Re: Possible new exploit... Have you seen these?



Very interesting, my question how did you catch it form your banks website?
Are your patched to date or missing some?


"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:ePfraeWaGHA.5108@xxxxxxxxxxxxxxxxxxxxxxx
From: "Tom Geairn" <tgeairn@xxxxxxxxxxxxxxxxxxxxxxxx>


| Thanks again Dave-
|
| Agreed, no doubt that this is viral. I did not do full scans against
the
| machine, just scanned the selected directory where the files are.
|
| I also submitted the files to the virustotal website. Results are the
end
| of reply. Since Panda and CA both showed some interest in the files, I
went
| to their websites and did online scans. The CA site allows specifying a
| directory, and it showed all files as clean. The Panda site seems to
want
| to scan everything, that scan also shows no viruses (it does show some
| tracking cookies, but that's not what we're here for).
|
| VirusTotal Results:
|

< snip >

Well they look like new variants !

It is interesting that most came as...

eTrust-Vet -- Win32/Sinteri

It also explains whuy Sophos and McAfee did not catch this.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm




.