1 New Sample 续

显示全部楼层 · 发表于 2008-7-17 22:53:21

http://bbs.kafan.cn/thread-287026-1-1.html

Antivirus	Version	Last Update	Result
AhnLab-V3	2008.7.17.0	2008.07.17	-
AntiVir	7.8.0.68	2008.07.17	-
Authentium	5.1.0.4	2008.07.16	-
Avast	4.8.1195.0	2008.07.17	-
AVG	8.0.0.130	2008.07.17	Downloader.Agent.AIHE
BitDefender	7.2	2008.07.17	-
CAT-QuickHeal	9.50	2008.07.17	-
ClamAV	0.93.1	2008.07.17	-
DrWeb	4.44.0.09170	2008.07.17	-
eSafe	7.0.17.0	2008.07.17	-
eTrust-Vet	31.6.5962	2008.07.17	-
Ewido	4.0	2008.07.17	-
F-Prot	4.4.4.56	2008.07.16	-
F-Secure	7.60.13501.0	2008.07.17	Trojan-Downloader.Win32.Agent.wjt
Fortinet	3.14.0.0	2008.07.17	W32/Agent.WJT!tr.dldr
GData	2.0.7306.1023	2008.07.17	Trojan-Downloader.Win32.Agent.wjt
Ikarus	T3.1.1.34.0	2008.07.17	Trojan-Downloader.Win32.Agent.wjt
Kaspersky	7.0.0.125	2008.07.17	Trojan-Downloader.Win32.Agent.wjt
McAfee	5340	2008.07.16	-
Microsoft	1.3704	2008.07.17	-
NOD32v2	3276	2008.07.17	-
Norman	5.80.02	2008.07.16	-
Panda	9.0.0.4	2008.07.16	Suspicious file
Prevx1	V2	2008.07.17	-
Rising	20.53.32.00	2008.07.17	-
Sophos	4.31.0	2008.07.17	Troj/DwnLdr-HFQ
Sunbelt	3.1.1536.1	2008.07.17	-
Symantec	10	2008.07.17	-
TheHacker	6.2.96.381	2008.07.16	-
TrendMicro	8.700.0.1004	2008.07.17	-
VBA32	3.12.8.0	2008.07.17	-
VirusBuster	4.5.11.0	2008.07.16	-
Webwasher-Gateway	6.6.2	2008.07.17	-

Additional information

File size: 3815 bytes

MD5...: f10f202b23100cedcd2517162610cda6

SHA1..: e0dac5366d67c8a07a328ac64df6db820c47f688

SHA256: 9a589f3e9b919cf8ba7819b3c55a10635a239c22fa49b8b558f16ca727f7f650

SHA512: 26f34aef4f7fd53e1368a9c77de4b71aec2d7d5cdb04fc4adb1a9ecf3c17ae55
69861bfdf4f636f01f7491ae6f505df841e7628fbf7dcad068b1cefabcecb6bb

PEiD..: -

PEInfo: -

ATTENTION:VirusTotal is a free service offered by Hispasec Sistemas. There are noguarantees about the availability and continuity of this service.Although the detection rate afforded by the use of multiple antivirusengines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

Dear Sir or Madam,

Thank you for your email to Avira's virus lab.
Tracking number: INC00174014.

We received the following archive files:

File ID	Filename	Size (Byte)	Result
25076499	teamozy.rar	3.73 KB	OK

A listing of files contained inside archives alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
25076500	teamozy.dll	24 KB	FALSE POSITIVE

Please find a detailed report concerning each individual sample below:

Filename

Result

teamozy.dll

FALSE POSITIVE

The file 'teamozy.dll' has been determined to be 'FALSE POSITIVE'.In particular this means that this file is not malicious but a false alarm.Detection will be removed from our virus definition file (VDF) with one of the next updates.
Alternatively you can see the analysis result here:
http://analysis.avira.com/samples/details.php?uniqueid=7kmBO1prDx65VJI9jQJzqwBg6R0LJnhA&incidentid=174014

An overview of all your submissions can be found here:
http://analysis.avira.com/samples/details.php?uniqueid=7kmBO1prDx65VJI9jQJzqwBg6R0LJnhA

Please note: The detection of Spy/Adware is not available in theproduct "AntiVir PersonalEdition Classic". Please address specificquestions to support@avira.com
Kind regards
Avira Virus Lab

---------------------------------------------
Avira GmbH
Lindauer Str. 21, D-88069 Tettnang, Germany
Phone: +49 (0) 7542-500 0
Fax: +49 (0) 7542-525 10
Internet: http://www.avira.com

CEO: Tjark Auerbach
Headquarter: Tettnang
Commercial register: AG Ulm HRB 630992
---------------------------------------------

显示全部楼层 · 发表于 2008-7-17 22:54:15

搞不懂

[ 本帖最后由 allinwonderi 于 2008-7-17 22:55 编辑 ]

显示全部楼层 · 发表于 2008-7-17 22:55:36

什么意思...~

显示全部楼层 · 发表于 2008-7-17 22:57:27

本来红伞启发发现的，结果上报给红伞，红伞说误报了，去掉了定义。卡巴，AVG，Sophos等，本来没有检测到，上报后，都说是病毒。

[ 本帖最后由 allinwonderi 于 2008-7-17 22:58 编辑 ]

显示全部楼层 · 发表于 2008-7-17 22:59:20

原帖由 allinwonderi 于 2008-7-17 22:57 发表
本来红伞启发发现的，结果上报给红伞，红伞说误报了，去掉了定义。卡巴，AVG，Sophos等，本来没有检测到，上报后，都说是病毒。

晕....
定义不同...~
饿...~

显示全部楼层 · 发表于 2008-7-17 22:59:58

而且他们之间有的直接交换样本了

。

显示全部楼层 · 发表于 2008-7-17 23:02:45

飞塔竟然反应这么快

显示全部楼层 · 发表于 2008-7-17 23:03:54

既然报下载者，我怎么找不到下载列表？

显示全部楼层 · 发表于 2008-7-18 08:32:28

谢谢收下了

显示全部楼层 · 发表于 2008-7-18 11:19:28

最新vt
File teamozy.rar received on 07.18.2008 05:14:26 (CET)

Antivirus	Version	Last Update	Result
AhnLab-V3	2008.7.17.0	2008.07.17	-
AntiVir	7.8.0.68	2008.07.17	-
Authentium	5.1.0.4	2008.07.18	-
Avast	4.8.1195.0	2008.07.17	-
AVG	8.0.0.130	2008.07.17	-
BitDefender	7.2	2008.07.18	-
CAT-QuickHeal	9.50	2008.07.17	-
ClamAV	0.93.1	2008.07.18	-
DrWeb	4.44.0.09170	2008.07.17	-
eSafe	7.0.17.0	2008.07.17	-
eTrust-Vet	31.6.5962	2008.07.17	-
Ewido	4.0	2008.07.17	-
F-Prot	4.4.4.56	2008.07.18	-
F-Secure	7.60.13501.0	2008.07.18
Fortinet	3.14.0.0	2008.07.17	W32/Agent.WJT!tr.dldr
GData	2.0.7306.1023	2008.07.18	-
Ikarus	T3.1.1.34.0	2008.07.18	-
Kaspersky	7.0.0.125	2008.07.18	-
McAfee	5341	2008.07.18	-
Microsoft	1.3704	2008.07.18	-
NOD32v2	3277	2008.07.18	-
Norman	5.80.02	2008.07.17	-
Panda	9.0.0.4	2008.07.17	-
Prevx1	V2	2008.07.18	-
Rising	20.53.32.00	2008.07.17	-
Sophos	4.31.0	2008.07.18	-
Sunbelt	3.1.1536.1	2008.07.17	-
Symantec	10	2008.07.18	-
TheHacker	6.2.96.381	2008.07.16	-
TrendMicro	8.700.0.1004	2008.07.17	-
VBA32	3.12.8.0	2008.07.17	-
VirusBuster	4.5.11.0	2008.07.17	-
Webwasher-Gateway	6.6.2	2008.07.18	-
Hello. We have fixed false alarm Please quote all when answering. Do not forget to include you registration data. ----------------- Regards, Tatarinov Ivan Virus Analyst, Kaspersky Lab.

[病毒样本] 1 New Sample 续

本帖子中包含更多资源

回复 3楼电影结束了的帖子

[病毒样本] 1 New Sample 续

本帖子中包含更多资源

回复 3楼 电影结束了 的帖子

回复 3楼电影结束了的帖子