Conor said:
Flase positive. sNortin is really really shit.
Conor:
Yep, a professional and qualified opinion, especially from someone
incapable of using a spelling checker.
Andrew:
You never say what IS the Win.Rar file (i.e., what is in it). Could be
something you archived into the .rar file is now getting detected by
Norton Antivirus. SFX files are SelF-Extracing archive files; you can
run the .exe file to extract the contents without requiring a copy of
the archival tool. See their KB site at
http://www.win-rar.com/index.php?aid=knowl&lang=eng for info on SFX
files.
Obviously they could not be proliferating a .rar file to install their
product since you would need WinRAR already installed to then read the
..rar file to do the installation. The download for WinRar is a file
named wrar341.exe (notice the .exe extension). So we don't have a clue
what is actually in that Win.RAR file you built or downloaded. Is there
a reason you cannot delete that non-described Win.RAR file and go get it
again from whatever unmentioned site you got it?
It is possible that Norton AntiVirus alerted with a false postive on
this file. It is also possible that this file is infected but you
haven't been performing regular updates or it was just recently
discovered. You never mentioned WHAT virus that NAV was warning you
about, which might not even be a virus but perhaps spyware (since
anti-virus products are now diversifying into covering malware other
than viruses). You could also try checking the file with some of the
freebie online virus scanners, like at McAfee, Trend, and Kaspersky,
along with using the online scanners for spyware, like at PestScan and
SpySweeper (but be warned that these services WILL generate false
positives so you need to look at their manual removal instructions to
see if you actually have the infection that they claim you have).
