揣測是紅傘的誤報一枚

显示全部楼层 · 发表于 2008-1-24 20:57:18

該文件是從幻想三國志三的文件夾中發現的，小可愚魯，不明所以，請各位來分析一下其可疑在哪裡？

VirSCAN.org Scanned Report :
Scanned time : 2008/01/24 20:42:31 (CST)
Scanner results: 8%的杀软(3/36)报告发现病毒
File Name : Source.zip
File Size : 55296 byte
File Type : MS-DOS executable (EXE), OS/2 or MS Windows
MD5 : 1e05751a134290b4f830bc9e3e90ced2
SHA1 : 93269eaa1df653854e5c1e2f269949343a7a3245
Online report : http://virscan.org/report/efffc866a129363f01aa41dd9817a584.html

Scanner Engine Ver Sig Ver Sig Date Time Scan result
a-squared 3.0.0.126 2008.01.23 2008-01-23 4.19 -
安博士V3 2008.01.23.11 2008.01.23 2008-01-23 1.66 -
AntiVir 7.6.0.48 7.0.2.41 2008-01-24 11.10 HEUR/Crypted
Arcavir 1.0.4 200801231647 2008-01-23 5.79 -
AVAST 1.0.8 080123-2 2008-01-23 4.57 -
AVG 7.5.51.442 269.19.9/1239 2008-01-23 7.86 -
BitDefender 7.60825.976798 7.17104 2008-01-24 13.20 -
CA (VET) 9.0.0.143 31.3.5482 2008-01-24 9.25 -
ClamAV 0.92 5544 2008-01-24 0.06 -
Comodo 2.11 2.0.0.414 2008-01-24 1.62 -
CP Secure 1.1.0.695 2008.01.24 2008-01-24 21.08 -
Dr.WEB 4.44.0.9170 2008.01.24 2008-01-24 16.21 -
ewido 4.0.0.2 2008.01.24 2008-01-24 3.31 -
F-PROT 4.4.1.52 20080123 2008-01-23 8.95 -
F-SECURE 5.51.6100 2008.01.24.02 2008-01-24 0.07 -
飞塔 2.81-3.11 8.666 2008-01-24 2.88 Suspicious
ViRobot 20080124 2008.01.24 2008-01-24 1.59 -
IKARUS T3.1.01.15 2008.01.24.70195 2008-01-24 2.47 -
江民杀毒 10.00.650 2008.01.23 2008-01-23 2.74 -
卡巴斯基 5.5.10 2008.01.24 2008-01-24 30.42 -
金山毒霸 2007.6.20.249 2008.1.24 2008-01-24 1.85 -
迈克菲 5.2.00 5214 2008-01-23 7.11 -
MKS_VIR 2.01 2008.01.24 2008-01-24 13.91 -
NOD32 2.70.10 2819 2008-01-24 0.11 -
NORMAN 5.91.10 5.90 2008-01-23 24.15 -
熊猫卫士 9.04.03.0001 2008.01.23 2008-01-23 5.09 -
趋势 8.500-1001 4.960.04 2008-01-24 0.00 -
Prevx V2 20080124 2008-01-24 15.15 -
QuickHeal 9.00 2008.01.22 2008-01-22 6.40 -
瑞星 19.0 20.28.02.00 2008-01-21 2.94 -
SOPHOS 2.53.1 4.25 2008-01-24 11.43 Mal/Proxy-B
赛门铁克 1.3.0.24 20080123.023 2008-01-23 0.41 -
nProtect 2008-01-24.00 1148365 2008-01-24 10.14 -
The Hacker 6.2.9 v00196 2008-01-23 1.49 -
VBA32 3.12.2.5 20080123.0512 2008-01-23 4.60 -
VirusBuster 4.3.19:9 9.120.7/11.0 2008-01-23 5.14 -

[ 本帖最后由 llgiggs 于 2008-1-24 21:05 编辑 ]

显示全部楼层 · 发表于 2008-1-24 21:00:06

DR.WEB 、IK、 CAV【PASS】

[ 本帖最后由冷_冷于 2008-1-24 21:09 编辑 ]

显示全部楼层 · 发表于 2008-1-24 21:00:15

显示全部楼层 · 发表于 2008-1-24 21:06:12

文件已更新

显示全部楼层 · 发表于 2008-1-24 21:22:40

McAfee miss

显示全部楼层 · 发表于 2008-1-24 21:25:32

这回三大比较统一

显示全部楼层 · 发表于 2008-1-25 08:23:44

现在小红伞已经不报了~

显示全部楼层 · 发表于 2008-1-25 09:01:13

不報了？

File ID	Filename	Size (Byte)	Result
3653152	Source.zip	54 KB	DAMAGED FILE (MALWARE)

Please find a detailed report concerning each individual sample below:

Filename

Result

Source.zip

DAMAGED FILE (MALWARE)

The file 'Source.zip' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments. Our analysts named the threat HEUR/Crypted.

我之前上傳給AVIRA的時候也用了開始那個破壞的東西- -，雖然破壞了，但是他們還是發現了可疑的部分

显示全部楼层 · 发表于 2008-1-25 09:37:11

一个DLL文件

[病毒样本] 揣測是紅傘的誤報一枚

本帖子中包含更多资源

本帖子中包含更多资源

Avira AntiVir