Outbreak response.

Discussion in 'other anti-virus software' started by SDS909, Aug 13, 2005.

Thread Status:
Not open for further replies.
  1. SDS909

    SDS909 Registered Member

    Joined:
    Apr 8, 2005
    Posts:
    333
  2. Firefighter

    Firefighter Registered Member

    Joined:
    Oct 28, 2002
    Posts:
    1,670
    Location:
    Finland
    What is that "potentially unwanted program" with McAfee in VirusTotal? Is that heuristics too?

    Best regards,
    Firefighter!
     
  3. liang_mike

    liang_mike Registered Member

    Joined:
    Mar 12, 2004
    Posts:
    91
    Location:
    Canada
    That is just McAfee's category for non-virus threats, such as adware and spyware.
     
  4. VikingStorm

    VikingStorm Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    387
    Did you actually check it with VirusTotal first?
    Because I noticed some of the missing companies like Panda, and McAfee detect it. I just looked at the McAfee sig updates, and they haven't had an update for that malware in the last couple days.

    Also, don't viruses have outbreaks and not trojans (or borderline adware I guess)?
     
  5. SDS909

    SDS909 Registered Member

    Joined:
    Apr 8, 2005
    Posts:
    333
    It's a trojan downloader, i've lately often seen some AV's classify TrojanDownloaders as Adware, which I feel is incorrect. This launches a process and proceeds to infect your system with Trojans - I wouldn't classify that as adware by any sense of the word.

    I actually didn't send it to Virustotal the first day, so it looks like McAfee possibly detected it with heuristics as a variant, which in that case, VBA32 and McAfee would have offered 0-hour detection.
     
  6. SDS909

    SDS909 Registered Member

    Joined:
    Apr 8, 2005
    Posts:
    333
    3 Days after Outbreak and submission to all companies:

    http://www.boredmofo.com/downloads/outbreak2.JPG

    I applaud the companies that have responded to this threat. I'm really impressed with VBA32's zero-hour detection of it, and Panda+Kaspersky detection within a couple hours after I sent it in.

    I'm pretty disappointed with some companies and their lack of response.
     
  7. NGRhodes

    NGRhodes Registered Member

    Joined:
    Jun 23, 2003
    Posts:
    2,331
    Location:
    West Yorkshire, UK
    Thanks for sharing your findings.
    Would be interesting to see a few results to see any trends though.

    Also how serious is this threat, does that reflect response times ?
     
Thread Status:
Not open for further replies.