question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Kaspersky evaluate Podman Desktop as a trojan

See original GitHub issue

Bug description

I’m no really sure if this issue fits here, but as soon as podman desktop updates to 0.9.0 my Antivirus is removing all files.

I will include in the exception list, but maybe there’s something that can be done to avoid this?

Operating system

Windows 11

Version

0.9.0

Steps to reproduce

Try to install podman desktop 0.9.0 or update from a previous version in a system with Kaspersky Antivirus.

Relevant log output

Free Transalation of the report:

Event: Malicious Object Detected
Application: Podman Desktop.exe
User: <removed>
Component: Sytem Inspector
Description Result: Detected
Type: Trojan
Name: PDM:Trojan.Win32.Generic
Threat Level: High
Object Type: Proccess
Object Path.: <removed>\appdata\local\temp\2gzjjh264u5welickp02iomkk1k
Object Name: podman desktop.exe
Reason: Database
Database version date: Yesterday, 10/25/2022 12:07:00

Original Report in Portuguese:

Evento: Objeto malicioso detectado
Aplicativo: Podman Desktop.exe
Usuário: <removed>
Tipo de usuário: Usuário ativo
Componente: Inspetor do Sistema
Resultado da descrição: Detectado
Tipo: Trojan
Nome: PDM:Trojan.Win32.Generic
Nível de ameaça: Alto
Tipo de objeto: Processo
Caminho do objeto.: <removed>\appdata\local\temp\2gzjjh264u5welickp02iomkk1k
Nome do objeto: podman desktop.exe
Motivo: Bancos de dados
Data da versão dos bancos de dados: Ontem, 25/10/2022 12:07:00

Additional context

No response

Issue Analytics

  • State:open
  • Created a year ago
  • Reactions:1
  • Comments:13 (1 by maintainers)

github_iconTop GitHub Comments

2reactions
cdragecommented, Nov 8, 2022

@FilipJirsak I’ve gone ahead and submitted a report to kaspersky with regards to the false positive. I recommend following through these steps: https://forum.kaspersky.com/topic/kaspersky-how-to-report-false-positive-22328/ and try submitting it as well.

I’ll update this issue if I get a reply back from Kaspersky!

0reactions
FilipJirsakcommented, Oct 31, 2022

I’ll try it.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Issues · containers/podman-desktop - GitHub
Podman Desktop - A graphical tool for developing on containers and Kubernetes - Issues · containers/podman-desktop.
Read more >
Kaspersky detecting Trojan.Win32.Ebowla.bn in docker.exe
I'm looking at the Ebowla go code to see if there is a reason for docker to generate a false positive, not posting...
Read more >
Kaspersky Lab discovers Podec: the first Trojan to trick ...
Kaspersky Lab researchers have discovered a new variant of the SynAck ransomware Trojan using the Doppelgänging technique to bypass anti-virus ...
Read more >
Podman expands to the Desktop - Red Hat Developer
Podman Desktop allows developers to install, configure, and keep their container engine (Podman) up to date with a GUI. This convenient GUI ...
Read more >
Install Podman Desktop - Oracle Help Center
Verify basic Podman Desktop functionality works. What Do You Need? A client system with Oracle Linux and the “Server with GUI' group installed ......
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found