OrganizedChaos
Diamond Member
- Apr 21, 2002
- 4,524
- 0
- 0
looking at the BitDefenser site, does the free version 7.2 under "downloads" work as well as the paid version? if so, why is it for free?
Norton Antivirus 2003 with latest definitions (as of this morning) caught 5 out of 7. It missed Backdoor.ServU.B.exe and Virtool.HiddenRun.B.exe.
I appreciate the effort you're making to collect data on AV software effectiveness. Though, I have one suggestion... If you plan to find more virii for us to test our AV software with, could you please package the new ones in a virii2.zip? For those of us on dialup, it would be more efficient and time-saving if we could avoid downloading the previously-tested virii along with the new ones.
I appreciate the effort you're making to collect data on AV software effectiveness. Though, I have one suggestion... If you plan to find more virii for us to test our AV software with, could you please package the new ones in a virii2.zip? For those of us on dialup, it would be more efficient and time-saving if we could avoid downloading the previously-tested virii along with the new ones.
Update for me:
TDS-3 Report with definitions updated 2-17-04:
Scan Control Dumped @ 11:23:39 17-02-04
Positive identification (in archive): RAT.Iroffer 1.2b17
File: backdoor.iroffer.1217.exe (In f:\virii.zip)
Generic Detection (in archive): Possible trojan with ICQ-notify capability
File: backdoor.server.generic.exe (In f:\virii.zip)
Positive identification (in archive): Trojan.BAT.KillAV.h Dropper.a
File: trojan.dropper.kifer.b.exe (In f:\virii.zip)
Positive identification (in archive): Hidden32 Trojan Tool
File: virtool.hiddenrun.b.exe (In f:\virii.zip)
Positive identification (in archive): Worm.Torvil.d
File: win32.torvil.b.exe (In f:\virii.zip)
TheCleaner 4.0 Pro updated 2-17-04:
Filename Trojan Action
-------- ------ ------
f:\virii.zip: Backdoor.Iroffer.1217.exe iroffer Report Only
f:\virii.zip: BAT.Kifer.B.bat Redwa Report Only
f:\virii.zip: Trojan.Dropper.Kifer.B.exe Redwa Report Only
f:\virii.zip: Virtool.HiddenRun.B.EXE HideWindow Report Only
McAfee Viruscan Enterprise 7.1 latest defs:
When I right-click scanned the zip, I was told to delete it because virii were found. When I unzipped all the files, McAfee halted me and told me that it found Backdoor.Server.Generic.exe and Win32.Torvil.B.exe. So I guess it only recognizes those two.
So I am still happy with my defense system. Please someone let me know if BitDefender free version is good as well. Thanks for the thread!
TDS-3 Report with definitions updated 2-17-04:
Scan Control Dumped @ 11:23:39 17-02-04
Positive identification (in archive): RAT.Iroffer 1.2b17
File: backdoor.iroffer.1217.exe (In f:\virii.zip)
Generic Detection (in archive): Possible trojan with ICQ-notify capability
File: backdoor.server.generic.exe (In f:\virii.zip)
Positive identification (in archive): Trojan.BAT.KillAV.h Dropper.a
File: trojan.dropper.kifer.b.exe (In f:\virii.zip)
Positive identification (in archive): Hidden32 Trojan Tool
File: virtool.hiddenrun.b.exe (In f:\virii.zip)
Positive identification (in archive): Worm.Torvil.d
File: win32.torvil.b.exe (In f:\virii.zip)
TheCleaner 4.0 Pro updated 2-17-04:
Filename Trojan Action
-------- ------ ------
f:\virii.zip: Backdoor.Iroffer.1217.exe iroffer Report Only
f:\virii.zip: BAT.Kifer.B.bat Redwa Report Only
f:\virii.zip: Trojan.Dropper.Kifer.B.exe Redwa Report Only
f:\virii.zip: Virtool.HiddenRun.B.EXE HideWindow Report Only
McAfee Viruscan Enterprise 7.1 latest defs:
When I right-click scanned the zip, I was told to delete it because virii were found. When I unzipped all the files, McAfee halted me and told me that it found Backdoor.Server.Generic.exe and Win32.Torvil.B.exe. So I guess it only recognizes those two.
So I am still happy with my defense system. Please someone let me know if BitDefender free version is good as well. Thanks for the thread!
Originally posted by: jliechty
I appreciate the effort you're making to collect data on AV software effectiveness. Though, I have one suggestion... If you plan to find more virii for us to test our AV software with, could you please package the new ones in a virii2.zip? For those of us on dialup, it would be more efficient and time-saving if we could avoid downloading the previously-tested virii along with the new ones.
Yeah, no problem. I doubt I'll download any more viruses, but if I do, I'll make a new file as you described.
McAfee cleaned 2/7 immediately upon extraction.
Then it asked me to delete 3 more because they could not be cleaned.
Then it asked me to delete 3 more because they could not be cleaned.
I downloaded the virus file. I unzipped to desktop. I scanned for viruses. AVG found 3 of the 5 that made it through the extraction. I was left with 2 viruses. I Shift Deleted last 2 viruses. I shift Deleted zip file.
Point is those are the steps I took. Now AVG says I have 5 infected files that can not be removed??? How did they end up on my computer! Is AVG f?ing with me or is there really 5 infected files? I didn?t mess with any of the files after extracted. How do I get rid of them now?
Results of Complete Test, date and time 2/17/2004 14:28:26 :
Testing C:\ serial 58C8-1B09
C:\Documents and Settings\All Users\Application Data\Microsoft\NETWORK\Downloader\QMGR0.DAT Cannot open; not checked!
C:\Documents and Settings\All Users\Application Data\Microsoft\NETWORK\Downloader\QMGR1.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Win32.To.exe Virus identified I-Worm/Torvil.B
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Backdoor.exe Trojan horse BackDoor.Iroffer.F
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Backdoor.exe Trojan horse BackDoor.Amitis.AC
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\BAT.Kife.bat Could be infected BAT/HitOut
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Trojan.D.exe Trojan horse Dropper.Kifer.A
C:\Documents and Settings\LocalService\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\LocalService\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\Documents and Settings\NetworkService\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG Cannot open; not checked!
Test finished, duration 00:09:23.9 s
19356 objects tested, 5 found infected
Point is those are the steps I took. Now AVG says I have 5 infected files that can not be removed??? How did they end up on my computer! Is AVG f?ing with me or is there really 5 infected files? I didn?t mess with any of the files after extracted. How do I get rid of them now?
Results of Complete Test, date and time 2/17/2004 14:28:26 :
Testing C:\ serial 58C8-1B09
C:\Documents and Settings\All Users\Application Data\Microsoft\NETWORK\Downloader\QMGR0.DAT Cannot open; not checked!
C:\Documents and Settings\All Users\Application Data\Microsoft\NETWORK\Downloader\QMGR1.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Win32.To.exe Virus identified I-Worm/Torvil.B
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Backdoor.exe Trojan horse BackDoor.Iroffer.F
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Backdoor.exe Trojan horse BackDoor.Amitis.AC
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\BAT.Kife.bat Could be infected BAT/HitOut
C:\Documents and Settings\ERIC\Local Settings\Temporary Internet Files\CONTENT.IE5\WX27AJ0L\virii[1].zip:\Trojan.D.exe Trojan horse Dropper.Kifer.A
C:\Documents and Settings\LocalService\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\LocalService\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\Documents and Settings\NetworkService\NTUSER.DAT Cannot open; not checked!
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Cannot open; not checked!
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\WINDOWS\USRCLASS.DAT Cannot open; not checked!
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\WINDOWS\UsrClass.dat.LOG Cannot open; not checked!
C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG Cannot open; not checked!
Test finished, duration 00:09:23.9 s
19356 objects tested, 5 found infected
ViciouS,
Just clear your cache. It looks like the downloaded viruses are in your cache and need to be cleaned out. Disable your AVG autoprotect if needed, then go to IE and clear out your cache, and then reenable the AVG autoprotect. Then do a scan again.
Just clear your cache. It looks like the downloaded viruses are in your cache and need to be cleaned out. Disable your AVG autoprotect if needed, then go to IE and clear out your cache, and then reenable the AVG autoprotect. Then do a scan again.
It worked thanks! i thought maybe you where trying to get a bunch of jack ***'s to dl your viruses or somthing! my bad.
Heheh.. no..
My intention is to put all these anti-virus apps to a REAL test. Not some stupid speed test, or something else that makes it sound cool like VB100% passed. Those mean squat in the end. Well, if someone fails the VB test, then obviously that's bad But so many of them pass, there should be a better way to test these apps out. Just to prove VB100% doesn't mean crap.. just look at Panda's history. It passed way back in 2001, and that's it, and they haven't even had a VB test since June 2002. But yet Panda detected more viruses than most of the other apps I tested (and you guys tested).
Man, this thread is about to appear on the Hot Topics list! We just need like 5 or so more replies
I still have not purchased Bitdefender yet. Someone told me in this thread that Panda Titanium 2004 caught all seven viruses.. I don't really believe that, personally, since I tried it and it missed one. I was using a trial version, but it DID have the latest updates.
Can someone else with Titanium Antivirus 2004 do a scan??
I still have not purchased Bitdefender yet. Someone told me in this thread that Panda Titanium 2004 caught all seven viruses.. I don't really believe that, personally, since I tried it and it missed one. I was using a trial version, but it DID have the latest updates.
Can someone else with Titanium Antivirus 2004 do a scan??
avast caught one out of three in the original zip file, I think. Who knows how many it'll catch out of the seven...
BTW, as soon as a Panda Titanium 2004 owner gets a chance, please scan that zip file and post the results here. (no trial versions... I already tried the trial and it missed one, I want to know if the full version somehow will catch all 7) Thanks!
I'll go ahead and install avast on my sandbox machine and scan the 7 files and see what comes up. Give me a bit...
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 23K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
-
News NVIDIA and Intel to Develop AI Infrastructure and Personal Computing Products- Started by poke01
- Replies: 411
Facebook
Twitter