Yahoo Answers is shutting down on May 4th, 2021 (Eastern Time) and beginning April 20th, 2021 (Eastern Time) the Yahoo Answers website will be in read-only mode. There will be no changes to other Yahoo properties or services, or your Yahoo account. You can find more information about the Yahoo Answers shutdown and how to download your data on this help page.
Trending News
Can anyone give me Technical details on WIN32/InstallCore.D application?
Missed by superantispyware, Avira, Malwarebytes, but pick up by Nod32 online scan.
3 Answers
- MichaelLv 610 years agoFavorite Answer
This link may help.....click on VIRUS Characteristics and you see this below.
Dr.Web Trojan.DownLoader5.1728
eSafe (Alladin) Trojan/Worm
Eset Win32/InstallCore.D (application) (variant)
norman W32/Obfuscated.J (trojan)
Scroll down for....The following files have been added to the system:
The applications attempted the following network connection(s).
The following registry elements have been changed.....Plus more.......
- ?Lv 710 years ago
If you have a file that you are not sure about then upload it to VirusTotal: http://www.virustotal.com/
Choose the upload option [if you have this file on your PC somewhere] and then you will get a report from 30 or more of the top anti virus engines telling you of any danger. This is the best thing to do if you have one security app telling you the file is OK and another that says it isn't. You can look a the results from all the top scanners and make a decision based on their analysis.
As you have discovered there is not a lot of firm info online about this possible threat so be guided by the results from Virustotal.
- Anonymous10 years ago
It's a brand new signature.
Most likely just a different packer.
Can you send me a copy of the binary? grumpyoldgrump@gmail.com I'll take a look at it and see what it actually is.
