New AV is here >

So you're going to say that i do not know what i say here? Do you know who i'm?

 

With AVG, they have an on-access guard so a virus COULDN'T go thru and infect all of the files.

A user is not constantly clicking Scan in your program, and I don't see how scanning speed could protect you any better....

Your 'scanning' is also just like running dir C:\windows\ /a /b /s>C:\listoffiles.txt
and using grep to find the 'malicious' lines

There, should I sell that for $15 now?

 

"Viruses which replaces legal programs like notepad.exe it detect by memory hash check."

I have a question about this. Isn't this exactly what you said you DIDN'T want to do? And, in memory, what if the program opens up a file (i.e. - notepad opening a file) Would that change your hash?

Hashing memory is not going to work...

 

Interesting (funny too!) Thread!

 

Indeed, this has been a very enjoyable thread, unfortunately, I don't know enough about this stuff to know if these guys are serious, or just having fun!

Acadia

 

hm, which friends?

HB understands it perfectly and what he writes is true. He has much more experience in writing AV programs and analyzing malware than probably most other well-known AV peoples, so it is a bit funny that YOU write him that he does not understand your "program".

Just for curiosity and nothing more, how old are you?

 

Oh they are serious BELIEVE ME!! Right HB??

 

Interesting is that most every malware and dangerous file can be found by filename so i dont understand why you guys have so much against filename check.
It is obvious that some of you develop malicious programs and filename check is like cancer for you.

 

The personal attacks need to stop or this thread will be closed

bigc

 

Now I ask: why this sentence? Now you've well-explained your skill level

 

So that means even i can build my own AV!! Filename check is not that big a deal! Would you buy my AV? And what if i rename a virus as explorer.exe??

 

Normal user will not rename any malicous file to legitimate process, if you wanna ruin your computer be my guest.

Build av program is not so easy as you think, RemoveIT Pro has more than 50.000 virusus in his database with daily update.
Every day atleast 200 new viruses comes so it is not so simple.

 

Yes, normal user wont do that! But im a virus writer, and what if i release my virus as explorer.exe??

 

If you release your virus with legitimate name, it will be located by signature.
Hash is good for checking viruses which replaces legitimate processes.
Moust of viruses up to 95% can be located with filename check.

 

rofl

 

No comments!

 

Oh the great one speaks There are A LOT of trojans which are using randomly generated names. And please explain to me how you would detect for instance this virus with your Filename Check:

http://www.eset.com/msgs/tengaa.htm

Or the ItW Listed Parite.B ? That is completely impossible to detect parasitic viruses with a filename check due to the fact that parasitic viruses ATTACHING itself to existing valid files!

 

RemoveIT Pro does not have only filename check it has also signature check for randomly generated viruses.
RemoveIT Pro XT Enterprise has filter which prevents writing on processes.
This technology is similar like firewall which block ports.
Process will normally work but it cannot be patched.
There are many people who thanks me that only my program helps them so my work has meaning and i only do this to help people.

 

Oh is it? I'm very sad to tell you that parasitic viruses also attaching to files which are currently NOT RUNNING. And now?

 

Wait i just get it... You don't even know what a parasitic virus is - isn't it?
Why you don't let this business to people which actually knowing what they are doing? I Tell you what - this program should be added to the Rouge-List:
http://www.spywarewarrior.com/rogue_anti-spyware.htm

Can someone take care of this?

 

This fellow is wondering why his laptop suddenly will not boot. He is looking for a good time to schedule repairs...

 

I really dont think thats a laptop, but oh well!

 

This thread has degraded to the point that the posts are now just personal in nature and not actually related to the original meaning of the thread. So it will now be closed.

bigc