收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一个很象杀软的病毒。两个完全不同的结果。
返回列表 发新帖
查看: 5423|回复: 8
收起左侧

[病毒样本] 一个很象杀软的病毒。两个完全不同的结果。

[复制链接]
yjwfdc
头像被屏蔽
发表于 2008-9-23 14:43:51 | 显示全部楼层 |阅读模式
文件信息
文件名称 :  新建文件夹.rar
文件大小 :  1541351 byte
文件类型 :  RAR archive data, v1d, os
MD5 :  3c79ae803d0398b2cc0e860766811d67
SHA1 :  c9b5fdb5fab711d3af8cfcf521e9089d6eec2a69
扫描结果
扫描结果 :  全部的杀毒软件报告没有发现病毒!
时间 :  2008/09/23 14:26:33 (CST)
软件名称引擎版本
病毒库版本
病毒库时间
扫描结果
时间
a-squared4.0.0.142008.09.172008-09-17-
1.416
AntiVir7.8.1.347.0.6.1952008-09-22-
2.308
Arcavir1.0.52008092211142008-09-22-
1.179
AVAST!3.0.1080922-02008-09-22-
0.002
AVG7.5.52.442270.7.0/16852008-09-22-
1.555
BitDefender7.60825.17768857.210052008-09-23-
3.084
CA (VET)9.0.0.14331.6.60992008-09-22-
3.810
ClamAV0.9483142008-09-23-
0.002
Comodo2.112.0.0.6552008-09-23-
0.391
CP Secure1.1.0.7152008.09.232008-09-23-
5.800
Dr.Web4.44.0.91702008.09.222008-09-22-
3.186
ewido4.0.0.22008.09.222008-09-22-
2.745
F-Prot4.4.4.56200809222008-09-22-
1.023
F-Secure5.51.61002008.09.23.012008-09-23-
0.020
IkarusT3.1.01.342008.09.23.715102008-09-23-
3.335
Microsoft1.39032008.09.232008-09-23-
4.062
mks_vir2.012008.09.232008-09-23-
2.642
Norman5.93.015.93.002008-09-18-
5.405
nProtect2008-09-23.0021328392008-09-23-
4.064
Quick Heal9.502008.09.232008-09-23-
1.920
Sophos2.78.04.332008-09-23-
1.833
Sunbelt3.1.1662.122512008-09-22-
0.402
The Hacker6.3.0.9v000912008-09-22-
0.389
VBA323.12.8.520080922.08302008-09-22-
1.183
ViRobot200809222008.09.222008-09-22-
0.403
VirusBuster4.5.11.1010.88.4/6355962008-09-22-
0.813
卡巴斯基5.5.102008.09.232008-09-23-
0.015
安博士V32008.09.22.002008.09.222008-09-22-
0.967
江民杀毒11.0.7062008.09.232008-09-23-
1.214
熊猫卫士9.05.012008.09.222008-09-22-
2.344
瑞星20.020.63.10.002008-09-23-
0.259
赛门铁克1.3.0.2420080922.0032008-09-22-
0.002
趋势科技8.700-10045.560.052008-09-22-
0.020
迈克菲5.3.0053892008-09-22-
1.912
金山毒霸2008.1.14.152008.9.23.142008-09-23-
0.613
飞塔2.81-3.1139.5792008-09-22-
0.164
注意: 没有发现病毒,但并不代表这不是一个新生的病毒,扫描结果将存储入数据库
复制到剪贴板










































































File __________.rar received on 09.23.2008 08:26:42 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED

Result: 23/36 (63.89%)

Loading server information...
Your file is queued in position: 1.
Estimated start time is between 37 and 53 seconds.
Do not close the window until scan is complete.
The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result.
If you are waiting for more than five minutes you have to resend your file.
Your file is being scanned by VirusTotal in this moment,
results will be shown as they're generated.
Compact
Print results


Your file has expired or does not exists.
Service is stopped in this moments, your file is waiting to be scanned (position:
) for an undefined time. You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished.  
Email:



