« previous next »
Pages: [1]   Go Down

Author Topic: VME family virus ?  (Read 5590 times)

0 Members and 1 Guest are viewing this topic.

Zigintas

  • Guest
VME family virus ?
« on: April 17, 2007, 07:23:13 AM »
Avast report for my "A Virus Was Found"

File name:
http://g.delfi.lt/b/f/468x60_rieker_lt_m_16-04-2007.swf
Malware name: VME family
Malware type: Virus/Worm
VPS version: 000734-0, 2007.04.16

Processing: [Abort connection]

???

Why problem? Banner or antivirus?
Logged

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: VME family virus ?
« Reply #1 on: April 17, 2007, 09:15:51 AM »
It's probably a false positive. I've already submitted it to the Alwil virus lab with describtion.
Fix for it will probably be released soon.
Logged
Visit my webpage Angry Sheep Blog

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33904
  • malware fighter
Re: VME family virus ?
« Reply #2 on: April 17, 2007, 09:33:01 AM »
Hi Zigintas,

FP or not, the message "processing abort connection" means that malware tried to connect but connection was aborted (by you), so you were not infected.
To make sure you could download F-prot for Dos from: http://www.claymania.com/f-prot.html , and scan.
But I assume that RejZoR is right, and this is a False Positive. I had a similar thing lately also for a dinosaur DOS virus, see: http://forum.avast.com/index.php?topic=27574.0

polonus
« Last Edit: April 17, 2007, 09:36:15 AM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89064
  • No support PMs thanks
Re: VME family virus ?
« Reply #3 on: April 17, 2007, 02:26:27 PM »
Nothing found by DrWeb link checker either so as RejZoR said probably an FP.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89064
  • No support PMs thanks
Re: VME family virus ?
« Reply #4 on: April 17, 2007, 02:46:08 PM »
Update, downloaded the .swf file and uploaded it to VirusTotal, scan in progress now and so fare only avast has detected it as infected. VT just failed at 23 scanners an only avast detected it, I will upload again and see if it completes, but it looks certain it is an FP, I have submitted it to avast.

As a temporary measure, you could add the path you posted to the Web Shield, Customize, Exceptions, Add. This will exclude the file from scans.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89064
  • No support PMs thanks
Re: VME family virus ?
« Reply #5 on: April 17, 2007, 02:57:44 PM »
Well the Jury is in at VirusTotal out of 32 scanners only avast detected it.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33904
  • malware fighter
Re: VME family virus ?
« Reply #6 on: April 17, 2007, 03:08:38 PM »
Hi posters in this thread,

Conclusion = FP.

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »