Virus Suspect

Michael Miles mmamiga6 at gmail.com
Sat Apr 17 17:14:33 UTC 2010 

this is what I find with avira
I'm just scanning and not doing anything with this file or files



file: /home/amiga5/.wine-x86_64/drive_c/windows/twain.dll
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2



  file: /home/amiga5/.wine-x86_64/drive_c/windows/system32/dosx.exe.XXX
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2


  file: /home/amiga5/.wine-x86_64/drive_c/windows/system32/dsound.vxd.XXX
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2


  file: /home/amiga5/.wine-x86_64/drive_c/windows/system32/ddhelp.exe.XXX
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2


file: /home/amiga5/.wine-x86_64/drive_c/windows/system/ddeml.dll.XXX
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2


file: /home/amiga5/.wine-x86_64/drive_c/windows/winhelp.exe.XXX
     last modified on  date: 2010-03-09  time: 14:16:14,  size: 1032 bytes
     ALERT: TR/Crypt.XPACK.Gen2 ; trojan ; Is the Trojan horse 
TR/Crypt.XPACK.Gen2
     ALERT-URL: http://www.avira.com/en/threats?q=TR%2FCrypt%2EXPACK%2EGen2


Are these false alerts or are they real?

Considering they are all the same trojan I would suspect false alert.

I could be wrong...Avira and Bitdefender both found these.... Clamav did 
not find any.

Michael

More information about the users mailing list