Be part of the largest consumer electronics community of the world! Register now and join all the other happy members
Welcome to CD Freaks, check out the latest digital storage news, read reviews or check prices in our price watch. Submit, rate and comment by signing up.
| |||||||
| Commercial message | |
| | |
| | | |
|
 |
| | Thread Tools |
21-04-2006
| #1 (permalink) |
| New on Forum Join Date: Apr 2006 Location: Scotland
Posts: 16
| New P2P virus http://info.drweb.com/show/2815/en Also from an anti virus expert; "That's after a long time after ZMist one of the "best" viruses i've seen. It's indeed highly complex - the encryption algo is medium difficult and the virus uses a lot of tricks. I've here some samples with nice antiemulation tricks, such as code performance speed tests (meaning the virus will know when it runs in a virtual environment) and registry dummy - writing tricks, such as trying to write a random value to the registry and trying to read it later and compare it. If not equ or if it doesn't exist the virus exits. The virus is able to act as space filler, same technic was used by the tschernobyl virus already (CIH). The virus is able to use EPO functionallity, it looks for common API calls after the entry point and hooks/redirects them. Means the virus does not execute its own code/decrypter at a fixed position after the entry point." It's apparently very difficult to clean. |
|  |
|
| Bookmarks |
« Previous Thread
|
Next Thread »
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Best P2P | Bestmiler | Music Download, Peer to Peer (P2P) & Legal Issues | 14 | 11-01-2006 23:19 |
| virus defs are virus infected! | a turk inside | General Software | 8 | 19-05-2003 00:17 |
| P2p | Kevin | Dutch: De Woonkamer | 5 | 15-11-2001 11:08 |
| Virus Virus Virus Alert!!! | Ice-Man | Italian: Chat | 11 | 29-05-2001 01:58 |
All times are GMT +2. The time now is 08:35.