|
-
Jan 1st, 2004, 12:59 PM
#1
Virus Definition
Hi,
I am looking for a list of viruses and the relating file (.exe/.dll) associated with those viruses.
e.g
Executable Name Virus Name
Uprootkit.exe Backdoor.UpRootKit
Svch0st.exe Backdoor.Graybird
Any idea where i can find a conprehensive list.
Thanks
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks. 
This post was powered by : 
-
Jan 1st, 2004, 04:10 PM
#2
Frenzied Member
-
Jan 1st, 2004, 04:14 PM
#3
Kovan Salam,
Thanks for responding. I have been to symantec site. It does not really include the name of the related file. I have to click on each virus name and then manually extract the exe names.
I was looking for a file containing the list like the example on my first page.
Thanks.
Danial
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
-
Jan 1st, 2004, 08:15 PM
#4
If you're planning on creating some sort of virus scanner, DO NOT go by only file names. Every virus is defined by a set of bits which flag it has a virus. More information can be found on google if that is what you want to do. I also believe HowStuffWorks.com has information on how virus scanners work.
If you just want a list, you can probably parse Norton's or McAfee's virus definitions file. That would probably be the easyest way if you can figure out the definitions are written. Otherwise you may be able to make a simple script to parse the website's names and such.
-
Jan 1st, 2004, 08:33 PM
#5
Thanks for your response.
I have fairly good understanding of how most virus works. I am not gonna bother writing a fully fledged virus scanner, it would take too long and its not worth it to be honest. What i am writing is totally different then virus scanner.
Anyhow I have already compiled a small list by parsing some web sites, i need a more comprehensive list.
I am sure there would be some site listing some kind of definition file.
I personally dont use any antivirus, so dont have access to any definitaion file, would any one mind posting thier's. I would see if they can be parsed. Or if anyone knows the format of the file please let me know.
Thanks again.
Danial
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
-
Jan 1st, 2004, 11:16 PM
#6
Originally posted by Danial
I personally dont use any antivirus, so dont have access to any definitaion file, would any one mind posting thier's. I would see if they can be parsed. Or if anyone knows the format of the file please let me know.
l
Same here. My parents used to use McAfee and when I had to update it, I went to downloads.com and searched for McAfee update and downloaded a dat file from there.
-
Jan 15th, 2004, 12:15 PM
#7
Fanatic Member
Originally posted by kasracer
Same here. My parents used to use McAfee and when I had to update it, I went to downloads.com and searched for McAfee update and downloaded a dat file from there.
I have a friend who always runs the latest (cracked) McAfee downloaded from Emule and he says it updates from the McAfee home page just fine.
-
Jan 15th, 2004, 12:38 PM
#8
Originally posted by Matt_T_hat
I have a friend who always runs the latest (cracked) McAfee downloaded from Emule and he says it updates from the McAfee home page just fine.
Well isn't that special
-
Jan 16th, 2004, 07:41 AM
#9
Try a google site search for the executables. Make sure you start at the root web and search from that (securityresponse.symantec.com)
I use Microsoft Visual Basic 2005. (Therefore, most code samples I provide will be based around the .NET Framework v2.0, unless otherwise specified)
-
Feb 12th, 2004, 11:16 PM
#10
You wont crack the viruses , trojans etc.. They have too much encryption for virus scanners. Only after they have been handed in and stamped. If you want some good info check out www.kaspersky.com or try www.areyoufearless.com these guys know all there is to know about virsus scanners , lists, encryption techniques etc.. If you buy kaspersky pro then you can generate a txt list of approx 81000 virus' , trojans, worms, etc..
-
Feb 13th, 2004, 10:15 AM
#11
Originally posted by Jmacp
You wont crack the viruses , trojans etc.. They have too much encryption for virus scanners. Only after they have been handed in and stamped. If you want some good info check out www.kaspersky.com or try www.areyoufearless.com these guys know all there is to know about virsus scanners , lists, encryption techniques etc.. If you buy kaspersky pro then you can generate a txt list of approx 81000 virus' , trojans, worms, etc..
Thansk for those links, they seem very intersting, i will go through them. I am fully aware of how most viruses work and most of the encryption algorithm currently available.
If you read my initial posts i am not writing a "Scanner" as such. I am after a list of viruses with their corresponding exe,dll names.
Do you have kaspersky? Aree they in text format, if so can you post few entries?
Thanks.
Danial
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
-
Feb 13th, 2004, 03:53 PM
#12
this isnt the whole list , about 100 short,
http://www.angelfire.com/ct3/jmacp/list.zip
uh, just thought , is this legal giving you this list?
-
Feb 13th, 2004, 07:22 PM
#13
Thans for that. Well you are just passing me some information about some viruses, which are already in public domain, its not an application, so i dont see anything wrong with that. Certainly not illegal.
Cheers.
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
-
Feb 13th, 2004, 08:27 PM
#14
Just had a look at the file, it only contains the name of Virus, does not really contains the name of the virus executable.
Thanks anyway.
Danial
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
-
Feb 13th, 2004, 08:44 PM
#15
Originally posted by Danial
Just had a look at the file, it only contains the name of Virus, does not really contains the name of the virus executable.
Thanks anyway.
Danial
Yup i saw that when i looked at the list but thought i'd post it anyway even though i know its absolutely useless to you, because a virus company can call the visus anything they like. But at least yuo can see what you in for.
-
Feb 13th, 2004, 08:47 PM
#16
Originally posted by Jmacp
Yup i saw that when i looked at the list but thought i'd post it anyway even though i know its absolutely useless to you, because a virus company can call the visus anything they like. But at least yuo can see what you in for.
Cheers thanks fore trying to help, it was appriciated. I will keep the list in my collection 
I guess i will just write a crawler and crawl throug symatec.com website and compile the list.
Danial
[VBF RSS Feed]
There is a great war coming. Are you sure you are on the right side? Atleast I have chosen a side.
If I have been helpful, Please Rate my Post. Thanks.
This post was powered by :
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote
