Array['name'].' - 01net. : forum'

Malekal_mortele 20 juin 2007 à 21h55

Info sur : http://www.malekal.com/Win32.Stration.worm....Warezov.lp.php

Comme d'habitude.. les utilisateurs Avast! ne sont pas protégés - C'est pourquoi il est recommandé de remplacer Avast! par Antivir, voir ce lien : http://forum.telecharger.com/telecharger/windows__logiciels/internet/comparatif__avast_vs_antivir-443458/messages-1.html

Les messages de transmissions :
I'm out fishing. That was awesome.
Here are my pictures.
hxxp://27030.caseduntionkinshides.com/99/524/
hxxp://28630.herunjdinkinmasde.com/99/6705/

Cela fait télécharger un fichier pif3.pif qui installe l'infection.

Scan des fichiers :
Scan au 20 juin :

Complete scanning result of "pic.pif", received in VirusTotal at 06.20.2007, 21:00:37 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 Win32/Stration.worm.Gen
AntiVir 7.4.0.34 06.20.2007 TR/Crypt.XDR.Gen
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.20.2007 I-Worm/Stration
BitDefender 7.2 06.20.2007 Win32.Warezov.ZB
CAT-QuickHeal 9.00 06.20.2007 (Suspicious) - DNAScan
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 Win32.HLLM.Limar
eSafe 7.0.15.0 06.20.2007 Win32.Stration.CX
eTrust-Vet 30.8.3730 06.20.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 no virus found
Ikarus T3.1.1.8 06.20.2007 Trojan-Spy.Win32.Agent.hz
Kaspersky 4.0.2.24 06.20.2007 Email-Worm.Win32.Warezov.lp
McAfee 5057 06.20.2007 New Malware.n
Microsoft 1.2607 06.20.2007 Trojan:Win32/Stration.gen!dr
NOD32v2 2341 06.20.2007 a variant of Win32/Stration.XJ
Norman 5.80.02 06.20.2007 no virus found
Panda 9.0.0.4 06.20.2007 Suspicious file
Sophos 4.18.0 06.12.2007 W32/Strati-Gen
Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious
Symantec 10 06.20.2007 W32.Stration.CX@mm
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 MalwareScope.Worm.Warezov.1
VirusBuster 4.3.23:9 06.20.2007
Webwasher-Gateway 6.0.1 06.20.2007 Trojan.Crypt.XDR.Gen

Aditional Information
File size: 90684 bytes
MD5: d6146e712d3369a0db0c0f73a542c120
SHA1: 414509e80fc273e8999feb9dacef9355ff57d989
packers: UPACK
packers: UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "locadx3j.dll", received in VirusTotal at 06.20.2007, 21:04:10 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 Win32/Stration.worm.Gen
AntiVir 7.4.0.34 06.20.2007 WORM/Stration.Gen
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.20.2007 no virus found
BitDefender 7.2 06.20.2007 Win32.Warezov.ZA
CAT-QuickHeal 9.00 06.20.2007 no virus found
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 Win32.HLLM.Limar
eSafe 7.0.15.0 06.20.2007 Win32.Stration.CX
eTrust-Vet 30.8.3730 06.20.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 no virus found
Ikarus T3.1.1.8 06.20.2007 MalwareScope.Worm.Warezov.1
Kaspersky 4.0.2.24 06.20.2007 Email-Worm.Win32.Warezov.lp
McAfee 5057 06.20.2007 W32/Stration.gen@MM
Microsoft 1.2607 06.20.2007 Trojan:Win32/Stration.F!dll
NOD32v2 2341 06.20.2007 no virus found
Norman 5.80.02 06.20.2007 no virus found
Panda 9.0.0.4 06.20.2007 no virus found
Prevx1 V2 06.20.2007 no virus found
Sophos 4.18.0 06.12.2007 W32/Strati-Gen
Sunbelt 2.2.907.0 06.16.2007 no virus found
Symantec 10 06.20.2007 W32.Stration.CX@mm
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 MalwareScope.Worm.Warezov.1
VirusBuster 4.3.23:9 06.20.2007 no virus found
Webwasher-Gateway 6.0.1 06.20.2007 Worm.Stration.Gen

Aditional Information
File size: 24576 bytes
MD5: dc529c8d6762204ee5cb653168a5cbf1
SHA1: 9b646f11e1413fb676cd9cb3806e41ba1a21c621

