I found a virus on my machine with installed Avast Home. It does not detect it (with all last updates).
File UFO.EXE with virus is sent to Avast (from Virus Chest).
To developers: Did you receive my message (06.11.07)?
Is there any time frame to include this virus into VPS?
Complete scanning result of “UFO.EXE”, processed in VirusTotal at 11/08/2007 07:38:14 (CET).
[ file data ]
name: UFO.EXE
size: 18432
md5.: 768eed49992d3cb66c8cbd5b6df06718
sha1: 093bc70e1080048a858505e90a0d27c314c7bf2a
[ scan result ]
AhnLab-V3 2007.11.2.1/20071102 found nothing
AntiVir 7.6.0.34/20071108 found [tr/Dldr.VB.bqh]
Authentium 4.93.8/20071101 found nothing
Avast 4.7.1074.0/20071106 found nothing
AVG 7.5.0.503/20071106 found [Downloader.Banload.GZA]
BitDefender 7.2/20071108 found [Dropped:Generic.Malware.Bdld.12921183]
CAT-QuickHeal 9.00/20071106 found [trojanDownloader.VB.bqh]
ClamAV 0.91.2/20071107 found nothing
DrWeb 4.44.0.09170/20071107 found [trojan.DownLoader.36149]
eSafe 7.0.15.0/20071028 found [suspicious Trojan/Worm]
eTrust-Vet 31.2.5276/20071107 found nothing
Ewido 4.0/20071106 found nothing
F-Prot 4.4.2.54/20071107 found nothing
F-Secure 6.70.13030.0/20071102 found [trojan-Downloader.Win32.VB.bqh]
FileAdvisor 1/20071108 found [High threat detected]
Fortinet 3.11.0.0/20071019 found nothing
Ikarus T3.1.1.12/20071107 found [trojan-Downloader.Win32.VB.bqh]
Kaspersky 7.0.0.125/20071108 found [trojan-Downloader.Win32.VB.bqh]
McAfee 5157/20071106 found nothing
Microsoft 1.3007/20071108 found nothing
NOD32v2 2642/20071106 found [probably unknown NewHeur_PE virus]
Norman 5.80.02/20071106 found [W32/DLoader.DXFQ]
Panda 9.0.0.4/20071106 found [trj/Downloader.QZB]
Prevx1 V2/20071108 found nothing
Rising 20.16.42.00/20071102 found [trojan.DL.Win32.VB.yjo]
Sophos 4.23.0/20071107 found [Mal/Behav-160]
Sunbelt 2.2.907.0/20071031 found nothing
Symantec 10/20071108 found [W32.SillyFDC]
TheHacker 6.2.9.118/20071106 found nothing
VBA32 3.12.2.4/20071106 found [trojan-Downloader.Win32.VB.bqh]
VirusBuster 4.3.26:9/20071106 found nothing
Webwasher-Gateway 6.0.1/20071107 found [trojan.Dldr.VB.bqh]
I have problem with a program with a similar name. It is allways on my USB Mass Storage (Kingston DataTraveler 1 Gb) when I plug in and plug out under Windows (Xp). You can’t see it when you are in Windows. I saw first this file under LINUX. I deleted it but it returned after using in Windows. On DataTraveler there were 2 files: UFO.exe and autorun.inf . Could you tell me if it could by a virus? Is it the same Trojan.Downloader. I heard about that it moves by the USB mass storages. Can it be true?
I’m sorry that I have a lot questions If you need more information I will cooperate
Avast chest is not best solution to send files, there are not detected by Avast. Main problem is not in chest, but in processing. We extract only files that has somewhere in description word “false” or files detected by Trojan-gen. Other files are silently discarded.
So please send us suspicious files to virus@avast.com in password protected archive. This email is batch processed to extract attachments. Files are unpacked whit following passwords: infected, virus, avast, a, 123, 1234, 12345, password. If is used other password then we try search password manually in original email.
I have to say I’m both surprised and disappointed that I have wasted my time submitting sample to avast from the avast chest. More so for those who I suggested use the User Files section to add undetected samples and to submit from the chest as I have wasted their time also.
I have to say that this policy is absolutely crazy, these are samples undetected by avast on avast users who are using avast to protect their systems and in that regard have failed. These are also avast users who have taken the time to submit samples only for them to be discarded, no wonder there are so many topics about samples not being included or huge delays.
Submitting samples where the user is required to create a password protected zip file (to avoid interception en route) is such a pain in the rear when the submission from the chest is much easier for most and it takes care of the interception issue because the samples are encrypted by the process.
You can’t believe how disappointed I am about this total waste enough not to bother suggesting people send samples at all.
Why should I bother if you don’t.
Why should others bother if you don’t.
In almost three and three quarter years of using avast this is without doubt the lowest I have felt. I have absolutely no idea what the new submission system is to be but this one for me is pathetic when samples are discarded, silently or otherwise.
I will end now as I’m getting mad, not just disappointed.
Are there any avast team member reading our posts?
We’re posting here from 3 years that sending file from Chest is the most safe method…
I just can’t believe…
Like DavidR and Tech, I’m very disappointed and upset. I spent hours with a very nervous person, not only in finding and removing infected files, but also in extracting them to the chest after they had been safely quarantined. This computer was in a real mess when we started and one wrong click could have started everything all over. >:(
Now you’re telling me that that whole stressful time was just a waste of time??? ???
One thing we found, don’t know where the thread is, that some mail providers have the ability to “see” into a zipped archive and if the file is executable, refuses to send it.
Well so much for me trying to convince people to submit the samples to avast to make it a better product. These are people who just what the crude off there computers asap.
@DavidR, Tech …kinda gives you a kick right in the old credibility, don’t it?
Absolutely not a problem with anything you have don’t, just us showing our disappointment at samples being discarded when avast users go to the trouble of submitting them.
I also sent a sample from the chest >user file window too only last week.I thought that was the whole point of the right click>email to alwil software feature in the chest.It is very stupid and misleading to folks if it isnt.
m
If you need more information I will cooperate 
??? :o