极易误报的文件系列（1）样本总量：100X 欢迎测试和分享

显示全部楼层 · 发表于 2012-5-3 22:14:01

展位羡慕

显示全部楼层 · 发表于 2012-5-3 22:21:33

Kaspersky (with KSN closed) killed 88×.

显示全部楼层 · 发表于 2012-5-3 22:26:10

呵呵
楼上说数字竟然0误报……

显示全部楼层 · 发表于 2012-5-3 22:26:30

jefffire 发表于 2012-5-3 21:39
ASquare 96/100 囧

哈哈哈哈

显示全部楼层 · 发表于 2012-5-3 22:38:40

该降降误报了...

Malcide Scanner
Version - 1.0.680

Heuristics - Extreme

Scanning now...
Date - 2012/5/3 Time - 22:22:08
Targets:
C:\Users\Gateway\Desktop\a01

C:\Users\Gateway\Desktop\a01\007.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\0112_14.exe > UPX - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\06.group view tool菜单.exe - Win32.Packed.VMProtect.1
C:\Users\Gateway\Desktop\a01\08ielts_zw_1_7.exe - HEUR:Win32.Packed.Gen
C:\Users\Gateway\Desktop\a01\1.yy挂机赚钱流程和原理.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\101150.exe - HEUR:Win32.Packed.Gen
C:\Users\Gateway\Desktop\a01\101617.exe > UPX - HEUR:Win32.Virus.Gen
C:\Users\Gateway\Desktop\a01\101640.exe - HEUR:Win32.Packed.Gen
C:\Users\Gateway\Desktop\a01\102364.exe > UPX - HEUR:Win32.Virus.Gen
C:\Users\Gateway\Desktop\a01\10249_setup.exe - HEUR:Win32.Trojan.Crypted.4
C:\Users\Gateway\Desktop\a01\1212.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\123 (2).EXE - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\123.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\17lele.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\19200clntv8(鼎泰实名版).exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\2.exe - decompression error (UPX)
C:\Users\Gateway\Desktop\a01\2003.exe - Win32.Packed.VMProtect.1
C:\Users\Gateway\Desktop\a01\2004.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\200903~1.EXE - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\22-3.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\2225ask10.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\25927200.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\27-1.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\29.tmp - HEUR:Win32.Trojan.Gen
C:\Users\Gateway\Desktop\a01\2jxco.dll - Win32.Packed.VMProtect.1
C:\Users\Gateway\Desktop\a01\2jxcore.dll - Win32.Packed.VMProtect.1
C:\Users\Gateway\Desktop\a01\3-3.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\3.获取推广链接.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\3029.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\36UCDLQ.EXE - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\3721.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\38.EXE - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\390.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\3D PlateBall.exe - Win32.Packed.NSPack.1
C:\Users\Gateway\Desktop\a01\3GP MP4 视频转换专家.exe - HEUR:Win32.Virus.Gen
C:\Users\Gateway\Desktop\a01\3gp合成分割器.EXE - HEUR:Win32.Packed.Gen.3
C:\Users\Gateway\Desktop\a01\4.2.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\413ean71o19dyfj.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\4416.exe - HEUR:Win32.Virus.Gen.2
C:\Users\Gateway\Desktop\a01\49042400.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\4位验证码破解补丁.exe - HEUR:Win32.Virus.Gen.2
C:\Users\Gateway\Desktop\a01\5.注册30个yy帐号.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\5052.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\5108.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\51shuafen2.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\66383.exe - HEUR:Win32.Packed.Gen
C:\Users\Gateway\Desktop\a01\7-1.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\7.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\72F6B.DLL - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\734.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\7zfm.exe - HEUR:Win32.Packed.Gen.2
C:\Users\Gateway\Desktop\a01\84154200.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\929.exe - HEUR:Win32.Malware.Delf.JunkCode
C:\Users\Gateway\Desktop\a01\9a8.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\9aa8985e99b53b304b40d8dd819c5a3f1.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\9ba.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\a221p4.exe > UPX - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\a6loc.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\a6lock.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\ab5b10c23c88e59be63ae83fc2ace7f7 - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\ab9.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\Absolute MP3 Splitter Converter.exe - HEUR:Win32.Packed.Gen.3
C:\Users\Gateway\Desktop\a01\AccCrack.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\ACMSETUP.EXE - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\ad4.exe - HEUR:Win32.Packed.Gen.3
C:\Users\Gateway\Desktop\a01\adpacket.dll - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\ADPY5PY.exe - Win32.Packed.ACProtect.1
C:\Users\Gateway\Desktop\a01\adslh.exe - HEUR:Win32.Trojan-Dropper.RARSfx
C:\Users\Gateway\Desktop\a01\adslhttpproxyV13.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\aidplayer.dll - HEUR:Win32.Packed.Gen.2
C:\Users\Gateway\Desktop\a01\AID_C.EXE - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\AIMP2.dll - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\ainstall.exe - Win32.Packed.VMProtect.1
C:\Users\Gateway\Desktop\a01\ajjl0734114.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\alexa排名专家.exe - HEUR:Win32.Virus.Gen
C:\Users\Gateway\Desktop\a01\AntiARP-DNS.exe - HEUR:Win32.Trojan.Crypted.4
C:\Users\Gateway\Desktop\a01\AntiArp.exe - Win32.Packed.Themida.1
C:\Users\Gateway\Desktop\a01\aoxun.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\AQConverter.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\atapreg5.exe - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\atmpvcna.dll - HEUR:Win32.Malware.Crypted.Gen.2
C:\Users\Gateway\Desktop\a01\ats_setup.exe - HEUR:Win32.Packed.Gen.4
C:\Users\Gateway\Desktop\a01\AutoClear.exe - HEUR:Win32.Malware.Gen.3
C:\Users\Gateway\Desktop\a01\AutoInstall.exe - HEUR:Win32.Packed.Gen
C:\Users\Gateway\Desktop\a01\autoprt.exe - HEUR:Win32.Trojan-Dropper.Gen
C:\Users\Gateway\Desktop\a01\Autorun.exe - HEUR:Win32.Trojan.Crypted.4
C:\Users\Gateway\Desktop\a01\AutoU.exe - HEUR:Win32.Virus.Gen.2

