win32/sujacks.n what is that?

Discussion in 'NOD32 version 2 Forum' started by general, Jun 13, 2008.

Thread Status:
Not open for further replies.
  1. general

    general Registered Member

    Joined:
    Jun 13, 2008
    Posts:
    15
    i just had a school ring me up and all there computers are reporting to have a virus called win32/sujacks.n
    i cant find 1 piece of information about this. false possitive?
    its apparently infected nearly every .exe file on the computer
    any ideas guys?
     
  2. Kosak

    Kosak Registered Member

    Joined:
    Jul 25, 2007
    Posts:
    711
    Location:
    Slovakia
    Hi!

    Is it really "Sujacks" not "Fujacks"? Because Fujacks is virus, which own body add before code of host. He can spread by shared directories and removable disks.

    Regards
     
  3. ASpace

    ASpace Guest

    Whatever the threat , aren't these computers protected by NOD32/ESS ?

    I would make sure the protection is updated and start running full scan in cleaning mode to clean any possible infections . The scan be initilized manually on every computer or with ESET Remote Admin .
     
  4. general

    general Registered Member

    Joined:
    Jun 13, 2008
    Posts:
    15
    ok they have now admitted its win32.fujacks.N
    however the virus has some how spread to over 500 files without being stopped by nod v2.7 and not only that there is no clean option. only delete, rename, quarentine.
    now ive just had to quarantine all these files. and i bet if i rebooted it it would never start again
    everything is updtodate
    i can't find fujacks in the threat encycopedia?
    any ideas?
     
  5. Kosak

    Kosak Registered Member

    Joined:
    Jul 25, 2007
    Posts:
    711
    Location:
    Slovakia
    Try to clean files in safe mode. Next option is BitDefender Online Scanner or other, which provides cleaning service.
     
  6. general

    general Registered Member

    Joined:
    Jun 13, 2008
    Posts:
    15
    how do you clean already quarentined files in safe mode?
     
  7. ASpace

    ASpace Guest

    Restore them from the quarantine and start scan . If the program can offer cleaning , you should choose "Clean" . However , if the program cannot offer cleaning , you should contact ESET and provide them with the samples so that they can if cleaning can be performed at all . They will reanalyse the samples and update the cleaning part of the signature.
     
Thread Status:
Not open for further replies.