Where to Buy Trend Micro Products

For Home

For Small Business

1-888-762-8736
(M-F 8:00am-5:00pm CST)

For Enterprise

1-877-218-7353
(M-F 8:00am-5:00pm CST)

Not in the United States?
Select the country/language of your choice:

Asia Pacific Region

Europe

The Americas

Not in the United States?
Select the country/language of your choice:

Asia/Pacific

Europe

America

Login

For Home

For Business

For Partners

Threat Encyclopedia

MAL_OTORUN


ALIASES:

W32.Dotex(Symantec), Worm.Win32.AutoRun.ow(Kaspersky), TR/Dldr.Delphi.Gen(Avira), W32/AutoRun.B.gen!Eldorado (generic(F-Prot), W32/Webbew.worm(McAfee)

PLATFORM:

Windows 2000, Windows XP, Windows Server 2003

OVERALL RISK RATING:
REPORTED INFECTION:

  • Threat Type:Others

  • Destructiveness:No

  • Encrypted:

  • In the wild: Yes

OVERVIEW

SOLUTION

Minimum Scan Engine:

9.200

VSAPI OPR PATTERN File:

8.731.00

VSAPI OPR PATTERN Date:

24 Jan 2012

NOTES:

Creating an AUTORUN.INF Folder and Disabling Autorun Feature in Windows

This procedure enumerates the steps to create a batch (.BAT) file that creates an AUTORUN.INF folder and disables the autorun feature in Windows.

  1. Open Notepad. Click Start>Run, type NOTEPAD, then press Enter.
  2. Copy and paste the following text in Notepad:
  3. Save the created file on your Desktop as the file DISABLE.BAT.
  4. Locate the file on your desktop. Once located, double-click on the file.

Note: If your Trend Micro product detects a file under this detection name, do not execute the file, or delete it immediately especially if it came from an untrusted or an unknown source (e.g., a Web site of doubtful nature). However, if you have reason to believe that the detected file is non-malicious, you can submit a sample for analysis. Detailed analysis will be done on submitted samples, and corresponding removal instructions will be provided, if necessary.

Note: If your Trend Micro product detects a file under this detection name, do not execute the file. Delete it immediately especially if it came from an untrusted or an unknown source (e.g., a Web site of doubtful nature). However, if you have reason to believe that the detected file is non-malicious, you can submit a sample for analysis. Detailed analysis will be done on submitted samples, and corresponding removal instructions will be provided, if necessary.

Submitting Samples

Sample files for submission must be in ZIP format and should be password-protected. To submit a ZIP file, file compression software such as Winzip must be used. A trial version of Winzip is available at www.winzip.com.

To compress a file, please follow the steps below:

  1. Right-click on the file and select Add to Zip.
  2. Enter a file name for the zip file.
  3. On the Options menu, choose Encrpyt. In the input box, type virus. This serves as the password for the zip file.
  4. Send the sample through the following channels:
    • For Trend Micro Premium customers, please submit a virus support case by clicking here:
    https://premium.trendmicro.com/premiumsupport/en/US/PSP/logon/logon.asp
    • For Trend Micro non-Premium customers, please contact your local support network here:
    http://www.trendmicro.com/en/about/contact/overview.htm


Did this description help? Tell us how we did.

Featured Stories

Connect with us on