100 Objects scanned
2 Malicious objects found
84 Suspicious objects found
86 Threats found

Finish time - 22:22:25
Duration - 17 seconds (00:00:17)

显示全部楼层 · 发表于 2012-5-3 22:40:49

hx1997 发表于 2012-5-3 22:38
该降降误报了...

Malcide Scanner

这什么扫描器？

显示全部楼层 · 发表于 2012-5-3 23:38:02

结果

Malware@#3tlqyyrln0s34 D:\a\a01\007.exe

Malware@#3e7sh6cz62efx D:\a\a01\08ielts_zw_1_7.exe

Malware@#33vc2wxeoawsu D:\a\a01\06.group view tool菜单.exe

TrojWare.Win32.Trojan.VB.~EQ@38000812 D:\a\a01\0112_14.exe

Packed.Win32.MUPACK.~KW@90454246 D:\a\a01\101640.exe

TrojWare.Win32.TrojanDownloader.Adload.f@26209246 D:\a\a01\101150.exe

Malware@#gt2urqphyyob D:\a\a01\101617.exe

Malware@#1mei19ahp9n3l D:\a\a01\102364.exe

TrojWare.Win32.TrojanDownloader.Small.NPD@137709 D:\a\a01\10249_setup.exe

Malware@#2lis8ql5j6xqd D:\a\a01\123.exe

TrojWare.Win32.TrojanDownloader.Delf.qew@160444185 D:\a\a01\1212.exe

Backdoor@#p6q2a1m52flw D:\a\a01\123 (2).EXE

Suspicious@#3vwe24x5q3029 D:\a\a01\17lele.exe

Packed.Win32.MUPX.Gen@129019204 D:\a\a01\2.exe

Malware@#2f8uomy8jj8ja D:\a\a01\2003.exe

Suspicious@#3byzgpoh6udpl D:\a\a01\2004.exe

Malware@#28f8e1rqfcoob D:\a\a01\200903~1.EXE

ApplicUnwnt.Win32.Adware.IEHlpr.E`20@100812273 D:\a\a01\2225ask10.exe

Worm.Win32.Dropper.RA@105409960 D:\a\a01\25927200.exe|server.exe

Malware@#34hxg9xyh60bk D:\a\a01\2jxco.dll

Malware@#1052qvmlh2u76 D:\a\a01\2jxcore.dll

TrojWare.Win32.Small.YBE@37120003 D:\a\a01\29.tmp

Suspicious@#2cj3otdm7h19s D:\a\a01\19200clntv8(鼎泰实名版).exe|userdll.exe

Malware@#1rqervg7iyo13 D:\a\a01\19200clntv8(鼎泰实名版).exe|emwhx.sys

Malware@#2nfmi70txopk8 D:\a\a01\3.获取推广链接.exe

Malware@#3ntb5jc1hzunx D:\a\a01\36UCDLQ.EXE

Malware@#3vgtwdfbtwnzr D:\a\a01\3029.exe|coolupdate.exe

Backdoor.Win32.Popwin.~IQ@41098448 D:\a\a01\3D PlateBall.exe

Backdoor.Win32.Hupigon.~v002@105287420 D:\a\a01\3GP MP4 视频转换专家.exe

