the entire server with Avast and it found no other files with any infections).
I could just add it to exceptions but I'd like to see if others have had this first. It should be the latest HS3 version (it updated recently when I rebooted and as mentioned I downloaded the installer again today to repair it) and Avast (free) is the latest program and virus defs. Win10 is up-to-date but the 'Creators' update hasn't come down yet.
Comment