BitDefender report "IVC Client.exe" infected with Gen:Variant.Razy.359856 in BMS 4.34
-
**Version
4.34.0 (x64)**Build
19631Detailed Description****
There is anybody else receiving this warning about “IVC Client.exe” infected with “gen:variant.razy.359856” virus?I’ve received this warning from Bitdefender minutes after installing “Falcon BMS 4.34 aka: (v.4.34.0 (x64))”.
My Bitdefender Total Security is up2date by the way.I just want to be sure I’m alone in this situation…
Maybe a “False positive”…Thanks for your help!
Pictures
Sorry, Bitdefender “print screen” message is in french: -
**Version
4.34.0 (x64)**Build
19631Detailed Description****
There is anybody else receiving this warning about “IVC Client.exe” infected with “gen:variant.razy.359856” virus?I’ve received this warning from Bitdefender minutes after installing “Falcon BMS 4.34 aka: (v.4.34.0 (x64))”.
My Bitdefender Total Security is up2date by the way.I just want to be sure I’m alone in this situation…
Maybe a “False positive”…Thanks for your help!
Pictures
Sorry, Bitdefender “print screen” message is in french:Hello 101-Spyder,
I use Kaspersky Internet Security, at first it asked me about the application, I authorized connection with IVC, then I released the directive to the IVC, reliable application.
I had no problems, check your application settings (antivirus)
Best Regards !!
Good Flight !!!
malpaso :focus: -
Hello Malpaso,
Thanks for your reply.
I can also “bypass” this Trojan Threat Warning with Bitdefender and everything in Falcon will work fine, but I’ve some concerns about the real content of this “IVC Client.exe”.
I’ve to be concerned for our BMS Community if Bitdefender and Kaspersky antivirus software report a Critical Threat Warning.
These are currently the two most valuable antivirus software on the market…I just need a reply from the head programmers of BMS that they are aware of this trojan warning inside this particular executable.
This “Razy” virus variant could be a very dangerous “Trojan Horse backdoor”.
Just want to be sure we don’t open a backdoor on our computers and to make sure “BMS Dev Team” to double check this executable…
Gen:Variant.Razy is a generic name that describes a group of Trojan horses that might perform hazardous activities on the affected computer.
This malware might sneak into the machine pretending to be a legitimate program or its update.
Once inside, it might alter Windows OS settings, drain computer’s CPU, corrupt files and perform other damaging tasks.Referral: https://www.2-spyware.com/remove-genvariant-razy.html
-
I’m pretty sure it’s a false positive. If you’re concerned about this stuff I’d recommend running anything but windows.
All the best,
Uwe
-
Hello Malpaso,
Thanks for your reply.
I can also “bypass” this Trojan Threat Warning with Bitdefender and everything in Falcon will work fine, but I’ve some concerns about the real content of this “IVC Client.exe”.
I’ve to be concerned for our BMS Community if Bitdefender and Kaspersky antivirus software report a Critical Threat Warning.
These are currently the two most valuable antivirus software on the market…I just need a reply from the head programmers of BMS that they are aware of this trojan warning inside this particular executable.
This “Razy” virus variant could be a very dangerous “Trojan Horse backdoor”.
Just want to be sure we don’t open a backdoor on our computers and to make sure “BMS Dev Team” to double check this executable…
Referral: https://www.2-spyware.com/remove-genvariant-razy.html
The second of May, I ran full scan on my PC, result no threat detected, run with Kaspersky Internet Security.
As Hoover commented, I’m pretty sure it’s a false positive.malpaso :focus:
-
There is anybody else receiving this warning about “IVC Client.exe” infected with “gen:variant.razy.359856” virus?
Yes, someone has received this warning. Here is the thread: https://www.benchmarksims.org/forum/showthread.php?35603-Falcon-BMS-4-34-IVC-Client-exe-Virus-or-False-Positive&highlight=bitdefender
So this is a heuristic detection, using generic scanning of the exe to try to detect code without having a specific virus in mind. The gen part at the front = generic. The variant.Razy part tells us the family of trojan the heuristic detects, looking for behavior like recording keystrokes, connecting to the internet and sending data, connecting to other running applications and monitoring them.
Well, IVC does all of those. The nature of heuristic detection is that it is far more likely to have false positives, rather than false negatives. This is considered beneficial by malware companies for a couple reasons, not all of them financial in nature… Anyway. No heuristic detection is a guarantee that the detection is a virus, because false positives exist. If you are a very concerned, you could send the file to BitDefender and ask them to inspect it for malware. In the meantime, the rest of us will enjoy those features of IVC which make it look suspicious.
Specifically, how it records keystrokes (for radio calls), connects to the internet and sends and receives data (radio calls), and monitors other applications (BMS, to control the radios).
-
Hello 101-Spyder,
Blu, explains in detail, about IVC in relation to your antivirus.
Specifically, how it records keystrokes, connects to the internet and sends and receives data, and monitors other applications.
Now, fly calmly with BMS !!!
Best Regards !! -
Ok, thank you “Blu3wolf”, “Malpaso” and all others for your time answering this post…
I want to be sure somebody in Dev Team have received the warning info to avoid problem to others. That was my primary concern.Now, I will add this warning in “exclusion mode” in my antivirus and I will continuing using this “IVC Client.exe”.
This is the most amazing simulator and our squadron fly Falcon since 1998 and we will continue as long as BMS Team continue their great work!!!
Thanks to all of you BMS who are always working very hard for this community, and all members here giving accurate informations every day to everybody.QuebecAirForce.com squadron support BMS in Quebec, Canada. We fly every weeks and read many discussions here. Thanks again!
Continue your hard work and ask if any help is needed.
-
My Friend, 101-Spyder, enjoy BMS !!
A big hug for you, and all the members of your squad !!
Good Flights !!
malpaso -
Same Trojan detection symptomatic now with default Windows 10 virus scanner.
I was just trying to connect to the VG Server (which worked all perfect 2 days ago), and now Trojan warning for the IVC client exe. Well, put back from quarantine and excluded the exe from scanning. I am just not sure if the VG IVC server is randomly down, or scanner broke something in the exe file, coz i cant connect IVC now (BMS connection still working fine).
Checking with a local IVC server instance, IVC client connected OK.Is there any other “24h-online” IVC server i can test connection to?
Thanks,
Clem