Assigned Kaspersky Marked Zemana as Malware!

This thread is being handled by a member of the staff.
Status
Not open for further replies.
D

Deleted member 2913

hjlbx said:
It is probably a heuristics detection... but check the installer to see if it is digitally signed. If it is a beta build it might not be signed.
Click to expand...
Currently no Zemana here.

Just wanted to know, if "trust programs with dig signs" & "load rules from KSN" is enabled, digitally signed programs or programs found as trusted in KSN are still scanned by AV?
 
  • Like
Reactions: uninfected1, frogboy, JB007 and 2 others
H

hjlbx

Yash Khan said:
Currently no Zemana here.

Just wanted to know, if "trust programs with dig signs" & "load rules from KSN" is enabled, digitally signed programs or programs found as trusted in KSN are still scanned by AV?
Click to expand...

Sorry @Yash Khan I can't answer that as I don't use Kasper.

I think Kasper scans even trusted files before execution.

You'll get an answer from @harlan4096 .
 
Last edited by a moderator:
  • Like
Reactions: norman, uninfected1, JB007 and 4 others
shukla44

shukla44

Level 13
Verified
Top Poster
Well-known
Jan 14, 2016
601
Yash Khan said:
Currently no Zemana here.

Just wanted to know, if "trust programs with dig signs" & "load rules from KSN" is enabled, digitally signed programs or programs found as trusted in KSN are still scanned by AV?
Click to expand...
Yes, they are. Those settings you mentioned are for HIPS only (Application Control & Firewall).
For scanning, everything is scanned, scan settings are different.
 
  • Like
Reactions: uninfected1, frogboy, JB007 and 5 others
H

hjlbx

shukla44 said:
Yes, they are. Those settings you mentioned are for HIPS only (Application Control & Firewall).
For scanning, everything is scanned, scan settings are different.
Click to expand...

Thanks bro... I didn't know it.

So in this case the detection could be false positive because it is already a false positive in KSN or due to heuristics detection - which led to the false positive inclusion in KSN in the first place.

Come on... we all know Zemana is assigned a trusted status - even by Kaspersky. :D

It has to be heuristics or Kasper's file reputation algorithm is all messed-up.
 
  • Like
Reactions: uninfected1, JB007, Der.Reisende and 4 others
H

hjlbx

omidomi said:
I reported it to Dr.Web long time ago, and @harlan4096 reported it to Kaspersky....
Click to expand...

It is not Russian AV conspiracy... some technician stuffed into a basement cubicle made a mistake. Now that mistake is probably getting passed around.

I'd submit again just in case the hash didn't change. Sometimes beta builds are updated with minor changes without the vendor stating the minor changes to anyone...

The beta builds you submitted might not be identical to the ones being released now.
 
  • Like
Reactions: uninfected1, JB007, Der.Reisende and 7 others
omidomi

omidomi

Level 71
Thread author
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Apr 5, 2014
6,008
hjlbx said:
It is not Russian AV conspiracy... some technician stuffed into a basement cubicle made a mistake. Now that mistake is probably getting passed around.

I'd submit again just in case the hash didn't change. Sometimes beta builds are updated with minor changes without the vendor stating the minor changes to anyone...

The beta builds you submitted might not be identical to the ones being released now.
Click to expand...
I know, I just some fun for more laugh :D
its just a Fp and I know they fixed it ;)
 
  • Like
Reactions: uninfected1, JB007, Der.Reisende and 4 others
L

Lucent Warrior

Ana_Filiz said:
Lol, let's hope that Kaspersky doesn't detect itself as being a malware. :)Strange is that other AV are detecting Zemana. I think that Zemana modified something that other AV doesn't like.
Click to expand...
If i had a dollar for everytime i seen a security application detect itself, i would be rich, and could afford the stitches i need in my side from laughing so hard when i do see them... :D I used to post screenshots of them as my "LOL of the day"
 
  • Like
Reactions: uninfected1, frogboy, JB007 and 5 others
Ana_Filiz

Ana_Filiz

Level 4
Verified
Well-known
Aug 23, 2016
193
Lucent Warrior said:
If i had a dollar for everytime i seen a security application detect itself, i would be rich, and could afford the stitches i need in my side from laughing so hard when i do see them... :D I used to post screenshots of them as my "LOL of the day"
Click to expand...

I will be very interested in such a thread. I remember that a big AV vendor did it last time as a notable AV. :D
 
  • Like
Reactions: uninfected1, JB007, Der.Reisende and 3 others
Status
Not open for further replies.

Similar threads

XylentAntivirus
    • Like
How to provide is file is malware? The importance of Open Source Antiviruses.
Replies
2
Views
526
Malware Analysis
Trident
Trident
Trident
    • +Reputation
    • Thanks
New Update Announcing End of Life for Kaspersky Engine in Harmony Endpoint
Replies
14
Views
1,251
Other security for Windows, Mac, Linux
Trident
Trident
ifacedown
Battle Kaspersky Free + Kaspersky Anti-Ransomware Tool Free vs. ESET Security Ultimate
Replies
22
Views
960
Software Comparison
RRlight
RRlight

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top