Re: NOD32 or AntiVirusKit? Look at Anti-Virus Comparative test.

On Sun, 05 Mar 2006 18:08:55 -0500, Virus Guy <Virus@xxxxxxx> wrote:

Art wrote:

Malwares are programs. Programs are written for different
platforms. Windows programs cannot be run under any version
of DOS. OTOH, many DOS programs run under Windows, and not
just Win 9X.

Just because a given piece of malware can be executed in a 16-bit DOS
shell (or in pure DOS mode) does that necessarily make it DOS
malware?

Of course not. Many command line programs are Windows programs which
cannot be run in "pure" DOS.

What if it's intent is to affect some aspect of the
overlying Windows OS? Is it still appropriate to catagorize it as DOS
malware?

I offer a 16 bit non-malicious program which can only do its thing
when run in a command line Window of Windows. (Updater using
the Windows version of WGET). That doesn't make my program a Windows
program. Similarly, a DOS program which purposely causes damage when
run in a command line Window is still a DOS program and thus DOS
malware, IMO.

DOS viruses/malware 231.088
Windows viruses 20.546
Macro viruses 37.181
Script viruses/malware 7.449
Worms 23.398
Backdoors 78.092
Trojans 69.008
other malware 5.912
OtherOS viruses/malware 2.085

This looks very fishy to me. I know there's a large number of DOS
malwares, but 231,000 seems awfully high.

If a given piece of malware is (somehow) catagorized as "DOS" based,
but if it's also a worm (it's got to be something, a worm, virus, etc)
then shouldn't it be put in the "Worm" catagory (and to hell with the
"DOS" label) ?

Not necessarily. He simply didn't break down DOS malwares into
categories. That's not unusual in some large scale tests.

I have no idea how he selected "DOS malwares". IMO it would have
been wrong and misleading to include Windows command line programs
since they aren't DOS programs (can't be run in DOS). Somehow I don't
think Clementi would do that on purpose. But who knows?

Art

http://home.epix.net/~artnpeg
.

Relevant Pages

  • Re: NTVDM hard error on Windows 2003 Server SP1
    ... Windows 2003 Server SP1 platform, there is a pop-up box with the error ... run regedit.exe from a DOS window command prompt. ... The server is not a domain controller, and is on a LAN with a Windows ...
    (microsoft.public.windows.server.general)
  • Re: Wildcard on Folder Name
    ... This is not DOS - it is the Command Prompt. ... Microsoft Windows XP - Command-line reference A-Z ... Microsoft Windows XP - MS-DOS subsystem commands ...
    (microsoft.public.windowsxp.general)
  • Re: "Read-only" Folders
    ... "Dos attrib command" - that's why. ... anti-Windows folks tell me that Windows is ...
    (microsoft.public.windowsxp.security_admin)
  • Re: DOS / XP bat file programming question
    ... How do I feed a "y" response to a DOS command that wants to prompt me ... Note that DOS is an operating system, same as Windows XP. ... There is no DOS under Windows, only a Command Prompt. ...
    (microsoft.public.windowsxp.general)
  • Re: hal.dll is corrupt or missing
    ... I didn't understand how you map the drive. ... When running Windows PE you have access to a command window (DOS like, ...
    (microsoft.public.windowsxp.embedded)