Jump to content
Kaspersky Support Forum

trojan-spy.win32.keylogger

Jose

By Jose
in Virus and Ransomware related questions

 Share
Go to solution Solved by harlan4096,

Recommended Posts

Jose

Jose

Posted
Posted (edited)

I just bought a course from a well-known course-providing website, and this specific course has been bought over 100 thousand times with a 4.8 or 4.9 rating out of 5 by tens of thousands. Part of this course was a zip file that had some resources that were to be used during the course.

However, Kaspersky has detected some kind of Trojan in these files. I contacted the course provider and he assured me that it was just because the zip contained a file of very old software that the antivirus detected as a threat and no need to worry and the file was completely safe. I clicked on "Resolve" but it took forever then showed an error and after running another scan the 2 files were still there. So I don't know what to do and if the files are actually clean or not.

Windows version: Windows 11, Version: 23H2, Build: 22631.2715

Name of Kaspersky: Kaspersky free, Version number: 21.15.8.493

Database release: Today, 2:44 PM

Screenshot2023-11-24225523.thumb.png.5ec9f084310096c8f1ceab0a93f6de5d.png

Edited by Jose
Jose

Jose

Posted
  • Author
Posted
13 minutes ago, Berny said:

@Jose Welcome.

Please submit the object on  https://opentip.kaspersky.com  and ask for Reanalyze.

Thanks for your reply. The zip file is still zipped, is it safe to unzip it so I can upload the object? The zip exceeds the file limit on the link you have provided so I need to upload just the specific file. So please let me know if I should extract the zip file to upload the object or if is there another solution. Thanks.

Berny

Berny

Posted
Posted

@Jose You are welcome.

Unzip without execute is no problem, anyway Kaspersky is blocking infected/suspicious objects. 

 

  • Thanks 1
Jose

Jose

Posted
  • Author
Posted
57 minutes ago, Berny said:

@Jose You are welcome.

Unzip without execute is no problem, anyway Kaspersky is blocking infected/suspicious objects. 

 

Welp, the moment I unzipped Kaspersky deleted them. I don't know what to do, as if these files turn out to be actually clean then I do need them.

harlan4096

harlan4096

Posted
Posted

To send to those files to KOTIP You have to pause temporally K. protection, extract the files, send one by one, and then re-enable K. protection.

 

Follow these steps to report the possible false positive in those files:

 

 

  • Like 2
Jose

Jose

Posted
  • Author
Posted

I have uploaded both files and requested "Reanalyze" as you have told me. But I am not sure what else to do? Do I wait for something? 

  • Solution
harlan4096

harlan4096

Posted
  • Solution
Posted

When reanalyze and get the verdict, the Submit:

 

viruses_1870_0113-512632-1.thumb.png.b67c0f41035b350b1b830c69229fd45f.png

 

And type Your email address, and paste below the link of this thread.

  • Like 1
Jose

Jose

Posted
  • Author
Posted (edited)

Thank you so much. I got the email confirming it was a false report and indeed it's no longer detected as a threat. image.thumb.png.84f14e581d4f7244c916f49d4b7153de.pngimage.thumb.png.b69e3ced73af87046a2aaaeb633fb2bb.png

Edited by Jose
  • Like 1

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing


×
×
  • Create New...