Results 1 to 7 of 7

Thread: ZASS not detecting trojans

  1. #1
    cherishable Guest

    Default ZASS not detecting trojans

    Im a new ZA user and just bought the new Z100G router(order it last thursday dont have it yet)
    but in the mean time i downloaded and installed ZASS, and have ran several anti-virus and spyware scans
    it has found a few tracking cookies (average of 4 every scan i do) but nothing else.
    i was reading in a thread on this board today about no av or spyscanner is perfect and to try several online ones.
    so i did,, i tried the first free online spyware scanner listed on this forum:
    http://www.ewido.net/en/onlinescan/
    (aka AVG anti-spyware)

    well it detected 553 spyware problems
    INCLUDING 5 TOJAN HORSE VIRUSES
    trojan.cutespy
    trojan.cutespy
    trojan.Wimad.a
    trojan.Wimad.a
    trojan.Wimad.a

    the rest were tracking cookies med. threat
    no biggie,, but these 5 trojans REALLY concern me:

    here is the log from AVG:
    __________________________________________________
    ewido anti-spyware online scanner
    http://www.ewido.net
    __________________________________________________

    .........etc.........

    Name: TrackingCookie.Valuead
    Path: :mozilla.734:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\gj3vyl1x.default\coo kies.txt
    Risk: Medium

    Name: TrackingCookie.Valuead
    Path: :mozilla.735:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\gj3vyl1x.default\coo kies.txt
    Risk: Medium

    Name: TrackingCookie.Valuead
    Path: :mozilla.736:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\gj3vyl1x.default\coo kies.txt
    Risk: Medium

    Name: TrackingCookie.Valuead
    Path: :mozilla.737:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\gj3vyl1x.default\coo kies.txt
    Risk: Medium

    Name: Trojan.CuteSpy
    Path: C:\Documents and Settings\Owner\Desktop\modemspy.exe
    Risk: High

    Name: Trojan.CuteSpy
    Path: C:\Program Files\Modem Spy\uninst.exe
    Risk: High

    Name: Trojan.Wimad.a
    Path: C:\*****************
    Risk: High

    Name: Trojan.Wimad.a
    Path: C:\*****************
    Risk: High

    Name: Trojan.Wimad.a
    Path: C:\*****************
    Risk: High

    Operating System:Windows XP Pro
    Product Name:ZoneAlarm Internet Security Suite
    Software Version:7.0

  2. #2

    Default Re: ZASS not detecting trojans

    Could you please right click on the zone alarm icon>about>hit copy to clipboard and paste the results here. I am wondering of your Av is corrupted.

  3. #3
    cherishable Guest

    Default Re: ZASS not detecting trojans

    ZoneAlarm Security Suite version:7.0.302.000
    TrueVector version:7.0.302.000
    Driver version:7.0.302.000
    Anti-virus engine version:3
    Anti-virus signature DAT file version:20070227035000
    Anti-spyware engine version:5.0.160.0
    Anti-spyware signature DAT file version:01.200702.1065
    AntiSpam version:4.9.1.8203

    i do think its something to do with the way its installed or something like that
    these are simple trojans.
    and i know ZA is pretty much the best you can get and kaspersky is also the best;
    i have done a tremendous amount of investigating before i buy,, thats just the way i am.
    so i know this is a great program
    what a team .. so im not thinking its a bad product,,, because i know its the best, so that means it has to be my system or config somehow
    im just completely lost on how to do this, or how to proceed.
    could there be some virus in my upper memory loading before za?

    i was using the freebie macafee av that came with my comp before this and it expired in october but i continued using the unupdated version that was preinstalled till the other day.
    i have been meaning to get a good one for months (i got my comp in aug) but have been procrastinating till now.


    also i am using winxp tablet edition and there is no pull down for it so im not sure which one it is most like

    Message Edited by cherishable on 02-27-200708:08 AM

    Operating System:Windows XP Pro
    Product Name:ZoneAlarm Internet Security Suite
    Software Version:7.0

  4. #4
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,289

    Default Re: ZASS not detecting trojans

    Hi!out of curiosity, do you have the extended antivirus database enabled?(see under antivirus/antispyware tab. advanced options, scan options)Just took modemspy.exe and KAV should be detecting it..http://www.viruslist.com/en/viruses/...virusid=100776Cheers,FaxEDIT: and what was the exact location of "Wimda.a"? This should also be detected by KAVhttp://www.viruslist.com/en/viruses/...?virusid=69795

    Message Edited by fax on 02-27-2007 07:53 AM

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  5. #5
    cherishable Guest

    Default Re: ZASS not detecting trojans

    yes the extended database is checked
    and above that so is: skip if the object is greater than 8 MB

    but the files detected are smaller then 8mb.

    i purposely left out the file names on purpose
    here they are:

    Name: Trojan.Wimad.a
    Path: C:\Program Files\NewsRover\Projects\8\Files\Courtney Cox Lingerie.wmv
    Risk: High

    Name: Trojan.Wimad.a
    Path: C:\Program Files\NewsRover\Projects\8\Files\Keira Knightly Lap Dance-1.wmv
    Risk: High

    Name: Trojan.Wimad.a
    Path: C:\Program Files\NewsRover\Projects\8\Files\Keira Knightly Lap Dance.wmv
    Risk: High


    newsgroup nudie movies im guessing, either my husband or son has been looking at things they shouldn't have (probably my husband)
    just had to point that out

    Message Edited by cherishable on 02-27-200711:32 AM

    Operating System:Windows XP Pro
    Product Name:ZoneAlarm Internet Security Suite
    Software Version:7.0

  6. #6
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,289

    Default Re: ZASS not detecting trojans

    Hi!thanks for the information.Do you still have those files? May be they are malware variant and they are not detected by KAV.If you still have one or more of these files please try to upload to www.virustotal.com and check if they are detected by KAV.Probably these files were not executed but only downloaded (probably recently) thus not removed by ZASS 7. Unless you have been running a scan with ZASS 7 and just after the ewido scan... The modemspy is not a virus per se but adware althought ewido classify it as "high risk".DAT AV should be now at: 20070227082000But to cross check just go to "C:\WINDOWS\system32\ZoneLabs\avsys\bases", order by date and see if there are files dated today... if yes, you AV is updating fine.You can also check by downloading the EICAR test here: http://www.eicar.org/download/eicar_com.zip, download the zip and manual scan it with ZA. Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  7. #7
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,289

    Default Re: ZASS not detecting trojans

    Hi!another possibility is that ZASS 7 has been temporarely disabled in order to run those "applications"In this case, the only safeguard to avoid ZASS been shutdown is to password protect it (overview tab --> Preferences)Cheers,Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •