瑞星卡卡安全论坛

首页 » 技术交流区 » 可疑文件交流 » 相信自己做的软件没有病毒
我是大伟 - 2009-8-8 0:08:00
以前用这个软件很好也没发现有病毒就最近老说他是病毒和误杀
我怎说是误报呀 是我用37个查杀工具就有5个说是病毒(多引擎在线病毒扫描网)
病毒库老点但是和瑞星开启报告的月份是一样的样本在附件里提供大家测试

VirSCAN.org Scanned Report :
Scanned time  : 2009/05/17 22:41:16 (CST)
Scanner results: 13%的杀软(5/38)报告发现病毒
File Name      : 942T.EXE
File Size      : 1859136 byte
File Type      : MS-DOS executable, MZ for MS-DOS
MD5            : c221a7faba65eefddc756ba80d3ff2a6
SHA1          : eee2ad4567b850aa55d6f95187e3220a1886f51c
Online report  : http://virscan.org/report/5714ae2cc3f28c3b015679937e1917e5.html
Scanner        Engine Ver      Sig Ver          Sig Date    Time  Scan result
a-squared      4.0.0.32        20090516190230    2009-05-16  2.35  -
安博士V3      2009.05.17.00  2009.05.17        2009-05-17  0.87  -
AntiVir        8.2.0.168      7.1.3.216        2009-05-16  0.35  -
安天          2.0.18          20090517.2427008  2009-05-17  0.12  -
Arcavir        2009            200905171029      2009-05-17  0.11  -
Authentium    5.1.1          200905161041      2009-05-16  1.33  W32/Heuristic-210!Eldorado (Heuristic)
AVAST!        4.7.4          090516-0          2009-05-16  0.55  -
AVG            8.5.286        270.12.32/2118    2009-05-17  4.57  -
BitDefender    7.81008.2988473 7.25461          2009-05-17  3.65  -
CA (VET)      9.0.0.143      31.6.6507        2009-05-16  5.65  -
ClamAV        0.95            9364              2009-05-16  0.30  -
Comodo        3.9            1170              2009-05-17  0.74  -
CP Secure      1.1.0.715      2009.05.17        2009-05-17  9.23  -
Dr.Web        4.44.0.9170    2009.05.17        2009-05-17  4.83  -
F-Prot        4.4.4.56        20090516          2009-05-16  1.34  Possible W32/Heuristic-210!Eldorado (not disinfectable)
F-Secure      5.51.6100      2009.05.16.01    2009-05-16  0.16  -
飞塔          2.81-3.117      10.398            2009-05-17  0.46  -
GData          19.5267/19.333  20090517          2009-05-17  5.19  -
ViRobot        20090515        2009.05.15        2009-05-15  0.44  -
Ikarus        T3.1.01.49      2009.05.17.72730  2009-05-17  3.82  -
江民杀毒      11.0.706        2009.05.17        2009-05-17  2.64  -
卡巴斯基      5.5.10          2009.05.17        2009-05-17  0.12  -
金山毒霸      2009.2.5.15    2009.5.17.21      2009-05-17  1.22  -
迈克菲        5.3.00          5617              2009-05-16  2.91  -
Microsoft      1.4602          2009.05.16        2009-05-16  7.88  -
mks_vir        2.01            2009.05.16        2009-05-16  3.50  Win32.4
Norman        6.01.05        6.01.00          2009-05-15  4.01  -
熊猫卫士      9.05.01        2009.05.16        2009-05-16  2.10  -
趋势科技      8.700-1004      6.134.18          2009-05-17  0.18  -
Quick Heal    10.00          2009.05.15        2009-05-15  1.60  -
瑞星          20.0            21.29.62.00      2009-05-17  2.08  Win32.Virut.bm
Sophos        2.86.0          4.41              2009-05-17  2.64  -
Sunbelt        5139            5139              2009-05-16  1.15  VIPRE.Suspicious
赛门铁克      1.3.0.24        20090516.003      2009-05-16  0.34  -
nProtect      20090517.01    3708563          2009-05-17  6.58  -
The Hacker    6.3.4.1        v00326            2009-05-16  0.70  -
VBA32          3.12.10.5      20090516.1854    2009-05-16  32.03  -
VirusBuster    4.5.11.10      10.105.28/1378347 2009-05-16  2.34  -

用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; QQDownload 563; TencentTraveler 4.0)

