Trojan-SMS.J2ME.Konov

[Shell 301]

Последнее время вижу частые ссылки в аську по моим пользователям со ссылкой на JAR файл.

Проверяю такой файл через вирустотал. Итог http://www.virustotal.com/ru/analisis/c7c9...2619-1254850506

Отсылаю в Symantec Security Response. Спустя длительное время получаю ответ:

[CLOSING]: Symantec Security Response Automation: Tracking #13113354

This message is an automatically generated reply. This system is designed to analyze and process virus submissions into the Symantec Security Response and cannot accept correspondence or inquiries.

Please contact your Technical Support representative if more detailed information about your submission is required. Do not reply to this message.

Below is a status update on your virus submission:

Date: October 9, 2009

Dear Aleksey,

We have analyzed your submission. The following is a report of our findings for each file you have submitted:

filename: Jimmeconomy.jar

machine: Machine

result: See the developer notes

filename: data.res

machine: Machine

result: This file is clean

filename: a.class

machine: Machine

result: This file is clean

filename: icon.png

machine: Machine

result: This file is clean

filename: MANIFEST.MF

machine: Machine

result: This file is clean

filename: msg-3052-4.txt

machine: Machine

result: This file is clean

filename: anims.rar

machine: Machine

result: See the developer notes

filename: 8.gif

machine: Machine

result: This file is clean

Customer notes:

Trojan-SMS.J2ME.Konov.i http://www.virustotal.com/ru/analisis/c7c9...2619-1254850506

Developer notes:

Jimmeconomy.jar is a container file of type ZIP

data.res is a clean file This file is contained by Jimmeconomy.jar

a.class is a clean file This file is contained by Jimmeconomy.jar

icon.png is a clean file This file is contained by Jimmeconomy.jar

MANIFEST.MF is a container file of type MIME. This file is contained by Jimmeconomy.jar

msg-3052-4.txt is a clean file This file is contained by MANIFEST.MF

anims.rar is a container file of type RAR. This file is contained by Jimmeconomy.jar

8.gif is a clean file. This file is contained by anims.rar

Неужто все так чисто?

//Исправил с Bear ) Удалял лишнее))

[dan 10]

Вear Aleksey

Скорее всего автоматическая система в принципе не очень хорошо обрабатывает файлы java.

[Кирилл Керценбаум 671]

Shell я так понимаю, что если это и вредоносный код - то для смартфонов Symbian, как обычно, если автоматизированная система ничего не нашла - обращайтесь в тех. поддержку с использованием номера данного Тикета