20 replies to this topic

[RubbeR DuckY]

This is a complete rewrite in C++. It will allow for increased portability and faster processing. A lot of bugs have been fixed. The following restrictions apply:

1. Command line parameters are still not ready.
2. No application icon.
3. No banner at the top.

http://www.malwareby...org/fa_beta.zip

Please do not distribute this link. It is a forum members only beta. Anybody interested in creating an icon or banner, feel free to (hint, hint). This is beta software. Use at your own risk.

[RubbeR DuckY]

Any comments on this. Or graphics suggestions?

[AdvancedSetup]

RubbeR DuckY, on Feb 12 2008, 06:39 PM, said:

Any comments on this. Or graphics suggestions?

Did not extensively test but basic testing it worked fine. Will try to test it more tonight if I get time.
Will maybe look at some graphics for it too - maybe something with like a sniper?

[RubbeR DuckY]

Quote

Maybe something with like a sniper?

Why does everybody keep suggesting that .

[screen317]

Icon ideas (made by yours truly in MS Paint ):







Too cheesy?

[AdvancedSetup]

Sorry, did not get time to test FA or create any graphics. Work is having some issues that are taking up a lot of my time right now.

Will look into it soon though.

[AdvancedSetup]

Just ran the latest version and it was unable to unlock a zero-byte temp file in the C:\WINDOWS folder.

See post here: S0224A913.TMP what is it

I used Unlocker and it was able to delete it, though it was recreated pretty quickly. Not sure what methods Unlocker uses but it was able to unlock and delete.

[exile360]

I'm not an artist so I can't create one, but how about a ninja or something like that?

[RubbeR DuckY]

Ron, what was the hook that Unlocker noticed?

[AdvancedSetup]

RubbeR DuckY, on Feb 14 2008, 07:36 PM, said:

Ron, what was the hook that Unlocker noticed?

I used Microsoft / Sysinternals ProcessExplorer to locate what was locking the file and it was the very top SYSTEM (which is a bit ambiguous since many items launch under that) not sure how to fully trace it down to a specific DLL hook at this time. Will need to research more.

You may find it on your own system or one there in your area, it's even here on my home system XP Pro w/SP2. In all my systems it starts as SF??????.TMP

C:
CD \WINDOWS
ATTRIB *.TMP (then should see it)
ATTRIB -R -A -S -H *.TMP
DIR *.TMP


If you have or know of a method to track down to the specific DLL that would be great as ProcessExplorer doesn't seem to be able to do that in this case.

[fredvries]

Worked nicely.

As the removed file name is left in the box, I would like to see a 'Clear' button to remove that file name.

[RubbeR DuckY]

Updated. Now compiled using Dev-C++ and compressed with UPX. Still trying to work some main bugs out and get some very stable code.

http://www.malwareby...org/fa_beta.zip

Will not be incorporating new features until I have released 2.00 and know it is stable enough for them.

[Gimpguy2000]

I'll throw one at ya. Anyone get some ideas from these, feel free...

Attached Images

• 
• 

[screen317]

What.... are you telling me no one liked mine?

[Gimpguy2000]

screen317, on Mar 2 2008, 03:29 AM, said:

What.... are you telling me no one liked mine?

LOL, no, not at all. AAMOF, they look great. Just some ideas for masses is all.....

[fredvries]

FileASSASSIN 2.0 beta can't delete a 0-bytes file in a folder called autorun.inf

Folder:
Size: 0 bytes
Files: lpt3. This folder was created by Flash_Disinfector

[RubbeR DuckY]

Can I have the full path/filename.

[fredvries]

C:\autorun.inf (lpt3.This folder was created by Flash_Disinfector)

[RubbeR DuckY]

Updated. Fred, can you tell me if the problem still persists.

http://www.malwareby...org/fa_beta.zip

Fixed a few other problems and improved other things.

[fredvries]

Sorry to say: yes, it does.