AntivirusVersionLast UpdateResult
AhnLab-V32008.9.23.02008.09.22-
AntiVir7.8.1.342008.09.22TR/Fakealert.adi
Authentium5.1.0.42008.09.22W32/FakeAV2008.AR
Avast4.8.1195.02008.09.22Win32:Virtob
AVG8.0.0.1612008.09.22Win32/Virut
BitDefender7.22008.09.23Adware.XpAntivirus.AJ
CAT-QuickHeal9.502008.09.23W32.Virut.AE
ClamAV0.93.12008.09.23W32.Virut-27
DrWeb4.44.0.091702008.09.22Win32.Virut.40
eSafe7.0.17.02008.09.22-
eTrust-Vet31.6.60992008.09.22-
Ewido4.02008.09.22-
F-Prot4.4.4.562008.09.22-
F-Secure8.0.14332.02008.09.23Virus.Win32.Virut.bq
Fortinet3.113.0.02008.09.23-
GData192008.09.23Adware.XpAntivirus.AJ
IkarusT3.1.1.34.02008.09.23Generic.Win32.Malware.XPAntiVirus
K7AntiVirus7.10.4672008.09.22-
Kaspersky7.0.0.1252008.09.23Virus.Win32.Virut.bq
McAfee53892008.09.22FakeAlert-AB.gen
Microsoft1.39032008.09.23-
NOD32v234622008.09.23error - password-protected file
Norman5.80.022008.09.19W32/Virut.BN
Panda9.0.0.42008.09.22Suspicious file
PCTools4.4.2.02008.09.22-
Prevx1V22008.09.23Malicious Software
Rising20.63.10.002008.09.23-
Sophos4.33.02008.09.23W32/Virut-Gen
Sunbelt3.1.1662.12008.09.23<Encrypted Archive>
Symantec102008.09.23W32.Virut.W
TheHacker6.3.0.9.0912008.09.23-
TrendMicro8.700.0.10042008.09.23Possible_Virut-3
VBA323.12.8.52008.09.23-
ViRobot2008.9.23.13882008.09.23-
VirusBuster4.5.11.02008.09.22Win32.Virut.Gen.4
Webwasher-Gateway6.6.22008.09.23Trojan.Fakealert.adi
Additional information
File size: 1541351 bytes
MD5...: 3c79ae803d0398b2cc0e860766811d67
SHA1..: c9b5fdb5fab711d3af8cfcf521e9089d6eec2a69
SHA256: 97830bc3aface345e4c31587601e050917bf6adcc8ba83670811abde05bf3bca
SHA512: a92441ed4a56279ec4118493ecf32c7cb7a51c060e5eb1184015d782819fdd5b
ddb9442070de61c84b065bcc661e06578d331f1a365fc6cb4ef6043f31a21280
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
Prevx info: http://info.prevx.com/aboutprogr ... 0E5069E440090898CCC

ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.










本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

河洛星光
发表于 2008-9-23 15:11:07 | 显示全部楼层
--> ￐ᅡᄑ뙈ᅣᄐ￾ᄐ￐\rhc3s8j0er49.exe
      [DETECTION] Is the TR/Fakealert.adi Trojan
回复

举报

yybcym
发表于 2008-9-23 16:27:42 | 显示全部楼层
AVG检测出来了
回复

举报

peterk580
发表于 2008-9-23 16:40:08 | 显示全部楼层
我的卡巴6.0没有检测出威胁
回复

举报

sam.to
发表于 2008-9-23 16:57:39 | 显示全部楼层
已刪除: 病毒 Virus.Win32.Virut.bq        檔案: C:\Documents and Settings\kato9096\獢\?€頧珮?€頧珮?啣遣?辣憭?rar/?磰???璅糭rhc3s8j0er49.exe
回复

举报

Palkia
发表于 2008-9-23 18:07:48 | 显示全部楼层
金山 k1
回复

举报

BING126
头像被屏蔽
发表于 2008-9-23 21:15:44 | 显示全部楼层
McAfee  报了1个。。

database.dat                      no  
license.txt                          no  
mfc71.dll                           no  
mfc71enu.dll                      no  
msvcp71.dll                       no  
msvcr71.dll                        no  
rhc3s8j0er49.exe               w32/virut.j              
rhc3s8j0er49.exe.local       no  
uninstall.exe                       no
回复

举报

yuanliu 该用户已被删除
发表于 2008-9-23 21:29:53 | 显示全部楼层
kis 2009 杀1漏2
回复

举报

v_ww
头像被屏蔽
发表于 2008-9-23 21:37:59 | 显示全部楼层
ess3.0杀2个
E:\Sandbox\wei\virus\user\current\桌面\杀软[1]\杀软\新建文件夹.rar > RAR > 新建文件夹\database.dat > ZIP > compress.dat - 错误 - 文件受密码保护
E:\Sandbox\wei\virus\user\current\桌面\杀软[1]\杀软\新建文件夹.rar > RAR > 新建文件夹\rhc3s8j0er49.exe - Win32/Virut.NBE 病毒
E:\Sandbox\wei\virus\user\current\桌面\杀软[1]\杀软\新建文件夹.rar > RAR > 新建文件夹\Uninstall.exe - Win32/Adware.XPAntivirus 应用程序
E:\Sandbox\wei\virus\user\current\桌面\杀软[1]\杀软\新建文件夹\新建文件夹\database.dat > ZIP > compress.dat - 错误 - 文件受密码保护
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2026-1-1 15:54 , Processed in 0.085353 second(s), 5 queries , Redis On.

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表