I'm tired of virus submissions!

Last one which i submitted was Win32.Kelvir.n in SFX package with Backdoor.Win32.Rbot.gen (according to Kaspersky Labs).
I have also submitted many samples which are still not added. C’mon Alwil? We,the users are willing to help you by submitting samples and you don’t even add them?
Kelvir was spreading through IM and many users in my area with avast! got infected with it.
It’s like 2 weeks from that incident when i obtained and submitted(twice!) Kelvir sample and still nothing. I have also submited few other samples several times and nothing. I’m really tired of this. Even if it’s a minor thing,you should treat it as top priority. The same sample was detected by NOD32 AH at 0-point and got signature 1 day later. avast! doesn’t detect it after 2 weeks!

Also some better way of submisson would be a good thing to consider.
Web submission form or a better Chest handling of submitted files could help you alot.
Right now it’s somehow hard to control or even submit files,so many people don’t even bother with it.

If you don’t add samples,who will? So please take this seriously and do something about it.

You have my support on this RejZoR.

I totally agree.

Since Avast has no heuristics or other effective proactive protection and Avast solely depends on its VPS, so then why ALWIL delays to non-urgent malware. Even if it’s a minor thing, you should treat it as a top priority because you never know that how many Avast users somewhere in the world get infected by that minor thing.

I was thinking about virus submission webform like this one (ArcaBit/ArcaVir):
http://www.arcabit.com/send.html

Make a submit-form is easy… the problem is: “How many time for the reply by the experts?” :wink:

I don’t need any reply from them. I just want to get those samples added to VPS.
I check them on regular basis if they were added or not and i’m very dissapointed with current status.

I understand your feelings. Now I want say this (not a critic to you! :slight_smile: ) : I had other famous AVs in the past and many times I was infected (I don’t go on porn or warez sites normally). After 18-19 months with avast! my pc had only 1 (one) hit (worm). I think the best Av software is… our brain. In my opinion, you are right but Alwil is a small company. The real 50% of the Avast! power is… the people of this Forum. I see, there are really skilled persons. There’s no other on Earth with this high assistance level thanks all users. My english is bad, so I try to say my idea with an example: “I have a old motorcycle… it’s not fast like new motos; it is not brilliant; it “drink” gasoline like a F-16… but I love it and I don’t change it for nothing in the world”. The same for this AV.
Avast!=David, NAV & Others=Goliath… I prefer to fight with David ;D I know, my reply to you is not a good argument and you (we) have your (our) reasons, but I love this software… Avast! is not only a simple software, is a lifestyle!!! (But I pay for Avast!.. and I hope Alwil Team can work better for our safe web surfing!) :wink:

Well we are smart,but like 75% of other ppls simply need raw detection power. And only AV that can offer that is Kaspersky imo. avast! could do alot in this area,'im sure about that.

I remember when one of the first Bropia (IM-Worm) started spreading via MSN in my country, in that time we were not knowing about IM-Worm as much as today, so many people I know who used Norton, McAfee, Avast, AVG and other AVs got infected by this worm. But NOD32 is still a mystery for me coz someone cliams NOD32 detected this worm by its AH but my friend told me he used NOD32 but it didn’t know this worm and he got infected too.

But except for Kaspersky, some of people I know who used Kaspersky were safe coz Kaspersky was released signature earlier on the morning before people woke up, went to their office and started using MSN.

So I think this is a good example of speed up to releasing signature for non-urgent malware as Kaspersky offers to its users.

Just a suggestion, maybe it should be at wishlist but, like SpyBot maybe avast could have an option for beta signatures.
The ones who want signatures fast, could check the option and alert Alwil for false positives.
The common users will wait for the new ‘full’ VPS update, without worring with speed and false positives.

What do you think?
Better, what does Alwil team think about this?

Well i could certanly live with that. I submit samples and false positives on regular basis to Alwil,so that wouldn’t change anything for me,except ofcourse more defs.

Hello RejZoR,
lately I was busy with the Trojan-gens, first I prepared signatures for the part of the latest batch that our robot refuses to process, then I looked in the hundreds of the chest files detecteded as Trojan-gen in order to spot and fix false positives. This is the reason the Kelvir and Rbot samples from you weren’t quickly added to virus database. I hardly read any other mails then the Trojan-gen chest ones.
You also resent some older samples lately, some of them I decided not to detect (not now, when originaly send), for example there is an uninstaler part of adware there. Well, some of the samples are my black conscience (I hope this czech idiom is understandable in the english). I’ll try be better boy in future with the latest cathegory.
Thank you for your continuing submissions of samples.

Aha. So should we send Trojan-Gen detections to you (like for heuristics samples) or should we just leave them as they are (named Trojan-Gen)? I was always asking myself about this and never really asked anyone from alwil heh.

i wonder about VPS updates too
as i send lotsa viruses,worms,trojans and spyware at begining of April

yet so far was only minor fragment of them was added …