hi
some Suggestions and improvments to kav 2009 or to future versions
1 -Improve cleaning/removal for Vundo/sinowal/mondrec for example
2 -improve and designed a generic detection for example to Vundo/Hupigon/Mondrec/OnlineGames...... if its possible!! to increase the detection and protection
thanks
Full Version: cleaning/removal and generic detection
Kaspersky Lab Forum > English User Forum > Suggestions for current and future versions of KL products
QUOTE(Kaspersky 7.0.1.325 @ 8.08.2008 00:13) 
hi
some Suggestions and improvments to kav 2009 or to future versions
1 -Improve cleaning/removal for Vundo/sinowal/mondrec for example
2 -improve and designed a generic detection for example to Vundo/Hupigon/Mondrec/OnlineGames...... if its possible!! to increase the detection and protection
thanks
some Suggestions and improvments to kav 2009 or to future versions
1 -Improve cleaning/removal for Vundo/sinowal/mondrec for example
2 -improve and designed a generic detection for example to Vundo/Hupigon/Mondrec/OnlineGames...... if its possible!! to increase the detection and protection
thanks
It should be able to remove vundo fine, sinowal in safe mode (when its not active) but yea the ones in the Monder family cant be removed with the scanner.
kis can clean sinowal just fine, problem is with exotic drives like removable or raid, where sinowal might be active. also once it detects vundo it can clean it, removing the bho too. adding of generic signatures via emulator for vundo is a bit problematic, the dropper can be added, but the dlls are not standalone executables so emulator can't emulate them like it would regular exe's.
dave16 ، lucian Bara
thank you all
.........................
but i want to ask you a question lucian about vundo variants!!
i have received about 206 vundo samples i have scan them with KIS 2009
he detect 151 of them with its signature and the rest 55 was detected as heur.trojan.generic wich is good!!! and note that all the samples are dll files!!!
http://img181.imageshack.us/img181/8775/kisoo4.png
so these samples are detected heuristically or with generic detection ???
thank you all
.........................
but i want to ask you a question lucian about vundo variants!!
i have received about 206 vundo samples i have scan them with KIS 2009
he detect 151 of them with its signature and the rest 55 was detected as heur.trojan.generic wich is good!!! and note that all the samples are dll files!!!
http://img181.imageshack.us/img181/8775/kisoo4.png
so these samples are detected heuristically or with generic detection ???
With an emulator 
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.