ZMist: next generation viruses coming up

What next?  Transcendental virii?

 

Soon virus writers will just pull up infront of your house, kick the door in, throw you out of your computer chair, take your hard drive out, put a sledgehammer through your screen and leave.

The means ones will light your house on fire as the leave.

 

Zombie is one of the world's best virus coders at the moment. From a technical point of view his 'work' is very impresive and a big problem for anti virus companies. It seems there is no program which detects ZMist 100% correctly. Kaspersky reworked their signatures last week and caused some false positives. That's why this virus came back to media interesst again. As far I know the ZMist virus never made it 'in the wild'. Maybe because it was never released in a binary format. Only as (assembler) source code.

And the article from Peter Szor of SARC is a real good (but very technical) reading.

wizard

 

Then it's about time someone paid him enormous sums to change the colour of his hat, wouldn't you say?

 

This is very impressive from a technical stand point.  I can't even imagine how damaging this could be in the wild.  I can see the next generation that spreads itself around to different dll's on your system, imagine how hard that would be to detect.

 

Use NISFileCheck, make a database with it containing all the dll files on your system, run NISFileCheck every day for changes, and at least you will see whether any dll file was changed, deleted, or new.

For guidelines see this thread:
http://www.security-pro.co.uk/yabb/YaBB.pl?board=osif;action=display;num=1013708171

 

MY question is, what AV solution provides the best protection against something like this?

Also, will NOD32 and NAV 2002 co-exist peacefully? (From my experience NAV 2002 and McAfee AV will NOT - but that probably the fault of incredible-crash-prone McAfee.)

TIA

 

Hi javacool,

I guess so, yes; that means:
At least on my machine NOD32 and NAV2000 do (will hopefully upgrade to NAV2003 when it arrives later this year; I guess somewhere in the beginning of the second half of the year);  together with some other AV's.

 

Thanks!!  never heard of it before and I love the price!

 

FanJ,  

I have created a new thread in "Other Security Issues" that I would like your input on.   The thread is "NIS File Check Settings"

Thanks.

 

THE OTHER ONE BETTER BE NAV 2002 ERRRRRRRRRR

 

im sorry but that guys to smart for his owen good although i admire and envy him he must be put to death and burn at the steak lol.

I know it sounds harsh but that level of inteligents and then he writes it and sends it out.

its straight up terroisim but find were he lives  and take him out.

see  every century thers that one guy thats ahead of his time if wed had whacked thomas edison we have no electricity same here if we had whack this guy wed would niot have such a virus as dangeriouse as that  this man is way to smart  and that warrents assasination lol.

now im all parynoyed i wold had been happy with my illustion of grandger that i was safe lol ighnorence is bliss lol it relly is lol.

 

MRBLAZE, don't worry too much it doesn't seem like this guy actually sends them out, he just makes them.

Besides, computers are not the only things in the world you know. Go outside and play beach ball in your back yard with your family one weekend, and leave your computers off. It is very refreshing to get away from the stress of computers for a while.

 

lol your right i just hate to think a 3000 dollar computer with all the latest security software can be put out and rendeerd useless thats what i was feeling lol.

You know this guy is so talented and awsome he should make a all in one security system tool with a cool interface  it would be simple to use like trojan check except it in enghlish compatiable with all os.

with his talent he can make anti worm trojan malware,viruse all in one simple to use utlity and with his know how he can write it for all the viruses he makes  and even ones that dont exsit yet lol.

what i mean is hed be will respected by hackers and at the same time security web sites.

a. all hackers would buy his software because he  is the big bad of cyber space so he knows what hes doing and whast too look for.

b.wed all buy it because he writes the stuff and see;s things with a new tisted perspective meaning he can easly say will if i wanted to do this id do it this way then he would say now to defeat what i just did i do this and walah.

truely a waist of awsome talent.

Some one buy this guy nod nav tds  if you reading this act fast offer him what ever he wants woman cars  hes like a cyber rap star bling bling baby lol.

to bad you guys at wilder  cant hook up can you imagine a wilders all in one security utlity blaze drewls.

i mean you guys are always playing with all these great toys and finding ways to beat it just for fun wouldnt it be nice to get payed big for a love of a hobby.