Author Topic: Win10 found Virus in QMK Toolbox v.0.0.10.exe installer?  (Read 7585 times)

0 Members and 1 Guest are viewing this topic.

Offline vonCheerios

  • Thread Starter
  • Posts: 6
  • Location: Murderland, MD (Baltimore)
Win10 found Virus in QMK Toolbox v.0.0.10.exe installer?
« on: Thu, 06 June 2019, 21:28:11 »
hola!!
I was recently following a write up (https://github.com/dvdizon/kbd75-qmk-guide/blob/master/README.md) on how to flash my newly built kbd75, and when following the step to install QMK Toolbox (https://github.com/qmk/qmk_toolbox/releases), Windows cancelled the install saying it found Trojan:Win32/Occamy.C (Details: This program is dangerous and executes commands from an attacker.) I ended up using QMK Flasher, which worked fine.
I'm new (obviously), what QMK firmware utility is typically used?
Thanks!
-Matt

Offline Leslieann

  • * Elevated Elder
  • Posts: 3181
Re: Win10 found Virus in QMK Toolbox v.0.0.10.exe installer?
« Reply #1 on: Thu, 06 June 2019, 21:59:41 »
This one seems legit and it's a hassle to clean out if you get it because the firmware will just reinstall it.

That said, it's always good to question this sort of thing.
A/V programs have long been known to target anything that tries accessing bare metal hardware like firmware. This is why you are supposed to disable your A/V when flashing bios. They have also been known to target pirated software (claiming a virus, in a deal with software developpers), or even free/open source software (to get you to buy closed source software). So yeah, don't just outright believe what they say. Some, like AVG and now Avast will even continue scanning for this even if you disable it, I stopped installing AVG on customer systems years ago over this behavior and am now doing the same with Avast.

In this cased though, why was anyone recomending you use software that is 0.0.10, jeebus that's irresponsible.
Filco MJ2 L.E. w/hand milled Vortex case, custom feet/paint/winkey blockoff plate, HID Liberator, stainless steel universal plate, 3d printed adapters, Type C, sound dampened,  Thick PBT caps (o-ringed), Cherry Jailhouse Blues w/lubed/clipped Cherry light springs | GMMK TKL | Magicforce 68 | YMDK75 | KBT Race S L.E. | Das Pro (Costar model) | GH60 | IBM Model M (x2)

Offline vonCheerios

  • Thread Starter
  • Posts: 6
  • Location: Murderland, MD (Baltimore)
Re: Win10 found Virus in QMK Toolbox v.0.0.10.exe installer?
« Reply #2 on: Fri, 07 June 2019, 07:44:13 »


In this cased though, why was anyone recomending you use software that is 0.0.10, jeebus that's irresponsible.

This is my first build, I don't know **** from Shinola, ;) I Googled how to flash the PCB, this link was one of the first to come up, and I assumed the software / version were legit.

Good times.

I use some NirSoft apps working in IT, and everyone of their programs is classified as virus'. I with you on the false positives/mis-classifications and AV..
« Last Edit: Fri, 07 June 2019, 07:50:13 by vonCheerios »