Today I ran Avast and during memory scanning, it detected this file us30kbd2k.sys in C:\Windows\System32\Drivers, as a trojan. I took Avast’s suggestion to move it to the chest. After restarting my PC, my keyboard stopped working. I found out that the file Avast detected as a trojan was a file related to the keyboard’s function. I restored the file from the chest, restarted my PC and all keyboard functions were working as normal. Just wanted to give everyone a heads up incase they run into this problem like I did.
Hi…
Just as a suggestion, you may want to run the file through an online scanner like jotti to make sure that it isn’t infected…
If it comes out clean, you can exclude the file from both the main and realtime scanners.
Best Regards…
To know if a file is a false positive, please submit it to VirusTotal and let us know the result. If it is indeed a false positive, send it in a password protected zip to virus@avast.com. VirusTotal has a file size limit of 10Mb. Please, mention in the body of the message why you think it is a false positive and the password used. Thanks.
Maybe you need to disable Hide protected operating system files and enable View hidden files and folders to manage the file(s).
As a workaround, you can add these files to the Standard Shield provider (on-access scanning) exclusion list.
Left click the ‘a’ blue icon, click on the provider icon at left and then Customize. Go to Advanced tab and click on Add button…
You can use wildcards like * and ?. But be careful, you should ‘exclude’ that many files that let your system in danger.
Information on us30kbd2k.sys …
The file is a keyboard driver, can record inputs.http://www.file.net/process/us30kbd2k.sys.html