Skip to main content

Notice

Please note that most of the software linked on this forum is likely to be safe to use. If you are unsure, feel free to ask in the relevant topics, or send a private message to an administrator or moderator. To help curb the problems of false positives, or in the event that you do find actual malware, you can contribute through the article linked here.
Topic: Anti-virus Program (Read 13830 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

Anti-virus Program

Reply #50
Quote
OK, here are a few of the viruses/trojans showing up:

Win32/Slanper.B
Win32/IRC.Flooder.Wudp.A
Win32/KillAV.AF
Win32/Litmus.203.B
Win32.Worm.Deborm.B
IRC-Worm.Randon.1
Trojan.HideWindows.A

I reinstalled the trial version of NOD32 and it found these.  I deleted all the files because it could not clean them.  I've got the resident AMON program running, and it just alerted me that the Win32/Slanper.B trojan was just detected in a newly created file called msmgri32.ex located in my C:\WINNT\System32\ directory.  Now what in the hell is causing new files to be created that are infected with a trojan?  At least NOD32 found it and allowed me to delete the file right after it got created.  Am I going to have to reformat my drive again to stop this from happening?  Perhaps I should start a new thread since this is off the orginal topic....

Daffy

Edit:  typos/grammar

@Daffy

Before re-formatting again, and again you should consider scanning all of your disks/discs to find out if it is something you are installing which can be avoided.

As for removing the Trojans I'd recommend downloading a Trojan Horse scanner which is specifically written to deal with them:
Trojan Remover  -  http://www.simplysup.com/
The Cleaner - http://www.moosoft.com/

Trojan Remover can undo the damage that Trojans do.

Anti-virus Program

Reply #51
I hate to say it, but you should really start from scratch again.

Quote
or can this thing reside in memory and take over my system again after a reformat?


Some older viruses can infect the MBR, the Master Boot Record. This can be sometimes solved by using a virus-free boot disk with fdisk on it, and entering "fdisk /mbr" in DOS-mode. But none of your viruses seems to do that. Anyway, you should write down the most important settings (e-mail setup and all that stuff) and backup non-executable files (some file types such as .doc or .xls can be infected too, but make a backup anyway, you can scan them later from the clean system). Partition and format the drive, then do a basic installation + official patches from Microsoft + maybe graphics card drivers, so that you're not stuck at 800x600 60 Hz (but only download directly from NVIDIA or ATI).

Then the first thing is to install a good antivirus program, update virus definitions and do a complete system scan. If everything is ok, continue to download a personal firewall, such as Kerio, and other drivers, again only from the official manufacturer's pages. Scan each and every file after you downloaded it (most AV programs add a menu item for that in the explorer right-click context menu).

When you install an e-mail client, make sure that the AV program is set up to scan all incoming and outgoing mails. First rule for all programs: Don't copy them from any CD-Rs you burned in the past, you must consider all of them insecure until you can prove the opposite. Download the programs again from the internet and *scan each file*.

Anti-virus Program

Reply #52
Thanks Andavari and CiTay.  I'll give Andavari's suggestion a try first, and if all fails, I'm going to reformat this weekend.  Last night I was able to get NOD32 trialware to delete a lot of files, and then I installed Kerio firewall.  Alerts were going off all night long about this-and-that trying to get access to my computer and virus/trojans being detected.  This is the worst I've ever had a problem, and I'm really concerned about my MP3's, APE's and FLAC files on my D: drive getting infected.  Fortunately, this seems to be isolated on the C: drive only.  I think I'll disconnect my D: drive from the motherboard with all my critical files on it until I get this resolved.  Thanks again for the advice.  Wish me luck.....

Daffy

Anti-virus Program

Reply #53
i am thinking about getting bitdefender. there is just one thing i hope some of you can advise me on. looking at the differences between the standard and the pro edition, these are the three extra's in the pro:

1. Internet filtering     
2. Active Content Control
3. Privacy Control

now, my question is do i need these when i have kerio guarding my ports and use firebird for browsing?

thanks in advance

Anti-virus Program

Reply #54
Quote
i am thinking about getting bitdefender. there is just one thing i hope some of you can advise me on. looking at the differences between the standard and the pro edition, these are the three extra's in the pro:

1. Internet filtering   
2. Active Content Control
3. Privacy Control

now, my question is do i need these when i have kerio guarding my ports and use firebird for browsing?

thanks in advance

Kerio only does internet filtering as a firewall.
For active content control and privacy control, you'll have to add some extra software. Bitdefender can do that. Firebird or other browsers can't guarantee that with the same efficiency.
One last thing: remember that total privacy control is just an illusion and is often used as a commercial trap.

Anti-virus Program

Reply #55
Here is something interesting.

I downloaded an exe file from kazaa and did a scan using Norton Antivirus 2002.  It reported that it was infected with some w32. virus but was unable to disinfect it.  The other alternative was delete

Then I scanned the file using f-prot for DOS.  F-prot also found the same virus and asked if I wanted to disinfect it.  I chose yes and it disinfected it.  I rescanned using Norton Antivirus and the file came up clean!!

So F-prot for DOS actually did something that Norton couldn't do. 

Anti-virus Program

Reply #56
So, I was using NAV2003, but I've just decided to change because NAV2003 was a memory hoarder and memory is something I can't spare at this moment.  Apparently, it is also not as good as others and I hate its stupid ccApp. I would use Kaspersky, but I've read that it also uses quite a bit of system resources, so I'll stay away from it until I get the chance to buy more memory for my laptop.
I am left with two that seem to be very good and not so memory hungry: NOD32 and BitDefender. It seems that BitDefender is still a litttle bit better than NOD32, but if NOD32 uses significantly less memory, I would like to give it a tray (hehe, I meant try, although 'tray' is also a good pun).
Hope that someone with experience with both AVs can help. Thanks.

~Dologan

Anti-virus Program

Reply #57
Quote
I am left with two that seem to be very good and not so memory hungry: NOD32 and BitDefender.

Well on my system the NOD32 trial I used for a couple of days was invisible I didn't know it was there, plus it scanned all the files including achives on all three disk partitions in about 5 minutes, I've seen other scanners take anywhere from 10 minutes to 2 hours. BitDefender Pro was a hog and took over 35 minutes to scan all the disks.

When I tried them I used them with the resident shield set to scan all files which does cause some antivirus resident shields to make the system choppy and somewhat unstable.

Depending upon what system you're using you may have to try many different scanners, not all of them are created equal, even with 384MB Ram I still cannot use the likes of McAfee which sucks every last bit of any resources. With that said AVG 6 Anti-Virus System Free Edition gives me the least amount of trouble.

Anti-virus Program

Reply #58
Quote
I've been using F-Prot and I recommend it.
Very reliable and comes in a small package(the install is only
around 7MB).

I have this in the DOS version on a bootable CD, so i can scan people's systems anytime i need, without installing yet-another-software-tool!
and the virus definitions can be updated and placed on a floppy, or burn a new cd.

Anti-virus Program

Reply #59
Is anybody (except me) using Alwil Avast antivirus?
They have free Home version, which has exactly same antivirus kernel as Pro edition,
only few less advanced features - no advanced interface, PUSH updates, command-line scanner and script blocker.
ruxvilti'a

Anti-virus Program

Reply #60
Quote
Does anyone have any experience with AVG from www.grisoft.com?

That's what I'm using because it's free, but I've never had a virus (that any program detected anyway) so I can't really judge if it's any good.

I tried going from Norton Antivirus 2003 to AVG.  AVG is much faster in a full hard drive scan, but I realized that they don't update their definitions frequently enough for my tastes.  For instance, I was looking around the internet and saw that a new version of the highly popular Subseven virus had been released.  I checked Norton's website and they updated their definitions either the same or next day, I can't remember which.  I was using AVG at the time, and IIRC it took them two weeks to release a virus definition update including the virus.
-CyberInferno

Anti-virus Program

Reply #61
[deleted]

Anti-virus Program

Reply #62
Quote
Quote
I've been using F-Prot and I recommend it.
Very reliable and comes in a small package(the install is only
around 7MB).

I have this in the DOS version on a bootable CD, so i can scan people's systems anytime i need, without installing yet-another-software-tool!
and the virus definitions can be updated and placed on a floppy, or burn a new cd.

Cool.  So from your experience, what do you think of F-Prot for DOS?  I'm looking for a free, non-memory hogging but effective alternative to NAV2003.  F-Prot for DOS is probably the closest thing to that but I'm not sure.

Anti-virus Program

Reply #63
[deleted]

Anti-virus Program

Reply #64
Heh, Alwil makes BART CD, it might be useful...
Link to their webpage above.
ruxvilti'a