Jump to content

Xwd Dock 2.0.2 Kaspersky Issue


Recommended Posts

Today my antivirus discovered that xwd.exe is infected with a trojan TROJAN.WIN32.FakeAV.ws and container.dll is infected with TROJAN.WIN32.FakeAV.wr and it automatically deleted those files.

The problem is that now it discovered that i am infected with Rootkit.Win32.TDSS.d.

So... my point is somehow i got infected through xwd with a bigger virus, well.. actually a rootkit.

The thing is i downloaded it from the official page (http://xwdock.aqua-soft.org/) 3 days ago and when i first scanned this thing it detected nothing. When i scanned my computer today because i full scan it once a week (saturday) it found nothing. I was downloading a big file from internet and went to sleep for a 5 hours then i woke up and found that kaspersky detected xwd.exe infected, i know it was ok and i taught maybe it's a false positive and a new version was pushed to my hard drive (check for updates was on and i had the lastest version) and i choose skip. Then after a few seconds it keep poping up that all my system tray apps are infected and crashed with the argument - bad image. I am running a full scan again and it automatically deleted xwd.exe and container.dll.

I can't seem to get rid of the rootkit but i will.

I wrote this just to let you know what happened and maybe change a little bit of code because of security risks.

I love this dock and 3 days after i use it, i get my computer infected and i didn't get a virus or anything in 2 YEARS, yeah i once had a nasty virus and since then i am a security freak, (dedicated linux firewall - smoothwall, kaspersky on all my computers and i don't download cracks or keygens or torrents!).

The bottom line is awesome dock.

Michael

EDIT: I have removed the rootkit with Combofix. Kaspersky was only reporting the rootkit and failed to disinfect every time it scanned the computer and actually it activates it, making the computer reboot itself.

EDIT2: I try to download xwdock form http://xwdock.aqua-soft.org/ and it detected Trojan.Win32.FakeAV.ws and Trojan.Win32.FakeAV.wr on xwd.exe and container.dll when i try to extract to my desktop. Please repack without the virus.

Edited by mitzaodx
Link to comment

Today my antivirus discovered that xwd.exe is infected with a trojan TROJAN.WIN32.FakeAV.ws and container.dll is infected with TROJAN.WIN32.FakeAV.wr and it automatically deleted those files.

The problem is that now it discovered that i am infected with Rootkit.Win32.TDSS.d.

So... my point is somehow i got infected through xwd with a bigger virus, well.. actually a rootkit.

The thing is i downloaded it from the official page (http://xwdock.aqua-soft.org/) 3 days ago and when i first scanned this thing it detected nothing. When i scanned my computer today because i full scan it once a week (saturday) it found nothing. I was downloading a big file from internet and went to sleep for a 5 hours then i woke up and found that kaspersky detected xwd.exe infected, i know it was ok and i taught maybe it's a false positive and a new version was pushed to my hard drive (check for updates was on and i had the lastest version) and i choose skip. Then after a few seconds it keep poping up that all my system tray apps are infected and crashed with the argument - bad image. I am running a full scan again and it automatically deleted xwd.exe and container.dll.

I can't seem to get rid of the rootkit but i will.

I wrote this just to let you know what happened and maybe change a little bit of code because of security risks.

I love this dock and 3 days after i use it, i get my computer infected and i didn't get a virus or anything in 2 YEARS, yeah i once had a nasty virus and since then i am a security freak, (dedicated linux firewall - smoothwall, kaspersky on all my computers and i don't download cracks or keygens or torrents!).

The bottom line is awesome dock.

Michael

EDIT: I have removed the rootkit with Combofix. Kaspersky was only reporting the rootkit and failed to disinfect every time it scanned the computer and actually it activates it, making the computer reboot itself.

EDIT2: I try to download xwdock form http://xwdock.aqua-soft.org/ and it detected Trojan.Win32.FakeAV.ws and Trojan.Win32.FakeAV.wr on xwd.exe and container.dll when i try to extract to my desktop. Please repack without the virus.

Yes at the same time mine system also found it as virus.Kaspersky might have updated its definitions and hence found it.

Here i'm posting downgraded version 2.0.0 of xwd.exe ,replace it in "xwindows" directory ,its working as same and with no virus.

XWD.exe

Edited by instantfeed
Link to comment

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
×
×
  • Create New...