Avast WEBforum
Other => Viruses and worms => Topic started by: RejZoR on August 24, 2004, 12:01:31 AM
-
I sent one sample on Fri, 6 Aug 2004 at 21:21:39 and it's still not added.
It was a pretty nasty one which is hard to track since it perfectly hides itself,even from search function.
Can this submission be confirmed?
I'd also like to know if my mail is not blocked by your spam filters.
Thx
-
Same here...
I always sent samples to Alwil and it seems that the samples doesn't get added unless I sent it a few times...
Even though Alwil might not be able to respond to virus submission mails, I think some kind of notice is good.
RejZoR,
Heh... I got one that does too... A lot of viruses does these days I guess.
-
Yeah it took my long time to capture it. I had to use low level disk viewer to store it in archive. Otherwise it was impossible. Even if i entered the path manually into CMD i always got file does not exist altough it was there.
Also lots of online scanners had problems detecting it.
-
Interesting... :)
In CMD, have you tried a ATTRIB command on it?
-
I bet Total Commander (http://www.ghisler.com) would be able to show the file to you. And I know for sure that you can see it with the cmd. Just have to use some switches to show hidden files and you must be logged in as administrator (not as user with admin rights, but the real administrator)
You may have to take ownership of the file/folder first, but it will show.
-
FMI: What Malware was it? KAV name prefered.
-
And I know for sure that you can see it with the cmd. Just have to use some switches to show hidden files and you must be logged in as administrator (not as user with admin rights, but the real administrator)
Not really. There are viruses that hook some low-level system calls (when they're active, of course) - so you certainly won't see them with cmd, or any other ordinary Windows tool.
-
isn't that one of NTFS ADS viruses ?
would be interesant, can i ask you for one "example" piece of this virus / whatever it is ?
and about viruses i got mixed results, some of trojans were added immediately, for some viruses/trojans/malware i still wait to be added ...
system of reply confirmation "Your email with file(s) was received an will be examined ...
+
maybe after detection is added , return another email with info " virus/trojan/makware in file submitted by You at "date : time" was added to VPS "number"
any thoughts ?
-
isn't that one of NTFS ADS viruses ?
would be interesant, can i ask you for one "example" piece of this virus / whatever it is ?
No, it's not. An example... for instance the backdoor coming with Mydoom.Q.