Saleen software
      Web Downloader
by
Saleen Software Solutions
     Professional software development



   Saleen Software > Forums > Web Downloader >

  

0
TR/Crypt.XPACK.Gen gefunden in der aktuelle webdownloader datei
Closed
   

>> Post a reply / Write a message here
    saleen support  13/Feb/15 10:03:01

Fixed. Closing

 
    saleen support  28/Sep/14 06:44:22

    saleen support  28/Sep/14 05:34:38

    saleen support  26/Sep/14 06:52:45

Apparently 10 of the reports use the same threat identifier "20140926"

which mean they all somehow share information.
Anyone has any information which one of them is a bigger player, so that  I should contact.

F-Secure maybe?

update: I contacted F-Secure and Avast. 
Also AVG two days ago.


 
    saleen support  26/Sep/14 06:46:55

installer report as of 26sep2014

Ad-Aware Trojan.Generic.11808674 20140926 
AegisLab Troj.Dropper.W32.Delf 20140926 
Avast Win32:Dropper-gen [Drp] 20140926 
BitDefender Trojan.Generic.11808674 20140926 
Comodo UnclassifiedMalware 20140926 
Emsisoft Trojan.Generic.11808674 (B) 20140926 
F-Secure Trojan.Generic.11808674 20140926 
GData Trojan.Generic.11808674 20140926 
MicroWorld-eScan Trojan.Generic.11808674 20140926
TrendMicro-HouseCall Suspicious_GEN.F47V0913 20140926 
nProtect Trojan.Generic.11808674 20140925 

executable report as of 26sep2014
Avast Win32:Malware-gen 20140924 
Avira TR/Crypt.XPACK.Gen 20140924
Ikarus Trojan.Crypt 20140924 
Qihoo-360 HEUR/Malware.QVM03.Gen 20140924



 
    saleen support  26/Sep/14 06:46:08

OK guys.
It is getting worse from what I can see in the reports.
More minor antivirus programs report issues.

However please see that AVG which I contacted has removed the threat, at least this is what the report tells me.

I can personally guarantee that all my code is clean.
I am using a new obfuscator since the last release called ConfuserEx
(yck1509.github.io/ConfuserEx/). Apparently many trojan use the same obfuscator.

Please stand by your favorite downloader, in these difficult times it is facing

I will keep you updated.




 
    Renan R  25/Sep/14 03:22:16

For the moment I've added webdownloader.exe as an exception in AVG, making it ignore the so called Trojan.

 
    Renan R  25/Sep/14 03:14:39

I'm running AVG. It detects the trojan IDP.TROJAN.E13F31C in webdownloader.exe itself.

 
    saleen support  25/Sep/14 01:02:40

here is the latest analysis of 

WebDownloader build 361 Installer

AVG and Avira show it, as clean.

WebDownloader build 361 Program

AVG shows it, as clean.


Can someone with AVG confirm that all is well?

I also contacted Avast


 
    saleen support  24/Sep/14 05:53:53

I contacted avg and waiting for their reply.
The software is clean.
See for yourself at virustotal.com

Will post the direct url later.



 
12

-Guest posting: enabled

  Copyright (c) 2007-2017 Saleen Software     20170818kqo3cnfeixxidgbtv4tfdb3q (-1)   2017-08-18 11:35:26



4.6