Jump to content

Kaspersky detect trojan

stettler

By stettler
in Emby Theater

 Share

Recommended Posts

stettler

stettler   27

Posted
Posted

Hello,

Probably a false positive but Kaspersky Endpoint Security is detecting a "PDM:Trojan.Win32.Generic" in "appdata\​roaming\​emby-theater\​system\​emby.theater.exe" (Hash: 6ad868f7a1eca68646d6be542e8e1452928495d07f80c265c1d5ccd6e248a4f5) with ET 3.0.3

 

(Result is that Kaspersky keeps deleting the exe...)

 

 

Link to comment
Share on other sites
stettler

stettler   27

Posted
  • Author
Posted

That is a false positive. Thanks

 

Yes, it's most certainly a false positive. But it's annoying as hell to make the correct exception in Kaspersky so that it wont delete the ET exe. It would be best to avoid doing "fishy" things in the first place so it won't trigger the security software.

Link to comment
Share on other sites
stettler

stettler   27

Posted
  • Author
Posted (edited)

I can't think of anything fishy the app is doing.

 

Maybe how the automatic update are handled. Or some kind of memory/process access. That's about all I can think of. Sadly, Kaspersky don't give any info about "why" it considers there is a problem.

 

PS: It's not detected by a scan of the binary. It's detected because of its "behavior".

Edited by stettler
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...