четверг, 7 августа 2008 г.

Antivirus-XP-2008 BlackHat Adwords Campaign (to be continued)




As I wrote about Rogue Anti-Spyware adverts on Google Adwordsthere was a rogue antispyware Anti-Virus-XP-2008,which have an Google Adwords campaign on Google.
So after that on the next day I checked it and I found nothing related to this. And what can I see now? New domain www.xp-2008.com,updated exe-file (now in .zip archive)...and the same trojan-downloader into this.
Virustotal info:
File Antivirus-XP-2008.zip received on 08.07.2008 13:35:34 (CET)
Current status: finished
Result: 15/36 (41.67%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2008.8.7.0 2008.08.07 -
AntiVir 7.8.1.19 2008.08.07 TR/Dldr.Small.AAJM.18
Authentium 5.1.0.4 2008.08.07 -
Avast 4.8.1195.0 2008.08.06 Win32:Trojan-gen {Other}
AVG 8.0.0.156 2008.08.07 Downloader.Generic7.ADFI
BitDefender 7.2 2008.08.07 -
CAT-QuickHeal 9.50 2008.08.06 (Suspicious) - DNAScan
ClamAV 0.93.1 2008.08.07 -
DrWeb 4.44.0.09170 2008.08.07 -
eSafe 7.0.17.0 2008.08.06 Suspicious File
eTrust-Vet 31.6.6017 2008.08.07 -
Ewido 4.0 2008.08.07 -
F-Prot 4.4.4.56 2008.08.06 -
F-Secure 7.60.13501.0 2008.08.07 Trojan-Downloader.Win32.Small.aajm
Fortinet 3.14.0.0 2008.08.07 W32/PolySmall.BP!tr
GData 2.0.7306.1023 2008.08.07 Trojan-Downloader.Win32.Small.aajm
Ikarus T3.1.1.34.0 2008.08.07 Trojan.Win32.Busky.EI
K7AntiVirus 7.10.405 2008.08.07 -
Kaspersky 7.0.0.125 2008.08.07 Trojan-Downloader.Win32.Small.aajm
McAfee 5355 2008.08.06 -
Microsoft 1.3807 2008.08.07 Trojan:Win32/Busky.EI
NOD32v2 3336 2008.08.07 a variant of Win32/TrojanDownloader.FakeAlert.BP
Norman 5.80.02 2008.08.06 -
Panda 9.0.0.4 2008.08.06 -
PCTools 4.4.2.0 2008.08.06 -
Prevx1 V2 2008.08.07 Fraudulent Security Program
Rising 20.56.32.00 2008.08.07 -
Sophos 4.31.0 2008.08.07 -
Sunbelt 3.1.1537.1 2008.08.07 -
Symantec 10 2008.08.07 Downloader.MisleadApp
TheHacker 6.2.96.393 2008.08.04 -
TrendMicro 8.700.0.1004 2008.08.07 -
VBA32 3.12.8.2 2008.08.06 -
ViRobot 2008.8.7.1328 2008.08.07 -
VirusBuster 4.5.11.0 2008.08.06 -
Webwasher-Gateway 6.6.2 2008.08.07 Trojan.Dldr.Small.AAJM.18

And all the first places...
Автор: на

Комментариев нет:

Отправить комментарий

Подписаться на: Комментарии к сообщению (Atom)