What was this? Should I be worried?

Thursday at 11:25 PM

Kaspersky had 5 minutes today where it flagged a bunch of stuff. See pic.

I'm a little confused. These video files are weeks old. Never flagged. I checked the original torrent and there is no .LNK in the actual package. Just video file, some screens, a txt file or something. So I don't understand what is going on. I don't know where the Trojan is meant to have been, or how there is a malicious LNK file that was created in the /recent folder. I definitely didn't click on any .lnk file from any torrent package or anything.

I'm skittish, so I reinstalled Windows. No big deal, but I'd like to know what my exposure was, whether I might still be exposed, what might have been happening, etc.

I did a full scan after these popped up, kaspersky didn't find anything. Reinstalled windows anyway.

2025-04-18T07:18:43Z

Welcome to Kaspersky Community.

I think they were only references saved in this folder:

https://www.solveyourtech.com/how-to-clear-recent-files-in-windows-11-a-step-by-step-guide/

I have that feature disabled in my Windows, so no files references in Recent folder.

2025-04-18T13:32:19Z

Hi, thanks.

I understand that If I watch a video, a shortcut to it might appear in the 'recent' folder. but why would the shortcut be malevolent? where would be the actual trojan that it says was detected?

2025-04-18T14:39:42Z

@Joon Hi,

43 minutes ago, Joon said:

why would the shortcut be malevolent?

Here is an example :

A desktop shortcut to ‘Google Chrome’ must point to ‘ chrome.exe ’
A desktop shortcut to ‘Microsoft Edge ’ must point to ‘ msedge.exe ’
A desktop shortcut to ‘Firefox’ must point to ‘ firefox.exe ’

If any junk argument has been added behind e.g. ‘ firefox.exe ’ it should be deleted !

2025-04-18T15:06:35Z

Exactly, shortcuts may have malicious content added...

2025-04-18T20:42:59Z

5 hours ago, Berny said:

@Joon Hi,

Here is an example :

A desktop shortcut to ‘Google Chrome’ must point to ‘ chrome.exe ’

A desktop shortcut to ‘Microsoft Edge ’ must point to ‘ msedge.exe ’

A desktop shortcut to ‘Firefox’ must point to ‘ firefox.exe ’

If any junk argument has been added behind e.g. ‘ firefox.exe ’ it should be deleted !

5 hours ago, harlan4096 said:

Exactly, shortcuts may have malicious content added...

Sorry guys, I still don't understand.

A shortcut is automatically created in the recent folder, after I watch the video. So what made that shortcut malevolent? And what was the malevolence? The shortcut pointed to a Trojan? On my PC or online?

2025-04-19T05:58:17Z

Maybe You did download an exe and not a direct video file, once You ran it, it created that .lnk.

You have to be very caution about download video/audio files from suspicious sources. Much malware camouflage under video/audio extensions, using double extension techniques and others.

Also, I recommend this (if still don't have it in your Windows):

https://fileinfo.com/help/windows_11_show_file_extensions

What was this? Should I be worried?

Recommended Posts

Joon

harlan4096

Joon

Berny

harlan4096

Joon

harlan4096

Please sign in to comment

Forum

Products

Support

Personal Account