Complete scanning result of "syncmgr.exe", received in VirusTotal at 06.20.2007, 21:04:20 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 no virus found
AntiVir 7.4.0.34 06.20.2007 Worm/Stration.HO
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.20.2007 no virus found
BitDefender 7.2 06.20.2007 Win32.Stration.Gen@mm
CAT-QuickHeal 9.00 06.20.2007 no virus found
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 Win32.HLLM.Limar
eSafe 7.0.15.0 06.20.2007 suspicious Trojan/Worm
eTrust-Vet 30.8.3730 06.20.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 Email-Worm.Win32.Warezov.pe
Ikarus T3.1.1.8 06.20.2007 no virus found
Kaspersky 4.0.2.24 06.20.2007 Email-Worm.Win32.Warezov.pe
McAfee 5057 06.20.2007 no virus found
Microsoft 1.2607 06.20.2007 no virus found
NOD32v2 2341 06.20.2007 a variant of Win32/Stration
Norman 5.80.02 06.20.2007 W32/Horst.gen33
Panda 9.0.0.4 06.20.2007 no virus found
Prevx1 V2 06.20.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
Sunbelt 2.2.907.0 06.16.2007 no virus found
Symantec 10 06.20.2007 no virus found
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 MalwareScope.Worm.Warezov.1
VirusBuster 4.3.23:9 06.20.2007 no virus found
Webwasher-Gateway 6.0.1 06.20.2007 Worm.Stration.HO

Aditional Information
File size: 184320 bytes
MD5: 925efd93fdcc79168b954f39972341f7
SHA1: 0510ee34df7a66e4dcb62f8b8934a85a92814895
packers: UPX
packers: UPX
packers: UPX

Complete scanning result of "ddemwmad.exe", received in VirusTotal at 06.20.2007, 21:04:07 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 Win32/Stration.worm.Gen
AntiVir 7.4.0.34 06.20.2007 Worm/Warezov.LP.1
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.20.2007 I-Worm/Stration
BitDefender 7.2 06.20.2007 Win32.Warezov.ZB
CAT-QuickHeal 9.00 06.20.2007 (Suspicious) - DNAScan
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 Win32.HLLM.Limar
eSafe 7.0.15.0 06.20.2007 Suspicious Trojan/Worm
eTrust-Vet 30.8.3730 06.20.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 no virus found
Ikarus T3.1.1.8 06.20.2007 Backdoor.Win32.Rbot.AJU
Kaspersky 4.0.2.24 06.20.2007 Email-Worm.Win32.Warezov.lp
McAfee 5057 06.20.2007 New Malware.n
Microsoft 1.2607 06.20.2007 no virus found
NOD32v2 2341 06.20.2007 probably a variant of Win32/Stration.XJ
Norman 5.80.02 06.20.2007 no virus found
Panda 9.0.0.4 06.20.2007 Suspicious file
Prevx1 V2 06.20.2007 no virus found
Sophos 4.18.0 06.12.2007 Mal/Packer
Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious
Symantec 10 06.20.2007 no virus found
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 MalwareScope.Worm.Warezov.1
VirusBuster 4.3.23:9 06.20.2007
Webwasher-Gateway 6.0.1 06.20.2007 Worm.Warezov.LP.1

Aditional Information
File size: 79706 bytes
MD5: 83d9d7df0bc7121c8276eea594ddd7f6
SHA1: 813fcda76a5979a1c074818b3c2a74dce1475d62
packers: UPACK
packers: UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

-->Message édité par Malekal_morte le 22/06/2007 07:35:40<--

-------
Supprimer les popups de pubs intempestives
Sécuriser votre ordinateur

alerter

éditer

répondre

lien ragle 20 juin 2007 à 23h21

c'est qd meme terrible...plus c'est louche...plus ça passe.

Je note l'info pour les desinfections à venir alors

Merci à toi.

:jap:

alerter

éditer

répondre

yannikle 21 juin 2007 à 01h09

Et encore une fois, Avast! ne voit rien. Cela fait plusieurs fois, et c'est à chaque fois pour les virus sur MSN. C'est dommage...

-------

alerter

éditer

répondre

Malekal_mortele 21 juin 2007 à 08h17

lol si c'était que les virus MSN...
http://forum.malekal.com/ftopic3528.php
http://forum.malekal.com/ftopic3123.php

-------
Supprimer les popups de pubs intempestives
Sécuriser votre ordinateur

alerter

éditer

répondre

jo1108le 21 juin 2007 à 14h16

moi g avast.
EDITION MODERATEUR : Règle du forum à respecter :

Crée toi ton propre sujet !
de plus le langage sms est interdit ici !!!

Veuillez lire l'article suivant :
http://forum.telecharger.01net.com/telecharger/securite_virus_et_assimiles/a_(...)

Merci d'en prendre connaissance.

-->Message édité par naheulbeuk le 21/06/2007 16:02:09<--

alerter

éditer

répondre

bibou0007le 21 juin 2007 à 20h48