Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Homicide-case#259.exe


  • Please log in to reply
13 replies to this topic

#1 donnereats

donnereats

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 09 June 2015 - 06:47 PM

Hello all,

 

Vipre found Trojan Homicide-case#259.exe in my files (Trojan.Win32.Generic!BT), but Panda and Bitdefender are not picking this up.  I also searched for the topic, but could not find any useful information.  Is this malware?  If yes, suggestions?



BC AdBot (Login to Remove)

 


#2 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 10 June 2015 - 01:31 AM

Hi there,

Can you upload the file to VirusTotal and post the results?

#3 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 10 June 2015 - 06:03 AM

I am actually unable to find the file in my system.  I had downloaded by phone data and that is when Vipre picked it up, but I can't see it in the files.  Suggestions?



#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 10 June 2015 - 06:04 AM

Vipre probably quarantined it.

Can you check out the detection name?

#5 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 10 June 2015 - 06:10 AM

Detection name?  Also, I have quarantines in the other 2 programs (sorry, I am on free virus programs right now).  Just for informational value, do you want to see those files?  They all came with the download from my phone. 



#6 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 10 June 2015 - 06:11 AM

Yes, if it is possible.

Edit: Detection name is how an antivirus calls a malware. In your case Vipre called it Trojan.Win32.Generic!BT.

Edited by Alexstrasza, 10 June 2015 - 06:12 AM.


#7 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 10 June 2015 - 06:30 AM

Will do!  Will post this afternoon.  Thank you!



#8 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 10 June 2015 - 06:32 AM

Just in case... Trojan.Win32.Generic!BT is a generic name used by Vipre. Files with that detection can be malicious or not - the best way to check is to submit it to VirusTotal or a similar service.

#9 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 10 June 2015 - 04:50 PM

Bitfinder files

download het formulier-20120919-220903.html.7918.gzquar

Antivirus Result Update Avast HTML:Bankfraud-BVZ [Trj] 20140829 Cyren HTML/PayPal.DC 20140829 F-Prot HTML/PayPal.DC 20140829 Sophos Mal/Phish-A 20140829

 

download het formulier-20121127-004807.html.20613.gzquar

I can't scan this file

 

Panda Scan:

All files quarantined by Panda appear harmless according to Virus Total

 

My biggest concern is that the Homicide file is nowhere to be found, while the other files picked up by Vipre were easily found.



#10 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 10 June 2015 - 04:52 PM

Can you check Vipre's quarantine?

Also, can you copy the link of the VirusTotal result? It'll be easier for me to read.

#11 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,090 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:06:48 PM

Posted 10 June 2015 - 06:04 PM

If you're not sure, this VIPRE topic shows how to open and view quarantined items...disregard the removal.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#12 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 11 June 2015 - 05:47 PM

I have nothing left in quarantine in Vipre and the only other 2 items are in Bitdefender Quarantine, which are the ones I listed earlier.  Other than that, the other files are gone, other than Vipre History.  If I find anything helpful, I will let you know.  Thank you for your assistance.



#13 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:12:48 AM

Posted 11 June 2015 - 05:49 PM

If you need help again, do not hesitate to create a new topic.

Glad to know we could help :)

You may wish to read some guides written by Bleeping Computer staff on safe computing practices:

Best Practices for Safe Computing - Prevention of Malware Infection
How Malware Spreads - How did I get infected
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs)

Regards,
Alex

#14 donnereats

donnereats
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:48 PM

Posted 11 June 2015 - 05:52 PM

Thanks Alex!

 

This all happened on the same day that I changed to a new SD card and downloaded from my phone.  I now have added AVL to my phone :)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users