Identify Virus From This DIR/AH

Discussion in 'malware problems & news' started by huattan, Jan 2, 2010.

Thread Status:
Not open for further replies.
  1. huattan

    huattan Registered Member

    Joined:
    Jan 2, 2010
    Posts:
    2
  2. PaulB2005

    PaulB2005 Registered Member

    Joined:
    Apr 19, 2005
    Posts:
    525
    scvhost.exe

    and maybe

    srmhost.exe

    ---

    What do i win?
     
  3. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
  4. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Below cmds should create a list of all hidden exe and inf files as text files in c drive.

    cd c:\

    DIR /S /B /AH *.exe > C:\exefileslist.txt

    DIR /S /B /AH *autorun.inf > C:\inffileslist.txt

    Now you can go to folder options - show hidden then navigate to em and upload to VT for a scan.

    Just drop the "H" from the cmd to create a list of all exe or inf files.
     
  5. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    Code:
    cd c:\ 
    
     C:\>DIR /S /B /AH *.exe > C:\exefileslist.txt
    File Not Found
    
    C:\>DIR /S /B /AH *.exe>C:\exefileslist.txt
    File Not Found
    
    C:\>DIR /S /B /AH *autorun.inf>C:\inffileslist.txt
    File Not Found
    
    C:\>DIR /S /B /A *autorun.inf>C:\inffileslist.txt
    File Not Found
    
    C:\>dir /s/b /ah *.exe>C:\exefileslist.txt
    File Not Found
    
    C:\>
    Now what?
     
  6. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    The lists get created here in Win 7 admin.

    Edit:
    If there no hidden files then you will get the "File Not Found".

    Do you get a list of all exes with:
    cd c:\

    DIR /S /B /A *.exe > C:\exefileslist.txt


    Create.JPG
     
    Last edited: Jan 4, 2010
Loading...
Thread Status:
Not open for further replies.