Hi
Iv’e downloaded and installed Avast Home Edetion 4
and as with all virus program, i test it ,whit this file on a floppy: bo2k_1.0.exe this file is a trojan and a first generation of Back Orifice (released in 98)and the only thing i got from Avast was
“network trace not found” so… how come it isent detected as a virus ???
Any antivirus program that fail to detect that file , is a no go on my system.
Regards Firewalker
Firewalker,
What message did you get? What part of avast gave you such a message?
There could be something wrong with your avast! installation…
Vlk
Hm, avast has no problem finding these old RAT:
I:\Temp\bo2k_1_0.zip\bo2kgui.exe [L] Win32:Trojan-gen. {VC} (0)
I:\Temp\bo2k_1_0.zip\bo_peep.dll [L] Win95:BackOrifice-2000 [Trj] (0)
I:\Temp\bo2k_1_0.zip\bo2k.exe [L] Win95:BackOrifice-2000 [Trj] (0)
I:\Temp\bo2k_1_0.zip\bo2kcfg.exe [L] Win32:Trojan-gen. {VC} (0)
my installation ran fine , i rebooted , came back up , everything was fine, then i did a demand scan on the floppy (rightclick>scan) and up came the “network trace not found” and the only thing to do was pressing ok end of story
I have tested a lot of antivirus programms and so far only one has detected the file so fare, all the “big” names failed to.
Regards Firewalker
Aha! So what AV-Programm find that RAT and if Kaspersky do, say with which Packer it is packed? How big is that file?
If you do not allready have Kaspersky scan that file, you can do it here: http://www.kaspersky.com/remoteviruschk.html
I have never ever seen such an error message (neither in avast nor in any other program)… Are you sure you’re quoting it properly?
???
Thanks
Vlk
you can get the file i’m talking about , from here
http://larry.boeldt.net/downloads/
i havent linked directly to the file , so you will have to look around to find it…
Regards Firewalker
Don´t get that wrong, but that is very easy to say,because it is not BO2K. It is just an installer SFX it contains an cab Archive, that contains an instalation that will install Bo2K. It seems if you start the exe and continue the installation Avast will find the RAT. F-prot will report the exe as suspicious and Mcafee as an oriffice.sfx, because they want to avoid support questions like"Why don´t you identify this BO2k? The homepage where i downloaded this file, said it s BO2K, so it has to be BO2K and therefor your Product is bullsh*t!"
Detecting such files is easier than to explain again and again, that the bo2k_1.0.exe isn´t Maleware.