PUA.OSX.KeyLogger detected by Virustotal

Miso's Avatar


23 Oct, 2019 08:19 PM


I just checked TenFourFoxG5-FPR16.1.app.zip and for the G3 for viruses using virustotal.com.
Ikarus found PUA.OSX.KeyLogger. Please check if it is a false positive or a security issue.

BTW: Virustotal also reported that TFF tried to access some akamaiedge.net and google servers. For what are they used for?

Thanks and regards

  1. Support Staff 1 Posted by Cameron Kaiser on 23 Oct, 2019 08:46 PM

    Cameron Kaiser's Avatar

    Ikarus is notorious for false positive results. It threw this on a prior release as well, but not on the next release, even though I made no changes to the system.

    The Google accesses are probably part of the Safe Browsing component, where periodic updates to the internal list of unsafe hashes are downloaded. In addition, some Mozilla pages use Akamai as a CDN. Neither access sounds unusual to me.

  2. 2 Posted by Miso on 23 Oct, 2019 08:57 PM

    Miso's Avatar


    thanks for the reply!
    Sounds like I can use TFF without any doubts …

Reply to this discussion

Internal reply

Formatting help / Preview (switch to plain text) No formatting (switch to Markdown)

Attaching KB article:


Attached Files

You can attach files up to 10MB

If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.

Keyboard shortcuts


? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac