Avast WEBforum
Other => Viruses and worms => Topic started by: Henrique - RJ on November 09, 2006, 12:03:18 PM
-
For Pavel or Igor and analysts...
Link below leads to one file malicious that I do not know if is detected by avast.
hxxp://www.csfederalismo.it/User/cartella%20lavoro/flash/Cartao-visualizador.exe
I modified of HTTP for hxxp so that somebody not click.
Link came here in a virtual card in the Brazil.
Analysts could verify ?
-
Infected :P
-
:) Hi Tech
Very good...
Dr. Web has this resource to verify link ? How you it made?
What we want is that avast also detects it.
-
Dr. Web has this resource to verify link ? How you it made?
Hello :)
What Tech used is called Dr.Web anti-virus link checker (https://addons.mozilla.org/firefox/938/) - an add-on for Firefox ;)
For Pavel or Igor and analysts...
Link below leads to one file malicious that I do not know if is detected by avast.
hxxp://www.csfederalismo.it/User/cartella%20lavoro/flash/Cartao-visualizador.exe
I modified of HTTP for hxxp so that somebody not click.
avast! already detects this as Win32:Bancos-XF [Trj] ;)
-
Hi Henrique,
When you scan the link with NoScript installed, your safe visiting the site.
polonus
-
Suspected considered other (it circulates in the Brazil via MSN):
w w w.tevinanet.land.ru
Care, not click !!!
Another that offered malicious softwares and that avast nothing detects:
http://isafetypage.com
-
Dr. Web has this resource to verify link ? How you it made?
Sure: http://online.drweb.com/?url=1
-
w w w.tevinanet.land.ru
http :// i s a f e t y p a g e.com
Both seem ok... ??? ::)
-
Hello folks,
It is also well possible that only a portion of the downloads comes with the malkware vector.
polonus
-
Tech, that page is definitely bad. See here:
http://sunbeltblog.blogspot.com/2006/11/more-fake-scam-sites.html
-
Tech, that page is definitely bad. See here:
http://sunbeltblog.blogspot.com/2006/11/more-fake-scam-sites.html
Accurately FreewheelinFrank...
That page (http://isafetypage.com), has for download softwares malicious that avast nothing detects.
-
Hi Henrique - RJ and FwF,
Here you can read why it is a bad page:
http://www.siteadvisor.com/sites/isafetypage.com?ref=safesearch&aff_id=0
polonus
-
Hi Henrique - RJ and FwF,
Here you can read why it is a bad page:
http://www.siteadvisor.com/sites/isafetypage.com?ref=safesearch&aff_id=0
polonus
Yes but the bad page contains bad programs that avast does not detect (SpywareHeal, MalwareWiper, Brave Sentry and others). I made tests and avast nothing detected in these softwares.
-
Well Henrique - RJ,
That is why we have installed special programs to scan and protect against these spyware infections. Ad-aware, Spybot S&D, Spyware Blaster (install only onto a clean system), Ewido or/and A-square free. All these programs are free and additional to avast or any other resident av-program. Not a single av-program can find all malware that exists, so you always use a multi-layered defense to keep a clean machine. Get accustomed to these routines,
That you will stay secure and surf safely is the wish of,
polonus
-
Strange i just installed Dr.Web anti-virus link checker, and i did scan few malicious links, few coolwebsearch and some other links which spread malicious codes, but Dr.Web did not identified them, Non of them, i wonder why ???
-
Strange i just installed Dr.Web anti-virus link checker, and i did scan few malicious links, few coolwebsearch and some other links which spread malicious codes, but Dr.Web did not identified them, Non of them, i wonder why ???
Well, maybe Dr.Web simply do not have definitions for those malicious codes, and that's why it doesn't detect them ::) ;)
-
Other...
Link below leads to one file malicious that I do not know if is detected by avast:
hxxp://www.snet.gob.sv/Hidrologia/789879816659898card.html
I modified of HTTP for hxxp so that somebody not click.
Link came here in a virtual card in the Brazil.
It's infected...
-
I capture the virus (they are two) of link hxxp://www.snet.gob.sv/Hidrologia/789879816659898card.html using an accelerator of download (Free Download Manager)and avast did not detect none.
"789879816659898card.html" it's a VBS virus (script virus) that it must make download and the automatic installation of the Trojan banker (file “chmody.exe”).
-
Hi Henrique -RJ.
Not any single antivirus solution will catch all malware or have all the definitions. That is why it is good to have some additional non-resident anti-virus solutions (one that protects against this vbs.psyme.239 virus is ClamWin Free Antivirus (see here:
http://lurker.clamav.net/message/20061103.151448.69c9d2dc.en.html)
You cannot have two resident av solutions on one machine because of conflicts, but you can have one resident av solution, like avast, together with online scanners (e.g. Bitdefender etc.) and non=resident, like ClamWin, DrWeb CureIt, stinger.exe, fprot for dos (with automatic updater, yes it is still around).
Then a lot of people have the classical anti-spyware solution on their computers: ad-aware, spybot s&d, and when the computer is malware free a protective program like SpywareBlaster, anti-trojan scanners like a-squared and ewido makes this complete. Additional in-browser security completes all: in Firefox, we have DrWeb's pre-link scanner, MacAfee SiteAdvisor, Stealther, NoScript, AdblockPlus + G. updater. Whit security like that and SafeXP set, so I do not surf with full admin's rights, not a lot can get in harm's way,
polonus