VBS:Malwarre-Gen false alarm?

Hi,

A virus has been reported at our site, hXXp://www.greenbeanery.ca from avast. VPS version 090801-0, 08/01/2009. Malware name: VBS:Malware-gen, Malware type: Virus/Worm.

I’ve spent a good deal of time trying to track down the cause, and was wondering is it is perhaps a false alarm?

Thank you!

Hello mefite,

Thank you…

This sort of thing is usually a correct detection as many legitimate sites are being hacked now…

The current VPS version is: 090812-0

I have tried visiting this site and I had no trouble viewing it. Is this the correct url?
Maybe a screenshot of the alert will help.

This could be for two reasons:

  1. You have removed the infection
  2. A detection was corrected, in the time span between VPS updates.

I would also suggest taking a look at this:

-Scott-

Hi mefite,

The site was checked 22 min ago against Malware Parasites. At the moment the site is down.
Checked there with the Bad Stuff Detektor…

No zeroiframes detected!
Check took 0.01 seconds

(Level: 0) Url checked:
hXtp://www.greenbeanery.ca
Blank page / could not connect
No ad codes identified

polonus

Thanks for the help so far. I’ll keep digging. Here is the error message. Sadly the code was vastly developed by somebody else so I’m not completely sure where the problem is arising from.

Your virus defs are obviously almost 2 weeks old… maybe it was a FP that was already fixed since then (?) Why don’t you update avast and see if anything is still being reported on that site.

Thanks
Vlk

I’ve updated and not been able to reproduce the error. It was actually found by another visitor to the site. I will keep my eyes open for if it happens again, but for now I will shelf this issue.

Thank you all so much for you help!