quote:
Originally posted by MenthiX
Files are scanned after they are downloaded, but before they are executed. Just downloading a file won't get you infected anyway, you have to execute the code somehow.
By design, but it is possible for a vunerability in the scanner to be exploited to excute code in the file when it is scanned. Vunerabilities like this exist not only in virus scanners, they can be in filesystem drivers, productivity applications and other programs that even look at a file.
quote:
Originally posted by MenthiX
Checking files on filename is a very bad way to check for badware
Indeed it is, but if it prevents only some badware, that's less chance of you running that badware. I wouldn't want this script though.
quote:
Originally posted by SpunkyLoveMuff
I use Bitzi to check the "bitprint" of a file, gets around the file name changing thing 
If we could make a script that reads MD5 strings, that'd be good 
Remember that MD5 (and other) hashes are calculated after reading the whole file, not a string read from the file
.
/ 
