Back to home page

DOS ain't dead

Forum index page

Log in | Register

Back to the board
Thread view  Mix view  Order
Ninho(R)

E-mail

17.05.2009, 16:05
 

Avira detects DDTEST.EXE as a trojan (DOSX)

FYI : 'Avira Antivir personal edition' just updated, sees HX\TEST\DDTEST.EXE as a trojan horse (TR/CryptXPACK.Gen).

Someone may want to work out the detection problem with Avira.

---
Ninho

Rugxulo(R)

Homepage

Usono,
17.05.2009, 22:53

@ Ninho

Avira detects DDTEST.EXE as a trojan

> FYI : 'Avira Antivir personal edition' just updated, sees
> HX\TEST\DDTEST.EXE as a trojan horse (TR/CryptXPACK.Gen).
>
> Someone may want to work out the detection problem with Avira.

It's nice to have free antivirus software (esp. since it's not our fault people write viruses!), but the false detection ratio is quite bad when using heuristics. DDTEST.EXE has been reported falsely for quite a long time, so it's nothing new with Avira.

Ninho(R)

E-mail

18.05.2009, 00:28

@ Rugxulo

Avira detects DDTEST.EXE as a trojan

> It's nice to have free antivirus software (esp. since it's not our fault
> people write viruses!), but the false detection ratio is quite bad when
> using heuristics. DDTEST.EXE has been reported falsely for quite a long
> time, so it's nothing new with Avira.

Oh, so... OK, since it's not new let it be. I usually don't run full system scans, only use the AVs to check executable downloads but since this Avira is a new version, I let it scan all it wanted and bang! it took issue at the DDTEST. I'll see if there is a way to report false positives.

You are right heuristic classification is kind of a joke. And I'm not /sure/ not free AVs are better. I guess false positives are better than missing a real pest anyway.

---
Ninho

DOS386(R)

18.05.2009, 05:51

@ Rugxulo

Japheth writes virii

> FYI : 'Avira Antivir personal edition' just updated, sees
> HX\TEST\DDTEST.EXE as a trojan horse (TR/CryptXPACK.Gen).

COOL :clap:

> It's nice to have free antivirus software

running on free OS'es ... really ? :confused:

> (esp. since it's not our fault people write viruses!)

No, it's only our fault that we use OS'es inviting them :clap:

> DDTEST.EXE has been reported falsely for quite a long time,
> so it's nothing new with Avira.

FPROT detects WSTEST.EXE :-)

---
This is a LOGITECH mouse driver, but some software expect here
the following string:*** This is Copyright 1983 Microsoft ***

Ninho(R)

E-mail

18.05.2009, 11:14

@ DOS386

Japheth writes virii

(.... snippity snip)
>
> FPROT detects WSTEST.EXE :-)

Praytell, is anyone still getting definition updates for F-prot version 3 for DOS ? I for one haven't be able to find newer ones than of Nov 20, 2008.

Does the next version of FP offer a free ('beer') scanner & definitions for DOS ?
And (/or), can we download defs intended for the new FProt for Windows and use them with FP-DOS v. 3 ?

---
Ninho

tikbalang(R)

18.05.2009, 16:43

@ Ninho

Japheth writes virii

> (.... snippity snip)
> >
> > FPROT detects WSTEST.EXE :-)
>
> Praytell, is anyone still getting definition updates for F-prot version 3
> for DOS ? I for one haven't be able to find newer ones than of Nov 20,
> 2008.

that's the last version according to arachne developer glennmcc. he ripped them from the windows version. i think there has been changes after 2008-11 with f-prot.

nod32dos can still use "nod32.000" from the windows version.

Back to the board
Thread view  Mix view  Order
15108 Postings in 1358 Threads, 246 registered users, 13 users online (0 registered, 13 guests)
DOS ain't dead | Admin contact
RSS Feed
powered by my little forum