iexplorer.exe / msconfig.exe saanut tartunnan?

Discussion in 'Virukset ja haittaohjelmat' started by enokoteit, Aug 10, 2008.

  1. enokoteit

    enokoteit Regular member

    Joined:
    Jul 18, 2007
    Messages:
    184
    Likes Received:
    0
    Trophy Points:
    26
    Onko jokainen iexplorer.exe ja msconfig.exe saanut tartunnan?

    Lähetin kaikki iexplorer.exe:t ja msconfig.exe:t Virustotalliin ->
    Ainoastaan Ewido(AVG) löysi nuo
    Worm.Lover.A (iexplorer.exe:t) ja
    Worm.Brontok.cu (msconfig.exe:t)

    Onko jokin False Positive???


    AVG-AS reportti:
    ---------------------------------------------------------
    AVG Anti-Spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 13:44:26 10.8.2008

    + Scan result:



    C:\WINDOWS\ServicePackFiles\i386\msconfig.exe -> Worm.Brontok.cu : Cleaned with backup (quarantined).
    C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe -> Worm.Brontok.cu : Cleaned with backup (quarantined).

    C:\Program Files\Internet Explorer\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\$hf_mig$\KB947864-IE7\SP2QFE\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\$hf_mig$\KB950759-IE7\SP2QFE\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\SoftwareDistribution\Download\0f41f3eefc80102d446b8569409710fb\SP2GDR\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\SoftwareDistribution\Download\0f41f3eefc80102d446b8569409710fb\SP2QFE\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\SoftwareDistribution\Download\e5ec8653cde82bf774bd3f2e4fb1b3c3\SP2GDR\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\SoftwareDistribution\Download\e5ec8653cde82bf774bd3f2e4fb1b3c3\SP2QFE\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\ie7updates\KB950759-IE7\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).
    C:\WINDOWS\system32\dllcache\iexplore.exe -> Worm.Lover.a : Cleaned with backup (quarantined).


    ::Report end
     
    enokoteit, Aug 10, 2008
    #1
  2. Onkonoin

    Onkonoin Regular member

    Joined:
    Jul 20, 2004
    Messages:
    363
    Likes Received:
    0
    Trophy Points:
    26
    Minun AVG-ohjelmani ilmoitti myös että, koneella on nuo samat madot.
    Sopiiko että kysyn tässä samassa ketjussa myös neuvoja tuohon ongelmaan.
    Olisiko kyseessä AVG:n virhe, vai onko kyseessä todellinen uhka.
    Laitoin nuo karanteeniin kuten AVG suositteli, mutta sen seurauksena
    IE lakkasi toimimasta. Käyttikseni on XP-Pro.
     
    Onkonoin, Aug 11, 2008
    #2
  3. enokoteit

    enokoteit Regular member

    Joined:
    Jul 18, 2007
    Messages:
    184
    Likes Received:
    0
    Trophy Points:
    26
    http://freeforum.avg.com/read.php?9,141817,141817#msg-141817

    Kyseessä olis siis False Positive.
    Tuosta Linkistä kopioitu viesti:

    Re: worm.lover.a etc.
    Posted by: juergen_r - AVG Team (IP Logged)
    Date: August 10, 2008 05:32PM

    Hello,

    the detections of iexplore.exe and msconfig.exe were false positives but has been fixed some minutes ago with a new small Update for the ewido/AVG Anti-Spyware.

    We are really sorry for the delay in fixing this false positive and any inconvenience.

    EDIT:
    Please restore the false detected iexplore.exe and msconfig.exe files from the quarantine.

    Edited 1 times. Last edit at 08/10/08 05:34PM by juergen_r.


    Scannasin uudestaa nuo tiedostot ja nyt AVG-AS ei herjaa niistä mitään.
     
    Last edited: Aug 14, 2008
    enokoteit, Aug 14, 2008
    #3

Share This Page