附件: 942T.rar
我是大伟 - 2009-8-8 0:22:00
反病毒引擎版本最后更新扫描结果
a-squared4.5.0.242009.08.07-
AhnLab-V35.0.0.22009.08.07-
AntiVir7.9.0.2462009.08.07-
Antiy-AVL2.0.3.72009.08.07-
Authentium5.1.2.42009.08.07W32/Heuristic-210!Eldorado
Avast4.8.1335.02009.08.06-
AVG8.5.0.4062009.08.07-
BitDefender7.22009.08.07-
CAT-QuickHeal10.002009.08.07-
ClamAV0.94.12009.08.07-
Comodo18982009.08.07-
DrWeb5.0.0.121822009.08.07-
eSafe7.0.17.02009.08.06-
eTrust-Vet31.6.66652009.08.07-
F-Prot4.4.4.562009.08.07W32/Heuristic-210!Eldorado
F-Secure8.0.14470.02009.08.07-
Fortinet3.120.0.02009.08.07-
GData192009.08.07-
IkarusT3.1.1.64.02009.08.07-
Jiangmin11.0.8002009.08.07-
K7AntiVirus7.10.8132009.08.07-
Kaspersky7.0.0.1252009.08.07-
McAfee57002009.08.06-
McAfee+Artemis57002009.08.06-
McAfee-GW-Edition6.8.52009.08.07-
Microsoft1.49032009.08.07-
NOD3243152009.08.07-
Norman6.01.092009.08.07-
nProtect2009.1.8.02009.08.07-
Panda10.0.0.142009.08.07Suspicious file
PCTools4.4.2.02009.08.07-
Prevx3.02009.08.07-
Rising21.41.44.002009.08.07Win32.Virut.bm
Sophos4.44.02009.08.07-
Sunbelt3.2.1858.22009.08.07-
Symantec1.4.4.122009.08.07-
TheHacker6.3.4.3.3772009.08.05-
TrendMicro8.950.0.10942009.08.07-
VBA323.12.10.92009.08.07-
ViRobot2009.8.7.18732009.08.07-
VirusBuster4.6.5.02009.08.06-

附加信息
File size: 1859136 bytes
MD5  : c221a7faba65eefddc756ba80d3ff2a6
SHA1  : eee2ad4567b850aa55d6f95187e3220a1886f51c
SHA256: 6f7b222284bdd97d09995ba6f9ac02bd10e63228f19e90bb94b374a3de069346
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x4487A1E9 (Thu Jun 8 06:04:57 2006)
machinetype.......: 0x14C (Intel I386)

( 10 sections )
name viradd virsiz rawdsiz ntrpy md5
0x1000 0xE2000 0x5D400 8.00 272d397a70ba2897554dbca1a8579846
0xE3000 0x9000 0x3A00 7.99 8a305265e01d48092442151e6e7abf87
0xEC000 0x15000 0x5000 7.99 a00e80908ebcebe9ad03f174b833ee57
0x101000 0x13000 0x3200 7.99 32e6a842e94c588af6f08d6909011ce6
0x114000 0x37E000 0x6800 7.99 3378ca1a88505187e3e82b8e761b94e6
.rsrc 0x492000 0x345000 0x10DC00 7.99 f2359c606d3b7d9a10c0a7f16cea6052
0x7D7000 0x3000 0x2C00 7.98 aba8f353e4881aba2e5375f26e0fb66b
0x7DA000 0x1000 0x200 7.62 18b6f43f4cce9cbb42fe02fabf14c014
.data 0x7DB000 0x46000 0x45800 7.87 6b569d63379ea56bce64a7a94d97734f
.adata 0x821000 0x1000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e

( 21 imports )

> advapi32.dll: RegCreateKeyA
> avifil32.dll: AVIFileInit
> comctl32.dll: ImageList_Draw
> comdlg32.dll: CommDlgExtendedError
> gdi32.dll: LineTo
> hook.dll: _setKbHook@@YAXHH@Z
> jiaoaud.dll: AudRegisterServer
> jiaodsp.dll: DSPIsEffectBufUsing
> kernel32.dll: GetProcAddress, GetModuleHandleA, LoadLibraryA, RaiseException
> language.dll: fun1
> newdev.dll: UpdateDriverForPlugAndPlayDevicesA
> ole32.dll: CoTaskMemAlloc
> oleaut32.dll: VariantTimeToSystemTime, VariantChangeTypeEx
> oledlg.dll: OleUIBusyA
> olepro32.dll: OleCreateFontIndirect
> setupapi.dll: SetupDiGetDeviceRegistryPropertyA
> shell32.dll: DragFinish
> user32.dll: ShowOwnedPopups
> wininet.dll: InternetCanonicalizeUrlA
> winmm.dll: timeKillEvent
> winspool.drv: OpenPrinterA

( 0 exports )
TrID  : File type identification
Generic Win/DOS Executable (50.0%)
DOS Executable Generic (49.9%)
ssdeep: 49152:721sBRa0MCsTsRVkzhEnAe2D5F1TqRpZGkrZl:y1m80Fs6CoD2tF1BCl
PEiD  : ASProtect v1.23 RC1
packers (Kaspersky): PE_Patch
packers (F-Prot): PE_Patch, Aspack
packers (Authentium): PE_Patch, Aspack, Aspack
RDS  : NSRL Reference Data Set
-
sinoer - 2009-8-8 9:42:00
http://bbs.ikaka.com/showtopic-8575573-58.aspx    573楼
工程师已收集样本
1
查看完整版本: 相信自己做的软件没有病毒
© 2000 - 2025 Rising Corp. Ltd.