virus [undetected]

[XD.Avid]

UNEDITED VERSION; posted 19h 19/11/09


Its been a few months since my pc BSODed frequently.
i thought of a hardware etc..
last morning, as my ASP works were over and i broke a pause, my pc re-
bsoded.
alors la,
i was araged, i began a file battue....
i fetched far far knowledge about viruses, how which antivirus run/
protect which
i finally found out something....creeepy~
:::::::::::::::::::::
from Feb 2009;
Avast is a 2Star certificated AV (antivirus)
NOD32 is 3Star (top dog in list)
presently i use Avast....each time i got from the uni, i scan, remove
a bunch of virus, etc`
am clean, work...
but today, i wanted to find out how and wen this gaugt passed through
i fetched some common viruses in my pen;
notably the autorun.inf, restore, redNut, herss.exe, w23eu2.exe
(constant evolving variant of herss.exe)
i scanned my pen with both AV last updated:
results::
AVAST! :: most is removed. i discovered one strange stuff: rootkit is
not easily detected. the herss.exe passed thru, no sign of rednut
NOD32::: no sign of rednut, rootkit is not detected, most removed
~~~~
so??? WAT IS THAT F*CKING HERSS.EXE??
a rootkit, somehow a program that infiltrates the registry etc at
startup and runs along within the core of your apps..
the danger????
ok, this stuff, creates new processes [most commonly ek explorer.exe]
to bouffe your cpu..but variant times
also, it REMOVES application threads arbitrary..
that is, if your browser, dreamweaver, office, any application get
crashed suddenly, herss.exe is hiding somewhere. Also, the worst, it
kills the windows apps, which most of the time generates a BSOD.
so, i posted herss.exe at avast to request a standalone removal kit
meanwhile, if some of you ever got an answer or same prob, please
share.
therefore, it will be my pleasure to update you folks.
David.

[XD.Avid]

ayo, voy merde, mo paress la
lir seki kav