I have been using avast home edition for a while and was generally happy with it, however, I have recently been trying nod32 on a second partition and it picked up a worm in a file which avast says is clear. I have checked the file with kaspersky online which also picks up the worm.
Nod32 calls it VB.NBR worm
Kaspersky Worm.Win32.VB.an
You have a linux worm. You did not state at the beginning that you have linux. All the linux virus scanners, including clam have them. But AVAST is not a linux scanner, as far as I know, but when I am correct they have an AV solution for linux server environment. By the way you got the worm through P2P. If you have linux on your box, use clam.
The ca description says they only added the page on thursday so it seems to be a recent virus.
Interestingly the ca online virus scan doesn’t identify the virus either??? So nod32 and kaspersky both id the file as being infected and avast and ca online both don’t detect anything.
We gonna get rid of this monstrosity, this worm. It must be a new
Bropia variant or such. What I can advice you just now is to get and download
stinger.exe.
This has all the latest 40 or so anti-malware definitions aboard,
it is free, and a specially made stand alone program for these occasions
we have at our hands now. So download it from here http://vil.nai.com/vil/stinger/and run it,
and tell me what it found.
Then take your notepad program and note all you have found in
exact the same words as you find up. Very vital information.
Thanks for the stinger tip but don’t worry, my pc is not infected. Fortunately nod32 identified the infected file before I ran it. I had only just installed nod the day before instead of avast so I was lucky. I had heard good things about nod so I thought I would try it and see how it compares to avast. I have three winXP installs at the moment, one with avast, one with no internet and one with nod (plus one linux install). Fortunately I downloaded the file on the partition with nod32 installed.
I just wanted to report the virus so that avast can add it and I am a bit concerned after this experience whether to stick with avast or switch completely to nod.
Good for you. The virus solution that is perfect, my dear friend, does nor exist yet. Do not blame this on AVAST. It is a good program. There are a lot of people to see to it that new finds are posted (ReJZoR among others). You were lucky that NOD jumped unto your shoulder to save your day. If you insist on opening up to P2P you have to live with the risks, be extra careful and install Peer Guardian. That is the least I can give you as an advice. Scan everything and analyze with a Hex Viewer or BintScanner. To close the vulnerability window, and you know what that is now, although you nearly escaped, use online scans and a intrusion detection system. I also would advice the free checksum program Easy Integrity Checker, so that you can see nothing on your comp has been tampered with.