Undetected Virus - Infinity Bot?

  1. Undetected.
  2. File can be seen on the hacked FoxIT forums(DO NOT DOWNLOAD, I have already notified them of their hacked forums., if you want to email their support to let them know be my guest, just don’t download the file.): forums.foxitsoftware.com
  3. Today, I didnt install it, immediately send support@foxitsoftware.com an email to notify them.
  4. svchost.exe is the name of the file being downloaded from no-ip website: http://maiyashawn.no-ip.biz (If you go there, can see it’s a login for controlling people that have been infected by the bot.)
  5. http://r.virscan.org/report/3aca115ecde8ac048d39fc3aff3950dd.html

Are you looking to be scanned to make sure the system is clean???

if so please go to this link

Link: http://forum.avast.com/index.php?topic=53253.0

Follow the directions and run the programs in the ordered list.

Adwcleaner/MBAM/OTL/AswMBR

After you’ve uploaded the logs I’ll notify Essex. If a program fails attempt to launch it in Safe Mode.

stopspazzin, it was good that you caught that though i don’t know how you managed to do that…

i went to the forum and managed to find the file, and download it… now i need to figure out how to submit the file to “avast”…

p.s. i submitted the file to avast through the avast program…

Just reported it to FoxIt on facebook in a message. Don’t need no more people out there getting infected.

You can also email them at virus@avast.com

Good to know. The program wouldn’t let me add the file to the virus chest to upload to Avast! Which is odd…even after verifying installation.

I agree, pretty bad for a well know site to be hacked, and malicious code to download a file to be added. Pls email support@foxit.com everyone and tell them.

As well as Chrome, PaleMoon (64bit Firefox), I use Maxthon and a good thing about it is gives you the exact location of the file you are downloading without the need for plug-in’s.

No, I’m not that naive to install a known file by the name svchost.exe. Expert with virus/malware removal. :slight_smile:

Sent the infected file and forwarded all the info given here to avast labs.Thanks for helping improve detection :slight_smile: