Results 1 to 7 of 7

Thread: I need help understanding results from www.virustotal.com.

  1. #1
    dannyeluciane Guest

    Default I need help understanding results from www.virustotal.com.

    Hello everyone,
    I am ZASS and ZAFF user.
    I received a suspicious file by e-mail.
    I sent it to ZoneAlarm Labs and still am waiting for a response.
    I also sent it to www.virustotal.com.
    I found that website from one of the threads of this user forum.
    It came back with the following results http://www.virustotal.com/analisis/e...580f53d96192d8.
    There was so much listed and
    I didn't know if I should copy and paste it here.
    I need help understanding the results.
    If anyone understands, please can you let me know.
    Thanks,Danny

    ZoneAlarm Security Suite version:7.0.473.000
    TrueVector version:7.0.473.000
    Driver version:7.0.473.000
    Anti-virus engine version:3
    Anti-virus SDK version:5.0.1.85
    Anti-virus signature DAT file version:950511055
    Anti-spyware engine version:5.0.189.0
    Anti-spyware signature DAT file version:01.200805.3835
    AntiSpam version:5.0.6.8903

    Operating System:Windows XP Pro
    Software Version:7.0
    Product Name:ZoneAlarm Internet Security Suite

  2. #2
    Join Date
    Dec 2005
    Posts
    9,056

    Default Re: I need help understanding results from www.virustotal.com.

    A video/graphic media screen saver that is a troyan which connects out on the IRC network to the master of the bots. It will connect out with stolen information and download some friends.


    Oldsod.
    Best regards.
    oldsod

  3. #3
    dannyeluciane Guest

    Default Re: I need help understanding results from www.virustotal.com.

    Thank you for the information and help
    Oldsod.
    If I understand correctly, my computer should be protected from this by ZASS and
    ZAFF.I didn't open the file. I ran a virus/spyware scan and nothing came up.
    I received the file by e-mail from my pastor.
    He uses AVG free and windows firewall.
    I called him yesterday and told him I thought he might have a virus. He mentioned that every time he sends an e-mail, another e-mail is automatically sent to all his contacts wanting them to dowload a file.
    I will be installing ZASS and ZAFF on his computer. Can this virus be removed by ZASS or should his computer be formatted and reinstalled?
    Again thanks for the help.Danny

  4. #4
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,289

    Default Re: I need help understanding results from www.virustotal.com.

    Hi!
    check again on virustotal, if the file is now detected by Kaspersky.
    If not, please send the file in a password protected zip to newvirus at kaspersky dot com.
    Subject: Probable malware? Include password in the e-mail.

    If it is malware it will be added to the Kaspersky malware signature and you will be protected (since ZASS uses Kaspersky).

    Cheers,
    Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  5. #5
    Join Date
    Dec 2005
    Posts
    9,056

    Default Re: I need help understanding results from www.virustotal.com.

    The very best protection is what you have already done - used safe hex and never opened the file before checking it over. That is the very best protection that money can never buy!


    Then it is not only an issue of detection, but also if the scanners can remove the malware. Detection is one thing - removal is another.

    Hopefully the ZA will remove the malware and get the good pastor out of this malicious network and stop infecting others and spreading this.

    Best regards.
    Oldsod.
    Best regards.
    oldsod

  6. #6
    dannyeluciane Guest

    Default Re: I need help understanding results from www.virustotal.com.

    Hello everyone,
    I did as Fax suggested and sent the file to kaspersky and received the following response,(I noticed that the e-mails had two different files; so I sent both.)
    "Hello,
    Video21983.scrk, Video36415.scrk - Trojan.Win32.Agent.lxj
    New malicious software was found in these files. Detection will be included in the next update. Thank you for your help."

    About my pastor's computer, we will format it, reinstall windows,
    and install ZASS and ZAFF.

    I thank both Fax and Oldsod for the help and information.
    This user forum is very helpful.
    I have learned a lot, including about submitting to virus total and kaspersky.

    I read through the forum and learned a lot about settings and configurations, how to report viruses, and even calm my fears about leak tests. For sure all the advice and help
    you guys give keeps users' computers safer with
    ZoneAlarm running
    without much problems.

    Again thank you all.Danny.


  7. #7
    Join Date
    Dec 2005
    Posts
    9,056

    Default Re: I need help understanding results from www.virustotal.com.

    Both Guru Fax and myself give our thanks for your appreciation.
    Best regards.
    Oldsod.
    Best regards.
    oldsod

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •