红伞误报收集站

xlc1981

文件名:mirsinstall081114.exe(传奇外传客户端安装包)
误报名:Is the TR/Dldr.Delphi.Gen Trojan
是不上报:未上报
下载地址/链接地址:盛大官网

xlc1981

文件名/软件名:  (终极解码2009 新年版)FinalCodecs2009ny.exe
误报名       :  Is the TR/Krunchy.168448 Trojan
下载地址/链接地址: PChome
是否上报:        未上报

weelun94

We received the following archive files:
File ID          Filename         Size (Byte)         Result
25255300          迅雷&快车 地址加解密工具....2.rar         49.86 KB         OK

A listing of files contained inside archives alongside their results can be found below:
File ID          Filename         Size (Byte)         Result
1252921          ####&#### #######....2.exe          67.28 KB          FALSE POSITIVE


Please find a detailed report concerning each individual sample below:
Filename         Result
####&#### #######....2.exe          FALSE POSITIVE

The file '####&#### ############## 0.2.exe' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will not be removed due to the fact that the file does not belong to a regular piece of software. This software can be used for an evasion of security protections in several computer programs. If we will find some malicious code inside the suspicious file anyway, we will integrate the pattern recognition in one of our next updates. In case AntiVir can detect this file we will not change or remove our detection.

weelun94

We received the following archive files:
File ID          Filename         Size (Byte)         Result
25246953          小红伞动态汉化补丁P.rar...丁P.rar         11.42 KB         OK

A listing of files contained inside archives alongside their results can be found below:
File ID          Filename         Size (Byte)         Result
25246954          AntiVirWebGuard.txt          190 Byte          CLEAN
25246955          detection.txt          376 Byte          CLEAN
25246956          filewalker.txt          527 Byte          CLEAN
25246957          gui.txt          405 Byte          CLEAN
25246958          ########.txt          428 Byte          CLEAN
25246959          ##################P.exe          36 KB          DAMAGED FILE (MALWARE)
25246960          AntiVirGuard.txt          305 Byte          CLEAN


Please find a detailed report concerning each individual sample below:
Filename         Result
AntiVirWebGuard.txt          CLEAN

The file 'AntiVirWebGuard.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename         Result
detection.txt          CLEAN

The file 'detection.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename         Result
filewalker.txt          CLEAN

The file 'filewalker.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename         Result
gui.txt          CLEAN

The file 'gui.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename         Result
########.txt          CLEAN

The file '########.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename         Result
##################P.exe          DAMAGED FILE (MALWARE)

The file '##################P.exe' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments. Our analysts named the threat TR/Dropper.Gen. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.This malware is detected by a special detection routine from the engine module.
Filename         Result
AntiVirGuard.txt          CLEAN

The file 'AntiVirGuard.txt' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.

weelun94

太大了！不能上报

weelun94

是否可以给我一个你要上报文件的链接，不要给那网页首页！！

xlc1981

原帖由 weelun94 于 2009-2-11 18:49 发表
是否可以给我一个你要上报文件的链接，不要给那网页首页！！

下载地址：http://download.pchome.net/multimedia/media/download-10544.html

weelun94

对不起 ，因为文件太大了  ，不可以上报。

hxz

文件名/软件名:SwdHC.exe
误报名
是否上报：已上报
上报分析结果
Dear Sir or Madam,

Thank you for your email to Avira's virus lab.
Tracking number: INC00261576.


A listing of files alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
3655464	SwdHC.exe	1.96 MB	FALSE POSITIVE

Please find a detailed report concerning each individual sample below:

Filename	Result
SwdHC.exe	FALSE POSITIVE

The file 'SwdHC.exe' has been determined to be 'FALSE POSITIVE'.In particular this means that this file is not malicious but a false alarm.Detection will not be removed due to the fact that the file doesnot belong to a regular piece of software. This software can be usedfor an evasion of security protections in several computer programs. Ifwe will find some malicious code inside the suspicious file anyway, wewill integrate the pattern recognition in one of our next updates. Incase AntiVir can detect this file we will not change or remove ourdetection.
Alternatively you can see the analysis result here:
http://analysis.avira.com/samples/details.php?uniqueid=BwSCIjEjsFgd0y1xqLH56yh7v1fYS0Sg&incidentid=261576

An overview of all your submissions can be found here:
http://analysis.avira.com/samples/details.php?uniqueid=BwSCIjEjsFgd0y1xqLH56yh7v1fYS0Sg

Please note: The detection of Spy/Adware is not available in theproduct "AntiVir PersonalEdition Classic". Please address specificquestions to support@avira.com
Kind regards
Avira Virus Lab

Beloved

深度一键还原V5.1备份的时候，红伞总是报这个

Virus or unwanted program 'HTML/Crypted.Gen [virus]'detected in file 'C:\Documents and Settings\Administrator\Local Settings\Temp\Ot.Action performed: Allow access