PDA

View Full Version : A Guide to Virus and Anti Virus Programs



JANDOENT
12-02-00, 02:17 PM
Anti Virus programs are constantly being outdated due to the manufacturing of new viri. Typically it is not cost effective for each Anti Virus (AV) program manufacturer to do it's own research on potential new virus. The industry has economized and streamlined the process rather effectively. It seems a limited number of computer science experts do most of the research. They themselves, actually make virus so they can in effect prevent, detect and remove them. With technology constantly growing, this is an on going task.These researchers then sell the info. to the program manufacturers.
Viri can be placed into diff. classifications: Potential Virus, Known Virus, Virus Hoax, etc..Each classification can then be further broken down into diff. classes.
Due to my recent eye problems and not knowing each individuals interest into the depth of desired virus knowledge, I will list links and a summary of what the link is about. In this way, each individual can choose the topic of interest to them with out inane info. boring them and with minimal strain to my eyes.
May people really do not know the differences in Virus, Trojans, Worms, Bugs and Spyware(This is a huge topic). This article is on viri, so lets begin with what actually is a virus; http://www.cai.com/virusinfo/virus_intro.htm
Some of you may find the evolution of virus interesting; http://www.cyber.com/papers/eimpact.html
In the security forum, Speed Guides objectives are to inform you of facts, present you with some ideas, and to help you to solve your individual problems giving you the safest ways possible to enjoy your computer.
Unfortunately, learning incorrect info is as bad as ignorance. So lets take a look at hoaxes and "hear say" info; http://www.vmyths.com/hoax.cfm
I am not an expert in virus nor even in computers. I merely look for the best, non bias, true fact and information sites that I can locate. Be careful whom you accept info from. An opinion is not a fact. This site may open your eyes to have a better understanding of who is actually qualified or not qualified to give you bonafide info. http://www.vmyths.com/fas/fas1.cfm
Links to some of the worlds leading virus experts; http://www.cyber.com/papers/zoo.html http://www.wildlist.org/R_Bios.htm http://www.wildlist.org/sarah.htm http://www.nod32.com/index.html
This link is to the organization that keeps the list of viri that anti virus programs are tested against to grade their performance.Also, how virus are named, frequently asked questions, etc.. http://www.wildlist.org/
This is to the organization that actually tests and ranks AV programs; http://www.virusbtn.com/
This link is probably why most of you are reading this thread. It is the comparison chart to most popular AV programs; http://www.virusbtn.com/100/vb100sum.html
This link shows the programs that pass the test of detecting 100% of the know virus; http://www.virusbtn.com/100/vb100sum.html
This is a test file (completely harmless) that you can download or email to see if an AV program is working and detects it, also how it would react if a real virus was detected. It is simply a code typical of what a virus code would look like. Your 'puter will actually believe that this is a virus.Again, it is HARMLESS; http://www.eicar.com/anti_virus_test_file.htm
or
http://www.datafellows.com/virus-info/eicar_test_file.html
This is an actual screenshots of various viri, in case you were curious on what they look like; http://www.datafellows.com/virus-info/v-pics/
These are some various online virus test sites, containing knowledge of all known virus and will check your 'puter to see if you have any; http://security1.norton.com/us/intro.asp?venid=sym&langid=us http://www.ikarus.at/start_iee.htm http://www.nod32.com/index.html

In choosing an anti virus program, remember your operating system (Win9x,Linus,etc.)plays a part in function. Selecting a consistant and proven AV program that you can operate easily, should protect you efficiently. Overall test performance should weigh more than 1 or 2 individual tests.

I hope that this info. will increase your knowledge and give you a better understanding so that you will be able to defend your 'puter as well as possible.
This info. is free and available for you to share with your friends. Unfortunately, the cost of the website is not. Please help us to keep SpeedGuide as it is now by registering and visiting the site frequently.

EVERYONE that reads this, please post,even if only one word (this is a great way to increase your post count with out spamming) http://www.speedguide.net/ubb/wink.gif so I can get an idea of how many people find it useful and want me to continue researching the various aspects of security. Any comments, additional info or criticitism will be greatly appreciated.
Thank You,
Ken



[This message has been edited by JANDOENT (edited 12-02-2000).]

Scoot
12-02-00, 03:01 PM
I am amazed at your dedication!!
Even with your eye problems you have put together a fantastic list of reading links for the members to educate themselves in security issues.
I for one would like to say
THANK-YOU!!!
Good luck Ken

------------------
KNOWLEDGE=SPEED

ssjDoh
12-02-00, 04:20 PM
I think that's the longest post I have read! Usually, I don't have the patience to read the whole thing, but you gave very useful info!

Thanks Ken!

I hope things are getting better for you

fredra
12-02-00, 07:39 PM
Hi JANDOENT
I am still with you pal.
Those links are important and I thank you and appreciate what you are doing.
Your research has given us food for thought and action.
Thanks again.

chacmool
12-02-00, 07:55 PM
Thanks for all the effort...great post/thread.

magg
12-02-00, 08:36 PM
Thanks for the info JANDOENT.

mojac
12-02-00, 09:08 PM
As usual, a Star!!!
Cheers Ken!!

mojac
12-02-00, 09:11 PM
I was going to download the testfile, but, I'm ashamed to admit I'm a bit of a coward!!!!

JANDOENT
12-02-00, 10:44 PM
Originally posted by mojac:
I was going to download the testfile, but, I'm ashamed to admit I'm a bit of a coward!!!!
mojac, trust me, that is written in the format of a virus. It is NOT a virus in any form. It can not & does not execute. Under no circumstances would I post a virus. Remember, I am AGAINST all forms of security breeches, spyware,etc....You can email it to someone to test if their email virus scan is working and to see how it reacts. This is a test only but it will fool your computer.

ssjDoh
12-03-00, 12:49 AM
Just tried the test file and Nortan 2001 immediately though it was a virus before it asked me where I wanted to d/l the file. http://www.speedguide.net/ubb/smile.gif

Scoot
12-03-00, 08:40 AM
I also downloaded it and my Inoculate It caught it in both zip and com modes.
I ran a full scan over night and it was renamed.


------------------
KNOWLEDGE=SPEED

Blitz
12-03-00, 10:11 AM
U Floridians Always Amaze me http://www.speedguide.net/ubb/biggrin.gif
Thx Man! Awesome Links.

sol
12-03-00, 02:36 PM
thanks dude! more weekend reading for me.

Good luck with everything. I hope your eye is doing better.

sol

denolth2
12-04-00, 10:47 AM
Cool info to have. I'll have some reading to do. Thanks!

goose
12-04-00, 07:50 PM
Great Info!

This should be archived...

-Goose

denolth2
12-05-00, 12:18 AM
Took this quote from the www.cai.com/virusinfo/virus_intro.htm: (http://www.cai.com/virusinfo/virus_intro.htm:)

There are no "good" viruses, simply because virus is code that was not intentionally installed by the user. Users must be able to control their computers, and that requires that they have the power to install and remove software; that no software is installed, modified, or removed without their knowledge and permission. A virus is surreptitiously self-installed. It may modify other software in the system without user awareness, and removal can be difficult and costly.

So, if we go by this theory, or fact, then all spyware that is installed intentionally or otherwise without the user's knowledge can be considered a virus as well?

Diggity
12-05-00, 12:26 AM
This was very helpful, keep up the good work.

wileybot
12-06-00, 06:11 PM
oh yeah! much needed! gracias!

along1x
12-10-00, 08:42 PM
Great links man. I followed them all and learned much. Thanks for the post.

RoundEye
12-11-00, 02:05 AM
WOW!!!

keeper
12-17-00, 02:43 PM
Jandolent; Good stuff. Tried to download the pseudo-virus. Got this:

"Innoculate IT real-time protection version 5.2.5.0" box came-up.

It stated:

"Innoculate IT real-time protection has found that C:\WINDOWS\TEMPORARY INTERNET FILES\CONTENTIE5\TPD4K80F\EICAR[1].Com is the EICAR test string reviewer test file"

With an OK button.

I clicked on OK and got a message that it wouldn't even let it in. Only option was to abort download.

Didn't know this prog worked THAT well.

Thanks. Gave me some peace of mind.

If anyone wants this AV prog it is Freeware, as Jandolent noted. You can get it at: www.antivirus.ca.com/ (http://www.antivirus.ca.com/) updates are free as well. Works better than any I ever paid for.

fredra
12-17-00, 03:38 PM
Hey keeper
I am using it on my laptop, and it really works....had to reduce the number of files it checks on startup, from 100 to 50....also had to tell ZAPro to let it in to do the updates....if you use www.symantec (http://www.symantec) to check your system, it tells you that your system is protected from virus...although you are not using Norton AV.
I would recommend it!!!
HUMANITY IS A SCHOOL FOR THE SOUL!!!


[This message has been edited by fredra (edited 12-17-2000).]

JANDOENT
12-28-00, 05:23 PM
^bump^

RogueCoder
12-29-00, 01:51 PM
Nice posting, it has been my experience...after visiting several virus labs that another important effort underway in reverse engineering. Often the labs are sent malicious code from "collectors" who capture the code in the wild and send it to the labs for analysis. This also leads to development of effective countermeasures...often collecting virus from a country like China before it is collected from an infected US site...can lead to some advance warning. I also agree with your point about labs developing virus themselves, the number of virus that have been collected in the "wild" is much less than the number thrown around by the commercial labs that develop consumer products. Have a good one. Regards

thebigugly
12-30-00, 12:14 AM
just joined this group and I'm quite impressed with everyone I see here and the help being posted, found this to be an excellent resource janodent
Originally posted by JANDOENT:
Anti Virus programs are constantly being outdated due to the manufacturing of new viri. Typically it is not cost effective for each Anti Virus (AV) program manufacturer to do it's own research on potential new virus. The industry has economized and streamlined the process rather effectively. It seems a limited number of computer science experts do most of the research. They themselves, actually make virus so they can in effect prevent, detect and remove them. With technology constantly growing, this is an on going task.These researchers then sell the info. to the program manufacturers.
Viri can be placed into diff. classifications: Potential Virus, Known Virus, Virus Hoax, etc..Each classification can then be further broken down into diff. classes.
Due to my recent eye problems and not knowing each individuals interest into the depth of desired virus knowledge, I will list links and a summary of what the link is about. In this way, each individual can choose the topic of interest to them with out inane info. boring them and with minimal strain to my eyes.
May people really do not know the differences in Virus, Trojans, Worms, Bugs and Spyware(This is a huge topic). This article is on viri, so lets begin with what actually is a virus; http://www.cai.com/virusinfo/virus_intro.htm
Some of you may find the evolution of virus interesting; http://www.cyber.com/papers/eimpact.html
In the security forum, Speed Guides objectives are to inform you of facts, present you with some ideas, and to help you to solve your individual problems giving you the safest ways possible to enjoy your computer.
Unfortunately, learning incorrect info is as bad as ignorance. So lets take a look at hoaxes and "hear say" info; http://www.vmyths.com/hoax.cfm
I am not an expert in virus nor even in computers. I merely look for the best, non bias, true fact and information sites that I can locate. Be careful whom you accept info from. An opinion is not a fact. This site may open your eyes to have a better understanding of who is actually qualified or not qualified to give you bonafide info. http://www.vmyths.com/fas/fas1.cfm
Links to some of the worlds leading virus experts; http://www.cyber.com/papers/zoo.html http://www.wildlist.org/R_Bios.htm http://www.wildlist.org/sarah.htm http://www.nod32.com/index.html
This link is to the organization that keeps the list of viri that anti virus programs are tested against to grade their performance.Also, how virus are named, frequently asked questions, etc.. http://www.wildlist.org/
This is to the organization that actually tests and ranks AV programs; http://www.virusbtn.com/
This link is probably why most of you are reading this thread. It is the comparison chart to most popular AV programs; http://www.virusbtn.com/100/vb100sum.html
This link shows the programs that pass the test of detecting 100% of the know virus; http://www.virusbtn.com/100/vb100sum.html
This is a test file (completely harmless) that you can download or email to see if an AV program is working and detects it, also how it would react if a real virus was detected. It is simply a code typical of what a virus code would look like. Your 'puter will actually believe that this is a virus.Again, it is HARMLESS; http://www.eicar.com/anti_virus_test_file.htm
or
http://www.datafellows.com/virus-info/eicar_test_file.html
This is an actual screenshots of various viri, in case you were curious on what they look like; http://www.datafellows.com/virus-info/v-pics/
These are some various online virus test sites, containing knowledge of all known virus and will check your 'puter to see if you have any; http://security1.norton.com/us/intro.asp?venid=sym&langid=us http://www.ikarus.at/start_iee.htm http://www.nod32.com/index.html

In choosing an anti virus program, remember your operating system (Win9x,Linus,etc.)plays a part in function. Selecting a consistant and proven AV program that you can operate easily, should protect you efficiently. Overall test performance should weigh more than 1 or 2 individual tests.

I hope that this info. will increase your knowledge and give you a better understanding so that you will be able to defend your 'puter as well as possible.
This info. is free and available for you to share with your friends. Unfortunately, the cost of the website is not. Please help us to keep SpeedGuide as it is now by registering and visiting the site frequently.

EVERYONE that reads this, please post,even if only one word (this is a great way to increase your post count with out spamming) http://www.speedguide.net/ubb/wink.gif so I can get an idea of how many people find it useful and want me to continue researching the various aspects of security. Any comments, additional info or criticitism will be greatly appreciated.
Thank You,
Ken



[This message has been edited by JANDOENT (edited 12-02-2000).]

JANDOENT
12-30-00, 12:30 AM
Thanks a lot everyone! http://www.speedguide.net/ubb/smile.gif We are trying to make broadbanding safe for everyone! Glad the thread is of benefit to you! http://www.speedguide.net/ubb/biggrin.gif

FunK
12-30-00, 04:55 PM
I found it VERY useful!
Thanks JANDOENT.

Peace,
FunK

Rookie
12-30-00, 07:40 PM
thanks JANDOENT! Count me in and thanks for your initiative. rookie

Jopey
02-14-01, 02:52 PM
Thanks man. I have been using Norton for over a year now. and the constant feed of free updates is well worth it!

tup
02-15-01, 02:05 PM
Really great info. Txs!!