Sadly, I have to report my virus scanner has just detected a virus in one of the files I have posted on this blog.
The file is linked to on this page here on the post called unlockblock 1.0 URL here: http://lwtc247.wordpress.com/2008/04/10/unlockblock-10/ and the file containing the virus is here: http://lwtc247.files.wordpress.com/2008/04/copy-of-u88exe.doc I’ve delinked it for the purpose of this notification.
AVG reports the file as being: Trojan horse BackDoor.Generic10.NOQ
As to how harmful it is, I haven’t got a clue. I can’t find any results on google about it, although there are references to Trojan horse BackDoor.Generic 10.NOW
Here’s how Kaspersky reports it:
Kaspersky offers www.viruslist.com as a way of finding out more of what it finds, but draws a blank about this WinterLove virus.
All this makes me think that the “firewall tunnelling” / “filter bypass” software or whatever it is, which is the purpose of u88.exe may be confusing my virus scanners making them think that there is a virus when there may not be, OR, of course, THERE MAY BE AN ACTUAL VIRUS IN THE FILE!
Well I’m not that savvy with computers anymore, so I’ve done my bit to tell you what I’ve found. I’ll leave the file there for people who may need it (it ranks up there as one of the more popular blog posts)