f-secure no detek flashback
list sampel http://dns-bh.sagadc.org/domains.txt
sampel
vxvhwcixcxqxd.com flashback contagiodump.blogspot.com 20120412 # vxvhwcixcxqxd.net flashback contagiodump.blogspot.com 20120412 # vyqhdtnsfrie.com flashback contagiodump.blogspot.com 20120412
Comments
-
Hi cmpunk,
If you found a virus sample, kindly submit the sample to our Sample Analysis System.
- Please Signup for an account then log on at Sample Analysis System.
- Choose Submit a new Sample
- Choose Malware (Viruses, Trojans...) for Sample type.
- Follow the on screen instructions to complete.
You will receive a ticket titled [FS-TXXXXXX] from our Security Respond Lab after you submitted the sample on F-Secure Sample Analysis System. Our Security Response Lab will work on it and get back to you directly with the results.
Thanks.
Best Regards,
Jayson -
Hi
You must be running a Mac OS X.
It could be a new Flashback Virus! (Flashback virus comes in many version or variants)
It's a good think that you inform us in the forum!
Like Jayson said. I strongly suggesting that you send the URL sample to F-Secure SAS.
Create an account from SAS from this link.
http://www.f-secure.com/en/web/labs_global/submit-samples/sas
And submit the URL or virus samples to the above site.
Once you have send the URL or virus sample to the F-Secure SAS, they will update the detection.
In the mean time you can view here for solutions. (Check the link below to see if there are similarities!)
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_a.shtml
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_b.shtml
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_c.shtml
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_i.shtml
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_k.shtml
http://reviews.cnet.com/8301-13727_7-57413811-263/flashback-malware-removal-tool-roundup/
If you cannot find any of this solutions. Then I suppose you must got the new flashback virus!
Make sure you submit to the F-Secure SAS so that the guys there can help you out.