Malware@#1cjjfolwdk4e9 D:\a\a01\3gp合成分割器.EXE

Suspicious@#3tv9v51b3a5b7 D:\a\a01\4.2.exe

Backdoor@#m9ov6mhbm2hn D:\a\a01\413ean71o19dyfj.exe

Malware@#2xmbgu94zul6u D:\a\a01\49042400.exe

Malware@#14gn380l5gb3v D:\a\a01\4位验证码破解补丁.exe

Application.Win32.Adware.IEHlpr.A@164407 D:\a\a01\5052.exe

Application.Win32.Adware.BHO.IEHelper@177397 D:\a\a01\5108.exe

ApplicUnsaf.Win32.AdWare.cinmus.ek103@102328854 D:\a\a01\390.exe|DoSSSetup.dll

TrojWare.Win32.Rootkit.Agent.~a@87213550 D:\a\a01\390.exe|acpidisk.sys

Malware@#1482dk5xuulaf D:\a\a01\51shuafen2.exe

Malware@#1clgd1ent65f1 D:\a\a01\66383.exe

Worm.Win32.Dropper.RA@105409960 D:\a\a01\6KJX V1.1.3.1.EXE

Malware@#67wfag45xfdt D:\a\a01\72F6B.DLL

Malware@#ij79esgvn1ah D:\a\a01\734.exe

P2PWorm.Win32.Polip.A@86772950 D:\a\a01\7zfm.exe

TrojWare.Win32.PopUpper.a@132663486 D:\a\a01\84154200.exe

TrojWare.Win32.Trojan.VB.~YW@38354705 D:\a\a01\8822i.exe

TrojWare.Win32.Trojan.VB.~AOJ@38001155 D:\a\a01\8f66.exe

Malware@#2iqm9igxdu2hf D:\a\a01\91jfwg.QQmaj.exe

Malware@#17hzjj84q1qwd D:\a\a01\3721.exe|aclayer.exe

Malware@#txb3x4lfcsjq D:\a\a01\3721.exe|$R

Malware@#37aiprtv9fxuo D:\a\a01\3721.exe|$R

Malware@#1fbtaidmowb2a D:\a\a01\19200clntv8(鼎泰实名版).exe|minekn1s.dll

Malware@#1fbtaidmowb2a D:\a\a01\19200clntv8(鼎泰实名版).exe|nwsybms.sys

Malware@#1fbtaidmowb2a D:\a\a01\19200clntv8(鼎泰实名版).exe|olemsg32.dll

TrojWare.Win32.TrojanDownloader.CodecPack.c@25565362 D:\a\a01\7.exe|$R

Malware@#2hrlesbed2pv9 D:\a\a01\929.exe

TrojWare.Win32.TrojanDownloader.Delf.fmmu@194929383 D:\a\a01\9aa8985e99b53b304b40d8dd819c5a3f1.exe

Malware@#24h5uo03pbfxr D:\a\a01\98027200.exe

Packed.Win32.MUPX.Gen@129019204 D:\a\a01\a221p4.exe

Suspicious@#32df7o374tww5 D:\a\a01\a6loc.exe

Suspicious@#3thbp7xnhq3sx D:\a\a01\a6lock.exe

TrojWare.Win32.GameThief.Magania.~NWABX@74276228 D:\a\a01\ab5b10c23c88e59be63ae83fc2ace7f7

