对于波波病毒（bobo****.exe）的补充

显示全部楼层 · 发表于 2008-11-29 23:55:38

那就是我记错了

本体和生成物都上报了？够快~
我把不报的生成物发出来了..

显示全部楼层 · 发表于 2008-11-30 00:07:21

本体只是些dropper 加上其他那些也不都是生成物可能只是解了一层的包的包

所以本体就没上报上报也是增加avira的负担。

显示全部楼层 · 发表于 2008-11-30 00:13:07

NOD MISS 7
TO NOD

显示全部楼层 · 发表于 2008-11-30 12:48:00

a-squared Anti-Malware -版本 4.0
上次更新: 2008/11/30 上午 10:11:05

扫瞄设置:

对像: C:\Documents and Settings\Administrator\桌面\bobo
扫瞄文件: 开
启发式扫瞄: 开
ADS扫瞄: 开

扫瞄开始于: 2008/11/30 下午 12:46:48

C:\Documents and Settings\Administrator\桌面\bobo\BO1001.exe 已检测: Trojan.Win32.Vapsup!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1008.exe 已检测: Trojan.Win32.Vapsup!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1010.exe 已检测: Rootkit.Win32.Agent!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1011.exe 已检测: Trojan.Win32.Vapsup!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1018.exe 已检测: Virus.Rootkit.Win32.Agent.efg!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1020.exe 已检测: Rootkit.Win32.Agent.elw!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1024.exe 已检测: Rootkit.Win32.Agent.erq!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1026.exe 已检测: Rootkit.Win32.Agent.erq!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1027.exe 已检测: Rootkit.Win32.Agent.erq!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1030.exe 已检测: Rootkit.Win32.Agent.euw!A2
C:\Documents and Settings\Administrator\桌面\bobo\BO1031.exe 已检测: Trojan.Win32.Agent!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1032.exe 已检测: Trojan.Win32.Agent!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1033.exe 已检测: Trojan.Win32.Vapsup!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1034.exe 已检测: Rootkit.Win32.Agent!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1035.exe 已检测: Rootkit.Win32.Agent!IK
C:\Documents and Settings\Administrator\桌面\bobo\BO1036.exe 已检测: Trojan.Win32.Vapsup!IK

已扫瞄
文件: 34
已发现
文件: 16

-----------------------
To a2... 漏杀太多了

显示全部楼层 · 发表于 2008-11-30 12:50:23

我的天阿~ 全部都漏杀

显示全部楼层 · 发表于 2008-11-30 14:51:19

Hello,

BO1004.exe_ - Trojan.Win32.Vapsup.nzf,
BO1005.exe_ - Trojan.Win32.Vapsup.nzg

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

BO1036.exe_ - Trojan.Win32.Vapsup.nzd

This file is already detected. Please update your antivirus bases.

Please quote all when answering.
The answer is relevant to the latest bases from update sources.

>
>
--------------------
Regards, Aseev Evgeny
Virus Analyst

Kaspersky Lab Ltd
Moscow, Russia
Tel/Fax: +7 (095) 797-8700
E-mail: newvirus@kaspersky.com

显示全部楼层 · 发表于 2008-11-30 19:35:15

伞过7，已上报

[病毒样本] 对于波波病毒（bobo****.exe）的补充

回复 10楼 hj5abc 的帖子

回复 11楼 change_018 的帖子

本帖子中包含更多资源