Threat named AntivirusXP - Page 6
Page 6 of 6 FirstFirst ... 456
Results 51 to 56 of 56

Thread: Threat named AntivirusXP

  1. #51
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,242
    Quote Originally Posted by morganlefay
    VM loves resources.....and depending on the OS you are running it on...and the OS you are runnning in the VM.....oh and lets not forget the applications and services on both machines.....you need a lot of fricken resources
    Ain't that the truth. I finally sprung for a $2G's of new hardware, a dual-core
    desktop and a laptop, the same. 2GB's RAM each. Nothing extraordinary by
    today's standards, but after running other people's throwaways for years
    (philosophical choice), I no longer "wrestle" with VM's as I once did.

    Quote Originally Posted by morganlefay
    All MS Oses........and far too fricken many services and applications running on both....can be tweaked. (I didnt configure it...would like to though )
    For now, I'm running Workstation v.5.5 on a ThinkPad T61. I can run two VM's,
    say Fedora and W2K, on top of the XP host and this thing does not skip a beat.
    Linux makes a better host than Windows though, but I'm not there yet. When
    I told one of my co-workers I'm running VM's on Windows, my character apparently
    came into question (not the first time!).
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  2. #52
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Well im running 4gigs at home on vista and dont seem to have a problem running VM with mandrake.

    Still figuring out how to isntall anything on linux. Why do you okes make it so hard :P

    Nihil Panda should detect the malware now due to the files I sent however I think they are randomized so I dont know so much.

    I am actually considering taking off Panda GP 2009 at home and get something that can detect this.

    Is there something I an run in conjunction with this ? Worm Guard?

    EDITNihil can you give me a link to WG as all the ones I tried, softpeadia etc gets corrupted on downloading.

    Was trying to get the 4.0 trial but any version that works would be great.

    Alternatively, zip and send to me

    Thanks.
    Last edited by Cider; August 22nd, 2008 at 09:19 AM.
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

  3. #53
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Please go here and have a look around. Don't forget to check out the free stuff as well, there are some interesting little utilities

    http://www.diamondcs.com.au/

    Make sure that you get RegistryProt.

    Well im running 4gigs at home on vista and dont seem to have a problem running VM with mandrake.
    The problem is with machines at the 1Gb level. That was a typical configuration for an XP home use machine, and still is for bottom end Vista boxes. Less than that and you should not even think about VM and performance unless you are running older OSes for research or legacy support.

    Please remember that VM was never designed to be a security measure, unlike sandboxes.

    Nihil Panda should detect the malware now due to the files I sent however I think they are randomized so I don't know so much.
    Well the file names certainly seem to be randomly generated. That is why an internet search doesn't come up with anything.

    I don't know about the rest of it though. Some malware is polymorphic, and changes its code with each iteration to obfuscate it from anti-malware scanners. It should still be detectable though, either because parts of the code must remain constant for it to work, or because of what it tries to do.

    The latter should be picked up by behavioural or heuristic scanning.

    If I was purchasing stuff I would buy SpyBot and/or A-Squared. Wormguard is a bit too specialist, although ideal for some of my clients.
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  4. #54
    Junior Member
    Join Date
    Aug 2008
    Posts
    1

    There's a good explanation of this at...


  5. #55
    Banned
    Join Date
    Aug 2001
    Location
    Yes
    Posts
    4,429
    Thanks, phoe - that's a very nice write-up!

    I just submitted the "thing" to Virustotal, and there's still (after how many months now???) AV software that doesn't pick it up... And yes, Panda is one of the ones that doesn't pick it up...

  6. #56
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Last edited by Cider; August 25th, 2008 at 07:32 AM.
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

Similar Threads

  1. Network Security made easy?
    By Tiger Shark in forum Microsoft Security Discussions
    Replies: 5
    Last Post: January 14th, 2005, 07:47 PM
  2. Apache update opens the door to a bigger threat
    By moxnix in forum *nix Security Discussions
    Replies: 2
    Last Post: October 23rd, 2004, 05:28 PM
  3. Heads Up - Cumulative Patch for Microsoft SQL Server (815495)
    By CXGJarrod in forum Microsoft Security Discussions
    Replies: 0
    Last Post: July 23rd, 2003, 10:00 PM
  4. US - Homeland Security Threat Level
    By sirrahj in forum Cosmos
    Replies: 17
    Last Post: February 15th, 2003, 12:42 AM
  5. Cat3 threat upgrade:VBS.VBSWG.AQ
    By zigar in forum AntiVirus Discussions
    Replies: 0
    Last Post: June 6th, 2002, 03:57 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides