IceSword小A报两天左右了。大家的小A报不。

风雪

http://bbs.kafan.cn/thread-236736-1-1.html

卡饭论坛 » 病毒救援区 » -----------------------常用反病毒辅助工具集-----------------------




Icesword

用下面方法说明误报？
avast!样本上报方法！将样本文件压缩为ZIP格式，设置密码为virus,发送至virus@avast.com即可！ALWIL对上报虽然不回复，但一定会分析并处理上报样本的！
把版本Icesword从1。20升级到1。22问题解决不报了。

http://www.virustotal.com/analisis/79307b2c6fc5fcbb35d6a2146c8da560

File IceSword120_cn.rar received on 07.30.2008 03:50:09 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED

Result: 3/35 (8.58%)

Loading server information...
Your file is queued in position: ___.
Estimated start time is between ___ and ___
.
Do not close the window until scan is complete.
The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result.
If you are waiting for more than five minutes you have to resend your file.
Your file is being scanned by VirusTotal in this moment,
results will be shown as they're generated.

Compact
Print results

Your file has expired or does not exists.
Service is stopped in this moments, your file is waiting to be scanned (position:
) for an undefined time. You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished.  

Email:

Antivirus	Version	Last Update	Result
AhnLab-V3	2008.7.29.1	2008.07.29	-
AntiVir	7.8.1.12	2008.07.29	-
Authentium	5.1.0.4	2008.07.30	-
Avast	4.8.1195.0	2008.07.29	Win32:Agent-AAUC
AVG	8.0.0.130	2008.07.29	-
BitDefender	7.2	2008.07.30	-
CAT-QuickHeal	9.50	2008.07.29	-
ClamAV	0.93.1	2008.07.29	-
DrWeb	4.44.0.09170	2008.07.29	-
eSafe	7.0.17.0	2008.07.29	-
eTrust-Vet	31.6.5994	2008.07.30	-
Ewido	4.0	2008.07.29	-
F-Prot	4.4.4.56	2008.07.30	-
F-Secure	7.60.13501.0	2008.07.29	-
Fortinet	3.14.0.0	2008.07.29	-
GData	2.0.7306.1023	2008.07.30	-
Ikarus	T3.1.1.34.0	2008.07.30	Virus.Win32.Stealth.H
Kaspersky	7.0.0.125	2008.07.30	-
McAfee	5349	2008.07.29	-
Microsoft	1.3704	2008.07.28	-
NOD32v2	3308	2008.07.29	-
Norman	5.80.02	2008.07.28	-
Panda	9.0.0.4	2008.07.29	Suspicious file
PCTools	4.4.2.0	2008.07.30	-
Prevx1	V2	2008.07.30	-
Rising	20.55.12.00	2008.07.29	-
Sophos	4.31.0	2008.07.30	-
Sunbelt	3.1.1537.1	2008.07.29	-
Symantec	10	2008.07.30	-
TheHacker	6.2.96.389	2008.07.25	-
TrendMicro	8.700.0.1004	2008.07.29	-
VBA32	3.12.8.1	2008.07.29	-
ViRobot	2008.7.29.1315	2008.07.29	-
VirusBuster	4.5.11.0	2008.07.29	-
Webwasher-Gateway	6.6.2	2008.07.29	-

Additional information

File size: 982916 bytes

MD5...: 9c78d6256369398f1ea3b6c0e0b6aa6c

SHA1..: 0b2d04c1887738c8c2d3757766888be31002b638

SHA256: 2d802822a4bc51ebb8b8061f7c7d3ce16ff1c11ce979eea91782fa58a81faf18

SHA512: 77a5bc93dfdb34d913895efbf17ed7bc52b0cacba12217173e4df00f1c401d44 1f388bb64817e9140ed91457c10da9b2f10a9315ab110f1305c3a58696717d3e

PEiD..: -

PEInfo: -

packers (Avast): ASPack

packers (F-Prot): Aspack

packers (Kaspersky): ASPack

文件 IceSword122cn.zip 接收于 2008.07.30 03:56:19 (CET)
当前状态: 正在读取 ... 队列中 等待中 扫描中 完成 未发现 停止

结果: 4/35 (11.43%)

正在读取服务器信息中...
您的文件所排队列位置: ___.
预计开始时间为 ___ 和 ___
之间.
扫描完成前请勿关闭窗口.
目前针对您的文件所进行的扫描进程已停止, 我们将会在稍后恢复.
如果您的等候时间超过 5 分钟, 请重新发送文件.
您的文件目前正在被 VirusTotal 扫描中,
结果将会稍后完成时生成.

格式化文本
打印结果

您的文件已过期或不存在.
目前服务已停止, 您的文件将会稍后的未知时间内进行扫描 (位置:
). 您可以继续等待回应 (自动读取) 或者在下面的表单内输入您的电子邮件地址, 并按下 "获取", 当扫描完成时, 系统会自动给您发送电子邮件通知.  

