One of installs of TotalCommander floating arround is infected by Vundo/Virtumondo.
The file can be downloaded from hXXp://thepiratebay.org/torrent/4324242/Total.Commander.v7.04.Multilingual.WinALL.Regged-BLiZZARD
One of installs of TotalCommander floating arround is infected by Vundo/Virtumondo.
The file can be downloaded from hXXp://thepiratebay.org/torrent/4324242/Total.Commander.v7.04.Multilingual.WinALL.Regged-BLiZZARD
thepiratebay is well-known place of cracks, keygens and, of course, malware.
Does avast detect it?
I explored this a bit further. The exe extracts digitally signed installation of total commander and also extracts 1.exe in Temp directory, which then installs the virus payload, it’s not Vundo, it’s one of false antiviruses (Antivirus XP, Antivirus 2009). The 1.exe is not detected as virus by Avast but is detected by only one of online scanners at jotti.org.
could you upload to virus total and send a zipped password protected version to virus at avast.com?
virus total will also report to avast whereas jotti does not
thanks for improving detections