报了!报了!真的报了!终于报了……
D:\firefox下载的文件\桌面.rar ?RAR ?桌面\Lcass.exe - Win32/VB.AGS 木马
不知道大家有没有留意过这个被感染的文件——Lcass.exe。
很久很久以前就已经有了,当然也不是化石……只是上一年的事……
不知有多少人上报过这个了,可是今天才总算报了……
回顾一下,这是来自 lanvin 的帖子:
去打印了个东西带回来的宝贝
有3个旧的 1个比较新,过了好多
其中因为看到了 风野胤 的回复:
偶有些崩溃
那个很老的lcass
nod还是不报
我继续上报 
我就不信了
于是我愤怒了,直接上去Wild sercuety论坛上面跟Marcos吵了起来,原帖如下(我就是Galaxykiss了):
Galaxykiss 
Infrequent Poster
| | Join Date: Mar 2007
Posts: 2
|
|  Please check this sample.
this sample was packed by ASPack v2.12 .give me an inbox add so that I can sand it to u,Mr.Marcos!
In my opinion, ASPack v2.12 is always a weakpoint of nod32.Somehow,there are few samples, which packed by ASPack v2.12, can be check.What's more,only a little samples would add into the database.
It's no worst than no one responded the user's samples upload.Trust me truely, I was argueing with the rest of antivirus software users all the time.I say lots of advantages about nod32.But they can just stop me by one point, that's no one will give the users responding. I can stand that no one give me responding, but I can stand no matter how many times I sant virus samples to ESET and no one would be add in the database.
Sorry to say that ,but you'd better fix this weakpoint.
Marcos 
Eset Moderator
| | Join Date: Nov 2002
Posts: 3,823
|
| Re: Please check this sample.
We are not aware of any problems with ASPack 2.12. If you have some samples that you are positive they are functional, send them to samples[at]eset.com with this thread's url in its subject.
|
Marcos
Eset Moderator
| | Join Date: Nov 2002
Posts: 3,823
|
| Re: Please check this sample.
The file you have sent us is actually packed with ASPack, but NOD32 does not have a problem with it at all.
|
|
一开始之后更新的两个病毒库都没有添加进去,还回复我的文件没问题,现在倒好,终于良心发现了。终于能查了。
下面是我发给他的短消息:
Marcos
Eset Moderator
| | Join Date: Nov 2002
Posts: 3,823
|
| Re: I have sant the sample I mentioned yesterday.
Quote:
Hello,
I replied yesterday directly to that thread. No problem with that file were found that would prevent NOD32 for scanning the ASPacked file internally.
Marcos
一下是我打烂沙盘问到底(粤语方言)的回复:
Galaxykiss
Infrequent Poster
| | Join Date: Mar 2007
Posts: 2
|
| Re: I have sant the sample I mentioned yesterday.
Quote:
Originally Posted by Marcos
Quote:
Hello,
I replied yesterday directly to that thread. No problem with that file were found that would prevent NOD32 for scanning the ASPacked file internally.
Marcos
|
hello,it's good to see your message.
What about the file itself?Was it infected any virus?
and Do u know a virus call Black-Day?It's a powerful virus but nod couldn't detected. Can I sent it to u?
thanks a lot.
|
现在大家感受到我的用心良苦吧……
现在看来,在怎么说到底,ESET还是会以用户为重的。所以我看到了曙光……
我现在附上样本,大家看看……
|
|
发表于 2007-5-31 22:03:16
楼主
发表于 2007-5-31 22:14:01
发表于 2007-5-31 22:27:43
