Hello To You Both,
Many thanks for following me through with this problem. I have now
removed local player from the plugins and the warnings have stopped.
I will try and inform Malwarebytes of this false positive.
Once again, many thanks, especially to Paul. At least you know what you
are
Paul Webster wrote:
> I just downloaded that zip file - and the checksum matches what the
> LocalPlayer plugin expects.
> So I think that this particular report from MalwareBytes can be
> disregarded.
>
> The challenge for you now is to work out how to tell it to ignore this
> issue.It should
I just downloaded that zip file - and the checksum matches what the
LocalPlayer plugin expects.
So I think that this particular report from MalwareBytes can be
disregarded.
The challenge for you now is to work out how to tell it to ignore this
issue.
Paul Webster
http://dabdig.blogspot.com
LocalPlayer tries to download libmpg123
Code:
'libmpg123-0.dll' => { url =>
'http://www.mpg123.de/download/win32/mpg123-1.14.4-x86.zip',
sha =>
'35046c239bd5d596a0b43eef0ef1cb73420abc57', path =>
That wasn't really what I was thinking of doing - but it shows the
problem.
You have the LocalPlayer plugin installed and it uses Squeezelite and it
uses libmpg123 which Malwarebytes thinks is a problem.
So ... for now - you could remove the LocalPlayer plugin.
Paul Webster
Hi Paul,
This is what I got when I clicked SqueezeSvr on the sub folders. I hope
thats correct! In any case, the trojan alert was activated and the
prinout was stopped as per screen grab.
Dave M.
+---+
|Filename: Screen Shot
You could temporarily disable the AV scanner (disconnect from Internet
as well if you want to be extra safe during the test).
Start LMS - presumably it will start without a problem once the AV
scanner is disabled.
Go to the web interface and make a note of the folders listed for
plugins. (LMS
Hi Paul,
Thank you for your advice.
I have gone through everything on LMS but can't find an entry relating
to this.
I have not installed anything into LMS other than those offered on the
home site.
I will have another look and if I find anything, I will left evryone
know.
As I said before, I
Advanced Printout
+---+
|Filename: Screen Shot 02-08-21 at 10.00 AM (2).PNG |
|Download: http://forums.slimdevices.com/attachment.php?attachmentid=33280|
There is a genuine mpg123.exe - and it may well be installed by one of
the plugins that you have (I don't think LMS installs it itself).
The implication is that it has a "call home" feature.
You should be able to find it in the LMS plugins directory.
The name of the directory should be enough
sachadog wrote:
> Screen Shot Of Malwarebytes Report
Out of interest, what's on the "Advanced" tab?
Duet x 3, via various hi-fi. LMS on Raspberry Pi OS (Debian 10) on a
Pi4.
SpiderJon's Profile:
Hello Paul,
This is way beyond my abilities on a computer. I am well over
retirement age and although I can find my way round a computer this is
above my pay grade I'm afraid.
sachadog's Profile:
That is the ip address of mpg123.de
Next question is which bit of code tries to connect to it and why.
Code:
tracert 144.76.80.99
Tracing route to zentriol.nesselzelle.de [144.76.80.99]
over a maximum of 30 hops:
1<1 ms<1 ms<1 ms
Screen Shot Of Malwarebytes Report
+---+
|Filename: Screen Shot 02-08-21 at 09.33 AM (2).PNG |
|Download: http://forums.slimdevices.com/attachment.php?attachmentid=33279|
Further to my enquiry, Malwarebytes indicates the following
C:\PROGRA-2\SQUEEZ-1\server\SQUEEZ-3.exe
It reports it's an outbound connection via Port 80
I.P. address 144.76.80.99
Now I'm afraid most of that leaves me struggling. I don't know how to
sort out the above information. I don't
Hi Well I don't know, is the simple answer.
When I start my computer, Malwarebytes blocks mpg123.de and it indicates
it is connected with LMS.
I have never had this before on any version of LMS I am running.
I can't see how this is connected to LMS.
I can see on a browser search that the site is
Over recent days, when running LMS, Malwarebytes is blocking a site
associated with LMS as being a trojan.
The site it reports is mpg123.de as being a trojan.
How is mpg123.de associated with LMS?
___
Squeezecenter mailing list
Good Morning,
Over recent days, when running LMS, Malwarebytes is blocking a site
associated with LMS as being a trojan.
The site it reports is mpg123.de as being a trojan.
I can't ascertain what relation this site is to LMS as I am blocked by
Malwarebytes and Bit Defender and I do not possess
18 matches
Mail list logo