Author Topic: Suspicious File Found (Read 4284 times)

varmha · « **on:** August 13, 2009, 08:54:47 PM »

When I boot up I get this message: Suspicious File Found. File name is given as:
C:\y8.exe and Type: Rootkit: hidden process.
Nothing seems to get rid of this message which come on after booting.
I have tried it all including numerous scans. The thing does not go away.
Can some one provide a good answer? Thanks. R.

Jtaylor83 · « **Reply #1 on:** August 13, 2009, 09:29:05 PM »

Most of the other scanners say it's a rootkit.

http://www.tallemu.com/oasis2/file/unspecified_vendor/unspecified_product/y8_exe/352509

Upload the file to VirusTotal and post results.

polonus · « **Reply #2 on:** August 13, 2009, 09:44:20 PM »

Hi varmha,

It is a high risk file: File name: y8[1].exe

Author:

Production:

Version:

File Size:15968byte

Discovered:2008-6-18 8:59:00

MD5: DAC1BA0143D06D130D808720C9D6D2DD

polonus

DavidR · « **Reply #3 on:** August 13, 2009, 09:46:49 PM »

Quote from: varmha on August 13, 2009, 08:54:47 PM

When I boot up I get this message: Suspicious File Found. File name is given as:
C:\y8.exe and Type: Rootkit: hidden process.
Nothing seems to get rid of this message which come on after booting.
I have tried it all including numerous scans. The thing does not go away.
Can some one provide a good answer? Thanks. R.

The conventional scan by avast won't detect it as it is using a Heuristic method of the anti-rootkit scan (8 minutes after boot). You only have two options when detected, ignore or delete, you should allow it to be sent to avast for analysis, that allows them to be able to produce a conventional signature detection.

What option did you choose (Ignore id the default) ?

Author Topic: Suspicious File Found (Read 4284 times)

varmha

Suspicious File Found

Jtaylor83

Re: Suspicious File Found

polonus

Re: Suspicious File Found

DavidR

Re: Suspicious File Found