Voatktools Contains Trojan!

Discussion in 'Windows Vista' started by efillatigidym, Mar 10, 2008.

  1. efillatigidym

    efillatigidym MDL Novice

    Mar 10, 2008
    4
    0
    0
    ********************VIRUS WARNING***********************
    Here is a heads-up for anyone who has used Voatktools:

    I have previously used Voatktools 2.2 which Kaspersky scanned as clean. I updated my virus definitions on 9/0/08 and it is now showing infected with quick batch.U

    From Kasperksy's virus watch (7/03/08):
    Name of malicious program ↑ Detection time Update released
    8 March 2008
    Trojan-Dropper.Win32.QuickBatch.u 06:51 09:57​

    I originally downloaded version 2.2 from a link on this site, I also checked the recent Rapidshare link for version 2.5 (on this site) and it also contains the same trojan.

    Before anyone replies and says that I'm talking rubbish, make sure you have the latest virus definitions downloaded and that your virus scanner is capable of detecting this particular strain.

    I realise that this is only my second post on this site so it would be useful if a regular poster could confirm what I found.


    ********************VIRUS WARNING***********************
     
  2. TR2N

    TR2N MDL Member

    Feb 28, 2008
    170
    0
    10
    It´s a fail alert, because the key viewer for example works like a trojan.
     
  3. efillatigidym

    efillatigidym MDL Novice

    Mar 10, 2008
    4
    0
    0
    My understanding of it is this: many programs can give false alerts because their activity is suspicious. However, such false alerts are usually rather general and unspecific - this on the other hand is very specific - Trojan-Dropper.Win32.QuickBatch.u!

    I am not an expert and am more than happy to be proved wrong, but would be seriously p*ssed to get infected:(
     
  4. haXXa

    haXXa MDL Junior Member

    Oct 25, 2007
    55
    0
    0
    I'd say It's a false posetive.


    If this is the only warning you get, then no worries.
     
  5. ancestor(v)

    ancestor(v) Admin
    Staff Member

    Jun 26, 2007
    2,703
    4,557
    90
    As said in the other thread, I suppose it's false positive.

    The other false positive was also very specific - specifity hasn't got a special meaning here ;)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. drably

    drably MDL Member

    Feb 4, 2008
    108
    4
    10
    #6 drably, Mar 11, 2008
    Last edited: Mar 11, 2008
    kaspersky LOL #1 for false positives.
    go somewhere else with that boolshizzle.

    try NOD32, then come back and say if its infected.