Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Dialer.gzt?

from [Robert Sandilands] Network Security [Permanent Link]
Subject: Re: Dialer.gzt?
Date: Thu, 27 Apr 2006 10:47:39 -0400 
Hi Julio,

It is not that simple. Depending on the how the dialer behaves it may actually fall into a legal gray area where lawyers have been making some good money.

That is the reason why some scanners will not detect all dialers by default. Some scanners have flags to enable detection of this type of application, some just don't do it.

Unfortunately the name of a threat is of limited value as it is specific to one product. This can be a false positive or a threat that is only detected by a limited amount of scanners for several possible reasons. Services like www.virustotal.com can provide some help in troubleshoot this, but it may also help to submit the sample to several vendors and see how they respond.

Robert Sandilands

Julio Canto wrote:
Axel Pettinger wrote:
Anyone know more about this?

http://www.pandasoftware.com/virus_info/encyclopedia/overview.aspx?lst=vis&idvirus=115571
It's not a virus, it's just a dialer[1]. Some av scanners do not detect such programs.
It is malware, and should be detected by an av scanner.



--
---------------------------------------------------------------------
Robert Sandilands: Software Engineer
Disclaimer: http://robert.rsa3.com/disclaimer.html
Authentium: Home of Command Software
www.authentium.com


[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  POXDAR Revisited, Mark Ryan del Moral Talabis
Previous by Thread:  Re: Dialer.gzt?, Julio Canto
Next by Thread:  Re: Dialer.gzt?, Andrei Saygo
Indexes:  [Date] [Thread] [Top] [All Lists]