Email:

反病毒引擎	版本	最后更新	扫描结果
AhnLab-V3	2008.7.29.1	2008.07.29	-
AntiVir	7.8.1.12	2008.07.29	-
Authentium	5.1.0.4	2008.07.30	-
Avast	4.8.1195.0	2008.07.29	-
AVG	8.0.0.130	2008.07.29	-
BitDefender	7.2	2008.07.30	-
CAT-QuickHeal	9.50	2008.07.29	-
ClamAV	0.93.1	2008.07.29	-
DrWeb	4.44.0.09170	2008.07.29	-
eSafe	7.0.17.0	2008.07.29	Suspicious File
eTrust-Vet	31.6.5994	2008.07.30	-
Ewido	4.0	2008.07.29	-
F-Prot	4.4.4.56	2008.07.30	-
F-Secure	7.60.13501.0	2008.07.29	-
Fortinet	3.14.0.0	2008.07.29	-
GData	2.0.7306.1023	2008.07.30	-
Ikarus	T3.1.1.34.0	2008.07.30	-
Kaspersky	7.0.0.125	2008.07.30	-
McAfee	5349	2008.07.29	-
Microsoft	1.3704	2008.07.28	-
NOD32v2	3308	2008.07.29	-
Norman	5.80.02	2008.07.28	-
Panda	9.0.0.4	2008.07.29	Suspicious file
PCTools	4.4.2.0	2008.07.30	-
Prevx1	V2	2008.07.30	Malicious Software
Rising	20.55.12.00	2008.07.29	-
Sophos	4.31.0	2008.07.30	-
Sunbelt	3.1.1537.1	2008.07.29	-
Symantec	10	2008.07.30	-
TheHacker	6.2.96.389	2008.07.25	-
TrendMicro	8.700.0.1004	2008.07.29	-
VBA32	3.12.8.1	2008.07.29	-
ViRobot	2008.7.29.1315	2008.07.29	Spyware.XRun.2711
VirusBuster	4.5.11.0	2008.07.29	-
Webwasher-Gateway	6.6.2	2008.07.29	-

附加信息

File size: 2210176 bytes

MD5...: 560b7e6c08df97d6a400bc91b0c89bf7

SHA1..: 8693d8a204a2b511c9255f48bb481b66905ee619

SHA256: e1810773f82b3dea7bad14e93f2db33b58e1836f52b860b4b8a98bb75b3a97c2

SHA512: c884cbbdd9d525f34ddb8a21216fc9c857fefe04fd9dadbf50435e4351838993 4919577b773203a3b65d201a271e6d2ac8a2d74909c00b18bca6ec8fe5201c6c

PEiD..: -

PEInfo: -

packers (F-Prot): Aspack

packers (Kaspersky): ASPack, ASPack, ASPack

Prevx info: http://info.prevx.com/aboutprogr ... 0F1D78C0F004E1835A2

[ 本帖最后由 风雪 于 2008-7-30 10:03 编辑 ]

我的不报IceSword1.22

风雪

你扫描了么？双击执行了么？我扫描和执行都会报。报的是Win32:Agent-AAUC [Trj]
特洛伊木马
080729-0, 2008-07-29

2008-7-29 21:55:50        tiger        128        Sign of "Win32:Agent-AAUC [Trj]" has been found in "F:\pfsvoddata.bbv\IceSword.zip\I c e S w o r d.exe\[UPX]" file.  
2008-7-29 21:57:04        tiger        1548        Sign of "Win32:Agent-AAUC [Trj]" has been found in "C:\WINDOWS\system32\drivers\SuperDrv.sys" file.  
2008-7-29 21:57:05        tiger        1548        Sign of "Win32:Agent-AAUC [Trj]" has been found in "C:\WINDOWS\system32\drivers\SuperDrv.sys" file.  
2008-7-29 21:57:05        tiger        1548        Sign of "Win32:Agent-AAUC [Trj]" has been found in "C:\WINDOWS\system32\drivers\doduzayp.sys" file.
我没有记错我的原始版本是从作者处下载的，卡饭援助区的也报。你用的为什么不报？？？？？？

[ 本帖最后由 风雪 于 2008-7-29 21:59 编辑 ]

skylzf

我小A不报:

风雪

我是从上一个avast! 测试版更新到 4.8.1218直接升级到正式版的。avast! 4.8.1229 ，真是怪事，别的程序不报，就是这个冰刃报，而且就是两天前开始报。我每天必用的工具居然报。

风雪

能把你的冰刃发上来我看看报病毒不么？

skylzf

给你试试:





呵呵

[ 本帖最后由 skylzf 于 2008-7-30 09:33 编辑 ]

风雪

谢谢我明白了，小A报Icesword的1.20,不报1.22。我刚刚人华军下载1.22不报。小A报的版本用的人很少了。我很久没有更新版本了。习惯了没有什么新功能就没有更新。

leizhangcn

我用的1.22，小a确实不报！
楼主换个版本吧！