hi, sample virut,
[tr][td]SHA256:[/td][/tr]543d7b95e6e17ca4a9f2fc5953305b3b4e42b7e21a7cd660f30943467e8dd0fcSHA1:e6150154a14ee45e893647207c95a9bb053719feMD5:3ebf985682a0c3094064caab1a5a9f47File size:51.0 KB ( 52224 bytes )File name:DRIVERGENIUS.EXEFile type:Win32 EXEDetection ratio:7 / 42Analysis date:2012-05-30 08:01:05 UTC ( 14 hours, 38 minutes ago )
Samples should be sent directly to avast - Send the sample/s to avast as a Undetected Malware:
Open the chest and right click in the Chest and select Add, navigate to where you have the sample and add it to the chest (see image). Once in the chest, right click on the file and select ‘Submit to virus lab…’ complete the form and submit, the file will be uploaded during the next update. Note: manually adding to the chest doesn’t remove them from the original location, so they still have to be dealt with in that location.
Or
Send the sample to virus (at) avast (dot) com zipped and password protected with the password in email body, a link to this topic might help and false positive/undetected malware in the subject.
There is a topic for these, http://forum.avast.com/index.php?topic=64122.0, but personally I feel it is a waste of time. Reporting missed samples doesn’t actually help only sending the sample to be analysed by avast so a detection signature can be created will get it added.
This was an initial a-squared detection for Virus.Win32.Virut!IK, Trojan aka Win32.FakeSpyguard!IK
Detection rates weren’t very high for this file name, see htxp://f.virscan.org/DriverGenius.exe.html
Where that file was found to be a real threat was in 25% of cases, moreover where the origin of the file was China,
Did you send the sample to virus AT avast dot com.
In that case we thank you for adding to avast detection of this dangerous polymorphic file infector malware,
polonus