Avast WEBforum
Other => Viruses and worms => Topic started by: RainDrops on September 12, 2008, 09:43:02 AM
-
I use Avast Pro and a problem occured about 2 days ago... I play a game, its name is MU, and Avast shows a message that there is a virus/worm when i try to run the game : " D:\MuBulgaria\main.exe contains sample of "Win32: Trojan-gen {Other} " " This is an online game, in server. And the other players, that use another antivirus program do not have such a problem... I tried to play in another servers, downloaded the game from other places, and the same problem occured again... The game has several Seasons, and Avast finds virus only in the Season 3... Wherever i download the game Season 3 from, Avast finds this virus... It is very strange... If anyone can help me with this problem?...
Thank you in advance
-
To if it's a false positive, upload the file to VirusTotal (http://www.virustotal.com/) and post results.
If indeed an FP, please send file in a password-protected zip folder or RAR to virus@avast.com with false positive in subject and the password mentioned in the email body.
-
Thanks for the reply. Ok, i will try to do it...
-
Well the RAR file is about 300 MB... it would not be possible to send it to virus@avast.com... and what do you mean with the password in the email, the word - Problem?
In additional, i would like to add that I tried the option :"No action" against the virus, too, but it did not help...when i try to run the .exe file again it says that I do not have permission to access this file, path and etc...
Now i'm scanning the file with VirusTotal, but it is slow because of the size of the file... when it finishes i will post the result...
-
I scanned only the .exe file... Here is the result from VirusTotal:
Antivirus Version Last Update Result
AhnLab-V3 2008.9.12.2 2008.09.12 -
AntiVir 7.8.1.28 2008.09.12 -
Authentium 5.1.0.4 2008.09.12 -
Avast 4.8.1195.0 2008.09.11 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.09.12 -
BitDefender 7.2 2008.09.12 -
CAT-QuickHeal 9.50 2008.09.12 -
ClamAV 0.93.1 2008.09.12 -
DrWeb 4.44.0.09170 2008.09.12 -
eSafe 7.0.17.0 2008.09.11 -
eTrust-Vet 31.6.6086 2008.09.12 -
Ewido 4.0 2008.09.12 -
F-Prot 4.4.4.56 2008.09.12 -
F-Secure 8.0.14332.0 2008.09.12 -
Fortinet 3.113.0.0 2008.09.12 -
GData 19 2008.09.12 Win32:Trojan-gen
Ikarus T3.1.1.34.0 2008.09.12 -
K7AntiVirus 7.10.452 2008.09.11 -
Kaspersky 7.0.0.125 2008.09.12 -
McAfee 5382 2008.09.11 -
Microsoft 1.3903 2008.09.12 -
NOD32v2 3437 2008.09.12 -
Norman 5.80.02 2008.09.12 -
Panda 9.0.0.4 2008.09.11 Suspicious file
PCTools 4.4.2.0 2008.09.11 -
Prevx1 V2 2008.09.12 -
Rising 20.61.42.00 2008.09.12 -
Sophos 4.33.0 2008.09.12 -
Sunbelt 3.1.1628.1 2008.09.11 VIPRE.Suspicious
Symantec 10 2008.09.12 -
TheHacker 6.3.0.9.077 2008.09.10 -
TrendMicro 8.700.0.1004 2008.09.12 -
VBA32 3.12.8.5 2008.09.10 -
ViRobot 2008.9.12.1375 2008.09.12 -
VirusBuster 4.5.11.0 2008.09.11 -
Webwasher-Gateway 6.6.2 2008.09.12 Virus.Win32.FileInfector.gen!90 (suspicious)
Additional information
File size: 4277760 bytes
MD5...: a4da301e1b7f11caee56e3f1055376e3
And the link for the scanning : http://www.virustotal.com/analisis/df23bdd549209b5bda933212d0127b5e
-
Seems a false positive. Can you send only the .exe file to virus (at) avast.com ?
It would not be possible to send it to virus@avast.com... and what do you mean with the password in the email, the word - Problem?
For the future, zip (pack, archive) the file with a password (not the email itself).
In additional, i would like to add that I tried the option :"No action" against the virus, too, but it did not help...when i try to run the .exe file again it says that I do not have permission to access this file, path and etc...
No action means do nothing, but the virus (or false positive) is blocked.
-
I will send the file, but it is not possible to send it as an archive, because when I try to make it in archive it says that the access is denied... i can send in an e-mail the .exe file to virus@avast.com, would it be ok? It is not a big file...
-
i can send in an e-mail the .exe file to virus@avast.com, would it be ok? It is not a big file...
No problems.
-
I sent the e-mail to virus@avast.com... Thank You for the help! Hope that it is a problem that can be solved...
-
You may not hear back form avast directly
monitor this thread
IS this thing in CHEST?
if so you can scan within chest to see if the detection changes
or
rescan you download file every so often (after updates)
if you feel really lucky you can exclude from detections :)
Thanks so much for helping make better detections
-
It was not in the Chest... But I just updated the Avast database and the program and after that I restarted the computer and when i tried to open the main.exe file of the game everything was alright... Avast did not detect any virus... it is just wonderful.
Thank you very much for the help!
I am glad that I could help!
All the best to you and your team!
Thanks
-
hi raindrops
great result
good time to run this
secunia.com/vulnerability_scanning/online/ and see if you are up to date
do you have a non xp firewall?
what browser
Spywareblaster?
Hosts file?
any antispyware/ anti malware apps?
keep safe
nice to have you with us
-
***
Welcome to the forums, RainDrops. :)
We are always happy when the help given produces good results.
Please come back often, learn more, and maybe help others. :)
***
-
Thank you!
Well the Firewall is activated, I use Internet Explorer and Mozilla Firefox. I do not have Spywareblaster or any other antispyware, antimalware apps... But here in the forum saw a program SUPERAntiSpyware, downloaded it and I am going to install it... I do not have hosts file too... But programs like antispyware sometimes are really nesecary, some time ago i had a problem with a trojan horse and apps like that were really good help...
-
raindrops
I hate to rain on your parade
but the question was WHICH fiewall not -was it activated -(which implies the XP firewall which is inadequate)
spyware blaster, spybot immunize and a hosts file will help protect proactivelly
SAS is a great scanner but unless you use the paid version will not give you any proactive protection
after you run it if you get any hits quarantine them and post the log
lets get those things installed which will help keep the bad guys out
-
Well sorry for the misunderstanding...Now I use SuperAntiSpyware, the previous problem that i had is solved now... Avast does not find a virus in the .exe file of the game anymore, that is cool.. thanks again