Announcement

Collapse
No announcement yet.

pod383.exe virus found

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • pod383.exe virus found

    every other day or so i get this from antivira.

    It's found in temp files for IE and also directly under my users folder

    c:\users\name\

    however, nothing seems to happen. Both get caught, quarantined and deleted.

    I cannot find anything on the internet about it though. All Avira says is trojan dropper and when i click on vius info, again, nothing happens.

    ever hear of it?

  • #2
    guess not...
    Ha-Ha! Made Ya Read!

    Comment


    • #3
      perhaps it's a false positive.
      i sent it to avira. who knows if i will get a reply ;p

      Comment


      • #4
        Probably not a false positive. Nothing with an .exe extension should be at C:\users\<username>

        Sounds like something exploited a hole on your system that allowed it to write a file to the drive, but probably not good enough to execute it. Consider yourself lucky, or you secretly have a rootkit.

        Most common entry these days is by exploiting the PDF web browser plugin that comes with Adobe Reader, and via Java, from not doing the regular updates that popup in your taskbar every few weeks.
        Originally posted by Ranshackle
        I like Hasselhoff's ass better.

        Comment


        • #5
          rootkits for a win7 64bit system are extremely rare, are they not?

          Comment


          • #6
            But you are very special!

            Comment


            • #7
              time to play the lotto!

              Comment


              • #8
                rootkit isn't rare. finding a rootkit that executed and installed would be.

                so the fact you actually found it ... and it never installed .... speaks volumes.
                Originally posted by Ranshackle
                I like Hasselhoff's ass better.

                Comment


                • #9
                  I thought I heard 10 cubic feet!

                  Comment


                  • #10
                    assuming this is a rootkit.

                    i think it might have been from one of the programs i *cough*torrented*cough*
                    I uninstalled said program soon after i started receiving those alerts (btw, antivira is awesome) and I havent gotten them since.

                    I wish avira would send me some info back though

                    Comment


                    • #11
                      use their web submission to submit it for review.

                      http://analysis.avira.com/samples/
                      Originally posted by Ranshackle
                      I like Hasselhoff's ass better.

                      Comment


                      • #12
                        i have to wait until i get home.
                        i think i deleted it from quarantine, but i used their submission form from the program itself and it looks exactly the same.

                        Comment


                        • #13
                          interesting. if you punch in your email, they will update you pretty religiously to give you status on it, tell you what it is.
                          Originally posted by Ranshackle
                          I like Hasselhoff's ass better.

                          Comment

                          Working...
                          X