Jump to content
Kaspersky Support Forum

Possible false positive after recent update?

K0908

By K0908
in Virus and Ransomware related questions

 Share

Recommended Posts

Berny

Berny

Posted
Posted

@K0908

Can you please check your reports and submit a screenshot from the Kaspersky detection(s).

  • Like 1
AlexeyK

AlexeyK

Posted
Posted
10 часов назад, K0908 сказал:

uploaded to virustotal, only kaspersky and rising are positive. 

You can submit this file to the virlab for analysis. The file hasn't been analyzed in TIP yet, so follow these steps: upload the file via the link, wait about three minutes for the final verdict, if it will be "malware" - click the button "Send to reanalyze", enter your email and comment, wait for response to email.

  • Like 2
Berny

Berny

Posted
Posted

MD5 Trojan.Win64.Agentb.leiv ↓🤔

 leiv.jpg.a27fb8020fb4ab9f07d7e6d6e30333b5.jpg

 

  • Like 1
AlexeyK

AlexeyK

Posted
Posted
2 минуты назад, Berny сказал:

Trojan.Win64.Agentb.leiv

Of course, there's a link in my comment above.But the file needs to be analyzed in TIP, as there's no "send to reanalyze" button. 

K0908

K0908

Posted
  • Author
Posted

In order to do that, I need to add the exe to exclusion before I am able to upload the file. I dont want to take the risk. But it is not just one. There are many more triggers alert now. According to others, it seems to be false positive against newest renpy engine. Just reporting.

Berny

Berny

Posted
Posted

@K0908

2 hours ago, K0908 said:

it seems to be false positive 

You could eventually try this  ?

Kaspersky → ⚙️ Security settings (Scroll Down) → Exclusions and actions on object detection → Actions on scanning 

1) [Disable] 'Perform recommended actions automatically'
2) Run a full scan
3) Kaspersky will ask you to decide which action to take on detected objects
4) Choose for 'Quarantine'
5) Restore the Quarantined object(s)
6) Create an exclusion rule for the object(s)
7) [Enable] 'Perform recommended actions automatically' !
  • Like 1
AlexeyK

AlexeyK

Posted
Posted
2 часа назад, K0908 сказал:

Just reporting.

It won't help anyone. There are articles on what to do with possible false detections: one and two.

 

  • Like 2

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing


×
×
  • Create New...