-
-
Notifications
You must be signed in to change notification settings - Fork 26
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kaspersky founds something bad in LegacyUpdate-1.1.exe #7
Comments
Unfortunately Legacy Update is in an awkward position because it's not a very commonly downloaded file. That causes AVs to be more vigilant, and use more generic detections. The idea is to err on the side of caution, because the AV vendor doesn't have enough information crowdsourced from its users to decide whether it's safe or not. This is how you can end up with "generic" or AI/ML detections like this. Some reasons it might wrongly flag as malware could be:
This was a problem with Microsoft Defender as well, but I was able to report a false-positive to Microsoft and they corrected it. I'll look into doing the same with Kaspersky. Microsoft has probably also seen Legacy Update being downloaded frequently enough by now to start trusting it, while less common AVs like Kaspersky won't have as strong user data to go by. |
Thanks. I'm reported the false positive to Kaspersky. There is instruction how to do this: https://support.kaspersky.co.uk/common/error/other/1870 . |
Thanks for doing that, really appreciate it! |
After virus base update, no longer detecting as malicious link (and file too). The service is working great. Even successfully updated MS Office 2003 and some device drivers. 👍 Thanks. |
Great news. Thanks again for reporting here and to Kaspersky! |
Cannot download Legacy Update client when Kaspersky Security Cloud is active. When clicking on "Install Legacy Update" button, I'm got virus warning:
Translated:
Kaspersky log:
Kaspersky version 21.3.10.391(j).
Bases from 7 nov 2022 01:06.
Same appearing when downloading using any other browser when Kaspersky is running. If download it with bypassing network scanner, then scan manually, there is
UDS:DangerousObject.Multi.Generic
detected in it.Translated:
Going to Virustotal... https://www.virustotal.com/gui/file/23bedf6cc0fe7cc0cddcc8bd063c55eafab2844f36b5d387a933486255a2a4f9
What does not like 5 antiviruses here?
The text was updated successfully, but these errors were encountered: