Question on scanning

Hi Screamer

Now you've touched on why I am loving the newer KAV programs. The FILE AV is scanning new stuff as you touch it, and the scanner part has the option to only scan new and changed files, so if you don't change a file it doesn't automatically get rescanned.

On my new system's c: drive which is 20g, a complete new scan takes about 30minutes. Subsequent scans take about 5 with the latest beta's. Used to be about 3, but they have added a heuristics scanner and rootkit scanner in the latest beta's.

Pete

 

Re: Question on scanning: what files are most susceptible...

Fair enough. Quoting from the KAV help file. I am not sure they picked up the MS Office 2007 new extensions.


com - executable file for a program no larger than 64 KB
exe - executable file or self-extracting archive
sys - system file
prg - program text for dBase, Clipper or Microsoft Visual FoxPro, or a WAVmaker program
bin - binary file
bat - batch file
cmd - command file for Microsoft Windows NT (similar to a .bat file for DOS), OS/2.
dpl - compressed Borland Delphi library
dll - dynamic loading library
scr - Microsoft Windows splash screen
cpl - Microsoft Windows control panel module
ocx - Microsoft OLE (Object Linking and Embedding) object
tsp - program that runs in split-time mode
drv - device driver
vxd - Microsoft Windows virtual device driver
pif - program information file
lnk - Microsoft Windows link file
reg - Microsoft Windows system register key file
ini - initialization file
cla - Java class
vbs - Visual Basic script
vbe - BIOS video extension
js, jse - JavaScript source text
htm - hypertext document
htt - Microsoft Windows hypertext header
hta - hypertext program for Microsoft Internet Explorer
asp - Active Server Pages script
chm - compiled HTML file
pht - HTML with built-in PHP scripts
php - script built into HTML files
wsh - Microsoft Windows Script Host file
wsf - Microsoft Windows script
the - Microsoft Windows 95 desktop wallpaper
hlp - Win Help file
eml - Microsoft Outlook Express e-mail file
nws - Microsoft Outlook Express new e-mail file
msg - Microsoft Mail e-mail file
plg - e-mail
mbx - extension for saved Microsoft Office Outlook e-mails
doc - Microsoft Office Word document
dot - Microsoft Office Word document template
fpm - database program, start file for Microsoft Visual FoxPro
rtf - Rich Text Format document
shs - Shell Scrap Object Handler fragment
dwg - AutoCAD blueprint database
msi - Microsoft Windows Installer packet
otm - VBA project for Microsoft Office Outlook
pdf - Adobe Acrobat document
swf - Shockwave Flash file
jpg, jpeg - compressed image graphics format
emf - Enhanced Metafile format Next generation of Microsoft Windows OS metafiles. EMF files are not supported by 16-bit Microsoft Windows.
ico - icon file
ov? - MS DOC executable files
xl* - Microsoft Office Excel documents and files, such as: xla - Microsoft Office Excel extension, xlc - diagram, xlt - document templates, etc.
pp* - Microsoft Office PowerPoint documents and files, such as: pps - Microsoft Office PowerPoint slide, ppt - presentation, etc.

md* - Microsoft Office Access documents and files, such as: mda - Microsoft Office Access work group, mdb - database, etc.


Remember that the actual format of a file may not correspond with the format indicated in the file extension.

 

Hi Screamer

KAV has several options. One is to scan all files. Another(where I got the list) is to scan certain files by extension. So I have to assume that the list is those extensions they consider most vulnerable.

Pete