TrojWare.Win32.Delf.qdh@159399636 D:\a\a01\ab9.exe

Malware@#2jnh7myd03wr3 D:\a\a01\Absolute MP3 Splitter Converter.exe

Malware@#2atqe78sari7c D:\a\a01\AccCrack.exe

Malware@#24t75zeftpcn2 D:\a\a01\AcIERHelper.dll

TrojWare.Win32.Rootkit.Agent.~a@87213550 D:\a\a01\acpidisk.sys

ApplicUnwnt.Win32.AdWare.Dudu.A@193614154 D:\a\a01\9a8.exe

Malware@#34uicvvxf792c D:\a\a01\adpacket.dll

Malware@#1tmwmfzfthd7n D:\a\a01\ADPY5PY.exe

TrojWare.Win32.Trojan.NSPM.~gen@122014649 D:\a\a01\ad4.exe|UPX|iPodConverter.exe

Malware@#38098bl86nv76 D:\a\a01\ad4.exe|UPX|db.dat|Unsfx|BaiduBar.dll

Malware@#362ftqgd50vlf D:\a\a01\ad4.exe|UPX|qq.dat

Malware@#10qzbafpnb39q D:\a\a01\ad4.exe|UPX|fzhc.dat

Malware@#3an9gd8dgqjq8 D:\a\a01\9ba.exe|setup.exe|ZQ.exe

TrojWare.Win32.Trojan.NSPM.~gen@122014649 D:\a\a01\ad4.exe|iPodConverter.exe

Malware@#38098bl86nv76 D:\a\a01\ad4.exe|db.dat|Unsfx|BaiduBar.dll

Malware@#362ftqgd50vlf D:\a\a01\ad4.exe|qq.dat

Malware@#10qzbafpnb39q D:\a\a01\ad4.exe|fzhc.dat

TrojWare.Win32.Agent.angn@220045096 D:\a\a01\adslh.exe|Unsfx|s.exe

Malware@#3ptdhch8i36hs D:\a\a01\adslhttpproxyV13.exe

Suspicious@#25s9f8ag7auaz D:\a\a01\AID_C.EXE

Malware@#y96y03lc3t3k D:\a\a01\AIMP2.dll

Malware@#he8m0vl6tdu0 D:\a\a01\ainstall.exe

Malware@#3mmhgjxm89neq D:\a\a01\ajjl0734114.exe

Malware@#2ubkphins19zj D:\a\a01\alexa排名专家.exe

Malware@#3j76i6ightwny D:\a\a01\AlxTB1.dll

Malware@#12elo2ugeiv9h D:\a\a01\AntiARP-DNS.exe

Packed.Win32..Black.~A@104978761 D:\a\a01\AntiArp.exe

Application.Win32.Adware.NewWeb@51854 D:\a\a01\AdvSC.dll

ApplicUnwnt@#3fv6fmy84txn0 D:\a\a01\aidplayer.dll

Application.Win32.Adware.AllSum@162464 D:\a\a01\aoxun.exe|$R

Application.Win32.Adware.AllSum@188786 D:\a\a01\aoxun.exe|$R

Application.Win32.Adware.AllSum@89058 D:\a\a01\aoxun.exe|$R

Malware@#1buacgudegrow D:\a\a01\atmpvcna.dll

Worm.Win32.Dropper.RA@105409960 D:\a\a01\atapreg5.exe

Win32.AdWare.F1Organizer.~A@14944992 D:\a\a01\ATPartners.dll

Virus.Win32.Downloader.BA@81364512 D:\a\a01\AutoCAD-2008-keygen.exe

Malware@#tr4ri4a0h4ip D:\a\a01\aupdate.exe

Packed.Win32..Black.~A@104978761 D:\a\a01\AutoInstall.exe

TrojWare.Win32.Agent.~MAP@17787891 D:\a\a01\AutoClear.exe

Malware@#2d1zu5c21ntfs D:\a\a01\autoprt.exe

TrojWare.Win32.Agent.btho@144738204 D:\a\a01\AutoU.exe

Malware@#1w94jlap2fmkl D:\a\a01\ats_setup.exe|mfc.exe|iprip32.dll

Malware@#1zud90l9mwtjs D:\a\a01\19200clntv8(鼎泰实名版).exe|dsbygs.sys

Malware@#1zud90l9mwtjs D:\a\a01\19200clntv8(鼎泰实名版).exe|msdbgnew.dll

Malware@#1zud90l9mwtjs D:\a\a01\19200clntv8(鼎泰实名版).exe|mskdbg.dll

Suspicious@#1ykizjhbzgq2c D:\a\a01\19200clntv8(鼎泰实名版).exe|InstClnt.exe

Malware@#qcr2y3dcxt9j D:\a\a01\19200clntv8(鼎泰实名版).exe|hdsysl.exe

Malware@#qcr2y3dcxt9j D:\a\a01\19200clntv8(鼎泰实名版).exe|ycswin32.dll

Packed.Win32.MPEC.Gen@161940656 D:\a\a01\19200clntv8(鼎泰实名版).exe|clntconf.exe

显示全部楼层 · 发表于 2012-5-5 19:10:34

s0s020000 发表于 2012-5-3 22:26
呵呵
楼上说数字竟然0误报……

老哥，楼主是360官方人员，这时360收集的误报文件集锦。

显示全部楼层 · 发表于 2012-5-5 23:14:48

lvhaoran123 发表于 2012-5-5 19:10
老哥，楼主是360官方人员，这时360收集的误报文件集锦。

哦，我还不认识……

看来数字在误报上也听下功夫的

显示全部楼层 · 发表于 2012-5-6 07:41:07

2微点主防在解压中干掉42个～

[误报文件] 极易误报的文件系列（1）样本总量：100X 欢迎测试和分享

本帖子中包含更多资源

[误报文件] 极易误报的文件系列（1） 样本总量：100X 欢迎测试和分享

本帖子中包含更多资源

[误报文件] 极易误报的文件系列（1）样本总量：100X 欢迎测试和分享