When the SandBox detects a malicious program, the name of the malware can be one of the following:
- W32/EMailWorm: A worm spreading over email
- W32/NetworkWorm: A worm spreading over network shares
- W32/FileInfector: A virus infecting regular executables
- W32/P2PWorm: A worm spreading over P2P networks
- W32/BackDoor: A malicious program that installs a backdoor on the computer
- W32/Dialler : A program that sets/changes the dialling system on your computer
- W32/Downloader: A malicious program that downloads other potentially malicious programs/components
- W32/Spyware: A program that attempts to spy on your computer behavior
- W32/Malware: A generic detection of what we consider malware
If the SandBox detects something unknown, please verify that your Norman Virus Control installation is up to date. If your installation is outdated, then the SandBox may have detected a virus that has recently been added to the virus definition files. If the virus is listed above and your installation is current, then Norman has not seen it or analyzed it.
In such cases we would appreciate it if you submit this sample for analysis. Use the form from the Submit file for SandBox analysis menu choice
