Kindly be advised we cannot cancel subscriptions or issue refunds on the forum.
You may cancel your Bitdefender subscription from Bitdefender Central or by contacting Customer Support at: https://www.bitdefender.com/consumer/support/help/

Thank you for your understanding.

Undetected malware

Options

Hello


I found two infected files that are send when using an IM and you receive a link. But BitDefender doesn't detect them as harmful.


Here you will see the result when I uploaded it to virus total:


http://www.virustotal.com/vt/en/resultadof...70c5f94fe95e765


This is for the second file:


http://www.virustotal.com/vt/en/resultadof...4c2ee7bc2be4af2


The password is infected.


Regards


Niels

/applications/core/interface/file/attachment.php?id=211" data-fileid="211" rel="">Infectedfiles.rar

Comments

  • Niels
    Niels
    edited June 2007
    Options

    I see that the files are already being detected by BitDefender. Thanks for doing that.


    But it could be that there are more variants on the websites I attached also in the archive file.


    Regards


    Niels


    EDIT: BitDefender can't move photo339.com it says failed.

  • Cd-MaN
    Options

    The sites are no longer serving up the files. Thank you for the samples.

  • Niels
    Options

    Strange when I performed a second contextual scan than BitDefender removed photo339.com. Do you know an explanation for this behaviour?


    Glad that I could help you. I must thank you and all others for adding the signatures. Thanks again for your very quick reply.


    Regards


    Niels

  • Cd-MaN
    Options

    My pleasure. I don't understand exactly what you mean by "when I performed a second contextual scan than BitDefender removed photo339.com". Anyway, photo339.com is a MSN messenger password stealer.

  • Niels
    Options

    I saw the infected files on a security forum where they were discussing about the new antivirus infection.Two people mentioned these websites and posted also the result when they uploaded it to virustotal. I downloaded these executable files in Firefox but I didn't open them. After that I placed them in the folder from which I made an archive. With contextual scan I mean rightclicking on the file or folder and choose BitDefender Antvirus plus to perform a scan. The first time when I did that I received the message disinfection failed,moving failed. But after the next attempt BitDefender was able to move it. I hope it's a little bit clear now. Thanks for info.


    Regards


    Niels