10！

显示全部楼层 · 发表于 2008-7-5 15:19:58

2008-7-5 15:19:46 Detected: Trojan-Dropper.Win32.Agent.rqg D:\Virus\10.rar/VIR (16).exe

显示全部楼层 · 发表于 2008-7-5 15:24:25

0 viruses and/or unwanted programs were found
25066967  VIR (14).eml  6.36 KB  UNDER ANALYSIS
25021332  VIR (7).exe  41.5 KB  DAMAGED FILE (MALWARE)
25045471  VIR (8).exe  35 KB  DAMAGED FILE (UNKNOWN)
208479  VIR (11).exe  9.77 KB  CLEAN
25066968  VIR (16).exe  175.72 KB  UNDER ANALYSIS
25066969  VIR (17).exe  199.31 KB  UNDER ANALYSIS
218292  VIR (21).exe  143.83 KB  FALSE POSITIVE
25014147  VIR (9).dll  20 KB  CLEAN
25019153  VIR (18).dll  269.5 KB  CLEAN
3656174  VIR (19).dll  197 KB  FALSE POSITIVE

显示全部楼层 · 发表于 2008-7-5 15:34:21

A listing of files contained inside archives alongside their results can be found below:
File ID    Filename Size (Byte) Result
25066967    VIR (14).eml    6.36 KB    UNDER ANALYSIS
25021332    VIR (7).exe    41.5 KB    DAMAGED FILE (MALWARE)
25045471    VIR (8).exe    35 KB    DAMAGED FILE (UNKNOWN)
208479    VIR (11).exe    9.77 KB    CLEAN
25066968    VIR (16).exe    175.72 KB    UNDER ANALYSIS
25066969    VIR (17).exe    199.31 KB    UNDER ANALYSIS
218292    VIR (21).exe    143.83 KB    FALSE POSITIVE
25014147    VIR (9).dll    20 KB    CLEAN
25019153    VIR (18).dll    269.5 KB    CLEAN
3656174    VIR (19).dll    197 KB    FALSE POSITIVE

Please find a detailed report concerning each individual sample below:
Filename Result
VIR (14).eml    UNDER ANALYSIS

The file 'VIR (14).eml' has been determined to be 'UNDER ANALYSIS'.
Filename Result
VIR (7).exe    DAMAGED FILE (MALWARE)

The file 'VIR (7).exe' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments.
Filename Result
VIR (8).exe    DAMAGED FILE (UNKNOWN)

The file 'VIR (8).exe' has been determined to be 'DAMAGED FILE (UNKNOWN)'. In particular this means that this file is damaged and not working properly. We could not find any malicious content. However the heuristic detection module may still detect this particular file even though it is damaged. In that case we will not adjust and remove detection for this damaged file.
Filename Result
VIR (11).exe    CLEAN

The file 'VIR (11).exe' has been determined to be 'CLEAN'. Our analysts did not discovered any malicious content.
Filename Result
VIR (16).exe    UNDER ANALYSIS

The file 'VIR (16).exe' has been determined to be 'UNDER ANALYSIS'.
Filename Result
VIR (17).exe    UNDER ANALYSIS

The file 'VIR (17).exe' has been determined to be 'UNDER ANALYSIS'.
Filename Result
VIR (21).exe    FALSE POSITIVE

The file 'VIR (21).exe' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection is removed from our virus definition file (VDF) with the version: 7.0.2.36.
Filename Result
VIR (9).dll    CLEAN

The file 'VIR (9).dll' has been determined to be 'CLEAN'. Our analysts did not discovered any malicious content.
Filename Result
VIR (18).dll    CLEAN

The file 'VIR (18).dll' has been determined to be 'CLEAN'. Our analysts did not discovered any malicious content.
Filename Result
VIR (19).dll    FALSE POSITIVE

The file 'VIR (19).dll' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection is removed from our virus definition file (VDF) with the version: 7.0.2.72.

显示全部楼层 · 发表于 2008-7-5 15:38:51

我服了。。。。。。。里面什么东西都有。。。。。金山的脱壳引擎文件。。。。。。。测试误报很不错。。。。。

显示全部楼层 · 发表于 2008-7-5 15:42:18

kv 1个

显示全部楼层 · 发表于 2008-7-5 17:56:46

蜘蛛0

显示全部楼层 · 发表于 2008-7-5 18:33:31

病毒 2008-07-05 18:33:13 C:\Documents and Settings\Administrator\桌面\10.rar\VIR (7).exe Win32.Hack.FuckCrypt.a.32768 清除成功

显示全部楼层 · 发表于 2008-7-5 18:37:36

对象: VIR (16).exe
路径: D:\10
Status: 已发现病毒
病毒: Trojan-Dropper.Win32.Agent.rqg (KAV 引擎)
对象: VIR (17).exe
路径: D:\10
Status: 已发现病毒
病毒: Trojan.Dropper.RXJ (BD 引擎)

饿...有点...~

[病毒样本] 10！

本帖子中包含更多资源

NOD32 0个

本帖子中包含更多资源