Avast detect this virus … but than i executed infected exe avast disappears and there self defense ?
http://rapidshare.com/files/154355816/AceMoney1.rar.html
pass 123 to attached archive …
Guys from avast kick this virus =)
Avast detect this virus … but than i executed infected exe avast disappears and there self defense ?
http://rapidshare.com/files/154355816/AceMoney1.rar.html
pass 123 to attached archive …
Guys from avast kick this virus =)
If avast detected it why in the world would you want to execute it ???
Or are you talking about a different file ?
Please send the file directly to avast.
Send the sample to virus@avast.com zipped and password protected with the password in email body, a link to this topic might help and undetected malware (if that is what it is) in the subject.
Or you can also add the file to the User Files (File, Add) section of the avast chest (if it isn’t already there) where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest. A copy of the file/s will remain in the original location, so any further action you take can remove that.
Are you saying that you were able to execute this infected executable (i.e. avast! allowed you to start it) with avast! resident protection active?
Which is the virus name?
Sality-gen
yes … and this virus kick away all brain form avast
It’s a very dangerous file infector. Take a lot of care… you shouldn’t have managed that file… Make sure you’re clean and backup your documents and data.
thanx i know what i doing =) i have sent all shit at virus@avast.com pass is 123.
This shit i have get from client’a computer … =) drweb cureit clean tool help’s me to kick this virus avay
There’s another file in the folder that may also be malware:
Antivirus Version Last Update Result
AhnLab-V3 2008.10.16.0 2008.10.15 -
AntiVir 7.9.0.4 2008.10.15 HEUR/Malware
Authentium 5.1.0.4 2008.10.15 -
Avast 4.8.1248.0 2008.10.15 -
AVG 8.0.0.161 2008.10.15 -
BitDefender 7.2 2008.10.15 -
CAT-QuickHeal 9.50 2008.10.14 -
ClamAV 0.93.1 2008.10.15 -
DrWeb 4.44.0.09170 2008.10.15 modification of Win32.Sector.5
eSafe 7.0.17.0 2008.10.15 -
eTrust-Vet 31.6.6149 2008.10.15 -
Ewido 4.0 2008.10.15 -
F-Prot 4.4.4.56 2008.10.15 -
F-Secure 8.0.14332.0 2008.10.15 -
Fortinet 3.113.0.0 2008.10.15 -
GData 19 2008.10.15 -
Ikarus T3.1.1.34.0 2008.10.15 -
K7AntiVirus 7.10.496 2008.10.15 -
Kaspersky 7.0.0.125 2008.10.15 -
McAfee 5405 2008.10.14 -
Microsoft 1.4005 2008.10.15 -
NOD32 3525 2008.10.15 -
Norman 5.80.02 2008.10.15 -
Panda 9.0.0.4 2008.10.15 -
PCTools 4.4.2.0 2008.10.15 -
Prevx1 V2 2008.10.15 -
Rising 20.66.22.00 2008.10.15 -
SecureWeb-Gateway 6.7.6 2008.10.15 Heuristic.Malware
Sophos 4.34.0 2008.10.15 -
Sunbelt 3.1.1725.1 2008.10.15 -
Symantec 10 2008.10.15 -
TheHacker 6.3.1.0.112 2008.10.15 -
TrendMicro 8.700.0.1004 2008.10.15 -
VBA32 3.12.8.6 2008.10.14 -
ViRobot 2008.10.15.1421 2008.10.15 -
VirusBuster 4.5.11.0 2008.10.15 -
Additional information
File size: 3096576 bytes
MD5…: f71caee49495359bd3783c6091ae126f
SHA1…: 4e3bab879482b05066a40f7ed8daaf87bf52e0a
Antivirus Version Last Update Result
AhnLab-V3 2008.10.16.0 2008.10.15 -
AntiVir 7.9.0.4 2008.10.15 W32/Sality.Y
Authentium 5.1.0.4 2008.10.15 W32/Sality.AK
Avast 4.8.1248.0 2008.10.15 Win32:Sality-gen
AVG 8.0.0.161 2008.10.15 Win32/Tanatos.M
BitDefender 7.2 2008.10.15 Win32.Sality.OG
CAT-QuickHeal 9.50 2008.10.14 W32.Sality.X
ClamAV 0.93.1 2008.10.15 -
DrWeb 4.44.0.09170 2008.10.15 Win32.Sector.12
eSafe 7.0.17.0 2008.10.15 -
eTrust-Vet 31.6.6149 2008.10.15 Win32/Sality.AA
Ewido 4.0 2008.10.15 -
F-Prot 4.4.4.56 2008.10.15 W32/Sality.AK
F-Secure 8.0.14332.0 2008.10.15 Virus.Win32.Sality.aa
Fortinet 3.113.0.0 2008.10.15 -
GData 19 2008.10.15 Win32.Sality.OG
Ikarus T3.1.1.34.0 2008.10.15 Virus.Win32.Sality.y
K7AntiVirus 7.10.496 2008.10.15 -
Kaspersky 7.0.0.125 2008.10.15 Virus.Win32.Sality.aa
McAfee 5405 2008.10.14 W32/Sality.ao
Microsoft 1.4005 2008.10.15 Virus:Win32/Sality.AM
NOD32 3525 2008.10.15 Win32/Sality.NAU
Norman 5.80.02 2008.10.15 W32/Sality.AE
Panda 9.0.0.4 2008.10.15 W32/Sality.AH
PCTools 4.4.2.0 2008.10.15 -
Prevx1 V2 2008.10.15 -
Rising 20.66.22.00 2008.10.15 Win32.KUKU.a
SecureWeb-Gateway 6.7.6 2008.10.15 Win32.Sality.Y
Sophos 4.34.0 2008.10.15 W32/Sality-AM
Sunbelt 3.1.1725.1 2008.10.15 Virus.Win32.Sality.ah (v)
Symantec 10 2008.10.15 W32.Sality.AE
TheHacker 6.3.1.0.112 2008.10.15 W32/Sality.gen
TrendMicro 8.700.0.1004 2008.10.15 PE_SALITY.JER
VBA32 3.12.8.6 2008.10.14 Virus.Win32.Sality.baka
ViRobot 2008.10.15.1421 2008.10.15 -
VirusBuster 4.5.11.0 2008.10.15 -
Additional information
File size: 1724416 bytes
MD5…: 6866ed6b1b8490f738c722679d8386a0
SHA1…: 11e4825077815b51c000f1dca71be952c97c138d
I know it … i have send 2 modifications that i find on client computer
Do you know what executable you started? (that avast! allowed)
You shouldn’t be able to start those detected as Sality… avast! resident protection wouldn’t allow that.
But Avast allow and crash …
All exe in archive are infected you can try any.
But what executable did you start?
If I try to execute one of those Sality-infected files, avast! will not allow it to be started.
So, was it the (undetected) FineReader.exe ?
What operating system do you use?
Win Xp sp2 … avast 4.8.1229 Home. Working two providers main and firewall
cyb_fh, can you answer this Igor’s question?
acemoney.exe for example …
acemoney.exe for example …
If the file is infected AND avast does not detect it, your computer IS infected and you can lose data, documents, etc.
I suggest a full computer on-line scanning:
Kaspersky (very good detection rates)
ESET NOD32
Trendmicro housecall
F-Secure
BitDefender (free removal of the malware)
hello…