none
virus scanner

    Question

  • I was wondering if they have been any idea or scripts brough up about a virus scanner made in VB, if not I was considering on looking into making one. how would I go about it ?
    Monday, July 13, 2009 3:53 PM

Answers

All replies

  • This is not an easy task, if you want to create a program that scan for virus, you have to know about viruses pattern and code behind it. VB.net is not the language for this task. Anti-Virus software are not just search for virus name, they open executable and Dll files and read the contents of the file and search for malicious code. Why do you want to create anti-virus software on your own? As i said earlier, is not an easy task because you have to create database for known-virus and the database have to be update everyday because at least 1 virus will be created a day. In order to get your database update, you have to join some computer security companies or agencies that do research on different patterns of malicious code so that you aware the new virus threat. C++ is the language because most malicious codes are created using C++.
    kaymaf
    I hope this helps, if that is what you want, just mark it as answer so that we can move on
    Monday, July 13, 2009 5:35 PM
  • Just something I wanted to do as a project, sounds like along road ahead if im going to make something like this to start with thanks for your help

    also whats a good/decent C++ program
    Tuesday, July 14, 2009 5:28 AM
  • you can start by looking into simple stuff, like filesystemwatcher, then maybe registry edits, ... i really can't add much since i'm very newbie and still trying to get two textboxes to add up.. lol

    about c++
    you can try the Visual Studio 2010 Professional Beta 1.. i just installed it recently, and i did notice that it had C++ included..
    direct link to download:http://www.microsoft.com/downloads/details.aspx?FamilyID=75cbcbcd-b0e8-40ea-adae-85714e8984e3&displaylang=en
    link to web info and other download links:
    http://msdn.microsoft.com/en-us/vstudio/dd582936.aspx

    i think there is a beta 2 version, just not on that page. just click the download link in the top section of this page under Microsoft Developer Network for info.

    (p.s. i like the tabs in vb 2008 much better, and the font. the synthax is ok. ;o)
    but anyways, go get them,
    trujade.
    i like: VB General  google  fast cars  username password
    Tuesday, July 14, 2009 6:01 AM
  • wisemonk, kaymaf is right. The reason is any virus will easily bypass all the managed parts of the .NET program. You should use C++ as kaymaf suggested, but even more, it will have to be a native C++ program. Learning C++ is one thing, but ridding yourself of .NET "habbits" will be hard, if you know what I mean. The native stuff is a whole new boardgame.

    If, like you say, you only plan on doing this as a project, and you don't think it will eventuate in to anything commercial, then for sure you can at least start with VB (and .NET). The knowledge and experience you gain would definitely help with any C++ work you may do down the track.

    Microsft Visual C++ 2008 Express Edition can make both native and managed apps. There are also other specific native compilers/IDEs out there.

    Hope this helps!

    Tuesday, July 14, 2009 7:37 AM
  • thanks mate yeah, suppose in VB it would be able to search for specific items within the computer IE names of viruses and get rid of them but thats just a basic search program lol windows built in search can do this some times. but it will be a learning curve and a big project to create something like this. I just dont want to be limited to VB all the time as its limited within itself in aways
    Tuesday, July 14, 2009 7:44 AM
  • There are two sample for you, First tutorial learn how to make you own fix tool For any virus you get information about it (like it's what it does, its size, where it put it's,fingerprint), This tutorial to fix a virus called Gheady, it's a simple virus infect exe files and put its fingerprint 'T' At '0x6c' in exe file, replacing 'This program cannot be run in DOS mode' with 'this program cannot be run in TOS mode'.

     
    http://www.codeproject.com/KB/cs/Virus_Fix_tool.aspx


    This is an antivirus solution to deal with the Brontok A HVM 32 Virus.

    http://www.codeproject.com/KB/cs/Kill_Brontok.aspx


    furthermore, you could visit http://www.clamwin.com/
    It's a Open Source Anti Virus where you could look to have some Idea.

    Best wish
    xingwei Hu

    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Welcome to the All-In-One Code Framework! If you have any feedback, please tell us.
    • Proposed as answer by Kenneth Haugland Friday, July 17, 2009 3:24 PM
    • Marked as answer by Xingwei Hu Monday, July 20, 2009 2:11 AM
    Friday, July 17, 2009 9:35 AM

  •  
    http://www.codeproject.com/KB/cs/Virus_Fix_tool.aspx


    Hi,

    an update just:  http://www.codeproject.com/KB/cs/Virus_Fix_tool.aspx (The article is deleted).

    [CodeProject Message: We're Sorry, but the article you are trying to view was deleted at 15 Jun 2009. Please go to the C# Table of Contents to view the list of available articles in this section.]

    Anyway, I've answered such question before:

    Here's the first: http://social.msdn.microsoft.com/Forums/en-US/windowssecurity/thread/1b23cadf-aa7e-44fe-9f35-01d3d6561d10

    And the second: http://social.msdn.microsoft.com/Forums/en-US/vbgeneral/thread/74a7566c-391a-4db1-b8eb-30c723db0358

    Have a nice day...

    Best regards,
    Fisnik

    Coder24.com
    Friday, September 25, 2009 5:38 PM