上报了一个文件，但是之后的信息有些不明白

wingout

Suspicious Files and Miscellaneous Uploads
Thank you for your submission. Below you can see the current status of the uploaded files.

A listing of files alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
1261894	FullScr32.ExE	702.35 KB	MALWARE

Please find a detailed report concerning each individual sample below:

Filename	Result
FullScr32.ExE	MALWARE

The file 'FullScr32.ExE' has been determined to be 'MALWARE'.
Our analysts named the threat BDS/Pcclient.GV.141. The term "BDS/" denotes a Backdoor-Server program. Backdoor-Server programs are used to spy out, modify or delete data.Detection is added to our virus definition file (VDF) starting with version 6.38.00.122. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Crypted.

Please note that you will receive an email which will contain the results shown above. In case the final outcome of the analysis is not yet finished for all files the notification will be sent once ready.

英文差啊，不是十分明白
我上报的文件，小红伞已经报了木马，但我在上报是好像选的是可疑文件（没有选误报）
不知道这样有没有影响？

[ 本帖最后由 wingout 于 2007-10-13 11:29 编辑 ]

周杰伦

你上报的样本，红伞回复说是恶意软件，后门程序啊

mofunzone

估计是误报。。
看了一下，说是什么清华文通慧视视觉图像文字识别系统
lz如果确定是误报，自己不会上报下次就发到论坛上不要自己上报，如果你这么上报入库了之后再移除很费劲。。

wingout

Dear Sir or Madam,

Thank you for your email to Avira's virus lab.
Tracking number: INC00088835.



A listing of files alongside their results can be found below:

File ID  Filename  Size (Byte) Result
1261894  FullScr32.ExE  702.35 KB  MALWARE


Please find a detailed report concerning each individual sample below:

Filename Result  FullScr32.ExE  MALWARE

The file 'FullScr32.ExE' has been determined to be 'MALWARE'. Our analysts named the threat BDS/Pcclient.GV.141. The term "BDS/" denotes a Backdoor-Server program. Backdoor-Server programs are used to spy out, modify or delete data.Detection is added to our virus definition file (VDF) starting with version 6.38.00.122. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Crypted.

Alternatively you can see the analysis result here:
http://analysis.avira.com/sample ... mp;incidentid=88835

An overview of all your submissions can be found here:
http://analysis.avira.com/sample ... EXT3ykIjgrymNWhCrcT


Please note: The detection of Spy/Adware is not available in the product "AntiVir PersonalEdition Classic". Please address specific questions to support@avira.com

Kind regards
Avira Virus Lab

---------------------------------------------
Avira GmbH
Lindauer Str. 21, D-88069 Tettnang, Germany
Phone: +49 (0) 7542-500 0
Fax: +49 (0) 7542-525 10
Internet: http://www.avira.com

CEO: Tjark Auerbach
Headquarter: Tettnang
Commercial register: AG Ulm HRB 630992
---------------------------------------------

wingout

想不到小红伞的效率这么高，上午上报，下午就有结果了

我上报的这个文件是一个鼠标手写的软件，由于下载的地址是一个不是很出名的绿色软件站，所以就自己上报了，下次还是发论坛

另上报的结果是不是已经认定是恶意软件了？

周杰伦

是的，红伞认定该程序是恶意软件，后门程序

wingout

第一次上报就这样结束了，感谢版主和mofunzone