My Avast Is Update And my Problem is About Trainer Of Video Game.
When I Download A Trainer And Scan This , Avast say : NOT THREAT FOUND , And I Upload Trainer On my Site , But When I Want Download This File From My Site , Avast Give Me a Alert And Say : WIN32.BOGENT Found And Block Download Address , When I Download This File and Scan Again , Avast say : NOT THREAT FOUND
[ General information ]
* Anti debug/emulation code present.
* Display message box (sample.exe) : A debugger has been found running in your system.Please, unload it from memory and restart .
* File length: 2086912 bytes.
* MD5 hash: e0f54caac36f4dda13268501b037f26d.
* SHA1 hash: cebf7a715a0eae3fbac642f8adcf5b4189047d72.
The more so as I get this threat description from MS Virus Encyclopedia
VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.
These obfuscation techniques are used on various kinds of malware. The malware that lies “underneath” may have virtually any purpose.
And as we follow the Threat Expert Analysis given in an earlier posting in this thread, we find “Packed.Vmpbad!gen4” → [quote]
Packed.Vmpbad!gen4 is a heuristic detection for files that may have been obfuscated or encrypted in order to conceal them from antivirus software. This heuristic detection is used to detect threats associated with multiple threat families. [quote] Quote taken from Symentic Security response, low risk level
but
files that are detected as Packed.Vmpbad!gen4 are considered malicious
same quote source Symantic Security Response technical details.
I would therefore classify this rather as riskware than as a possible unwanted program,