Thread: Possible hide .exe method?

I did a little research and came up to this:
If you hide ur program in root /recycled it will not be scanned by the virus scanners.

Is this possible by any way?
If i do this, I can't see the file. (cool)
but I don't have a AV.
Can someone with an AV test this. thanks.

At least 3 or 4 times a day ( due to many tests ) NOD32 shows me something like this.....


Time Module Object Name Virus Action User Info
5/3/2005 16:58:18 PM AMON file C:\RECYCLER\S-1-5-21-1754454779-4194836640-135449575-1008\Dc249.exe Win32/Delf.MW trojan

and then , i forgot to say.
Gives me the option to delete it hahahaha ! !

Owh.
Okay...but there must be a way to hide the exe file somewhere undetected.
Or isn't this possible?

besides rootkitting it....you could try the windows _Restore folder....if it still works and doesn't mess with da system files...

if your running an NT system (XP, 2000, 2K3 Server) then you can hide your appliaction using hooks (findfirst and findnext) api's and hide your apps
filename. look at rootkits (www.iamaphex.net).

i thought that there is one rootkit for 9x...i never personally tried it but it should be working around the same way...

i think its called 9xrx by droc0n...

Drocon ownes us all......

the recycle store methods is there for ages man... not working anymore and in the old times only with 98.

most anti viruses not only scan my recycle bin but all the files I ever had on this computer from windows xp system restore.