|
-
May 26th, 2004, 08:35 PM
#1
Malware doubts
How do programs cause an AV/firewall/system processes to shut down or get disabled?
-
May 26th, 2004, 08:37 PM
#2
as long as you know the process that is running, you could easily write a script to stop the process.
-
May 26th, 2004, 08:37 PM
#3
viruses/worms have it built in their code to disable them. If the AV is not updated to catch that particular worm/virus, and the virus infects the computer, it will disable it.
-
May 26th, 2004, 08:37 PM
#4
Hmm...I don't know, but I'm going to guess. Modifications to the Windows registry perhaps?
-
May 26th, 2004, 08:48 PM
#5
So a virus would be dependent on the OS version as well as the versions of the other programs like AV's or firewalls?umm and if it were,wouldnt it take a LOT of code just to disable certain features?
-
May 26th, 2004, 08:51 PM
#6
Mainly by knowing what the process is called and just shutting it down. Most don't use rocket science
-
May 26th, 2004, 09:09 PM
#7
some virus ARE version dependent. Or even language dependent (works on Russian Windows, but not on English version).
About shutdown services (windows or unix) is quite easy as nihil stated. All of them has standard name. I.E. you can find all NIS process and kill them. Or even delete them. Even on Unix you can kill those process (is special with you got malware while logged as an admin)
To spread evil, they dont want to infect ALL systems, just 1% will cause a big problem 
Meu sítio
FORMAT C: Yes ...Yes??? ...Nooooo!!! ^C ^C ^C ^C ^C
If I die before I sleep, I pray the Lord my soul to encrypt. If I die before I wake, I pray the Lord my soul to brake.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
