latest updater "probably infected with a varient of Win32/Genetik trojan"...

nod32 says that the latest updater is ‘probably infected with a varient of Win32/Genetik trojan’:

Sansa Updater (New) - 1211 - 12/02/2009 - 574.3KB

Any ideas if this has been looked into?

Motty

Haven’t read about this before so I can’t provide any info on that.  But I did run the .exe file through Norton and it came up clean.  May be a false positive.

motty wrote:
nod32 says that the latest updater is ‘probably infected with a varient of Win32/Genetik trojan’:

Sansa Updater (New) - 1211 - 12/02/2009 - 574.3KB

Any ideas if this has been looked into?

Motty

Make sure your virus definitions are up to date. This happens all the time, with things like the updater that need to connect to the net without you telling it to directly.  

I got a virus alert the other day when I had just started downloading Mp3DirectCut from CNET.  I notified CNET and am waiting to see what their findings are.

Don’t trust a single antivirus engine. It surely will be a false positive.

Upload the file to ‘Virustotal’. It will be checked by all antivirus and malware engines on the market.

http://www.virustotal.com/

Chances are that it’s already been checked.

Message Edited by wolftarkin on 12-15-2009 03:42 PM

wolftarkin wrote:

Don’t trust a single antivirus engine. It surely will be a false positive.

Upload the file to ‘Virustotal’. It will be checked by all antivirus and malware engines on the market.

http://www.virustotal.com/

Chances are that it’s already been checked.

 

Message Edited by wolftarkin on 12-15-2009 03:42 PM

I run Symantec (Norton’s Parent Company) Corporate Edition. It is updated DAILY, and is recognized worldwide for being one of the best at catching virus, malware, spam, adware, whatever, and I have had false positives, all I have to do is manually update the definitions. 

hi, 

thanks for the advice. 

I checked with virus total and got the following report: 

http://www.virustotal.com/analisis/ad585ca93f37ce480028613d37b18b342379206709ec95ef479486e927d68e74-1260192156

What an awesome service!

I’ve now submitted the file to Eset and I’ll see if they come back to me…

motty

Message Edited by motty on 12-16-2009 01:29 AM

Just recieved the following from Eset:


Dear motty,

We received your email without the attachment, however the file I have found will be undetected in the next update.

Regards,

ESET spol. s r.o.

that was a very fast response from Eset, they certainly are an awesome company and NOD32 is an awesome AV, recomend it!!!

motty