本文对比了多种防病毒软件对特定文件的检测结果,包括bind_8376.exe、dtdl.dll等文件,揭示了不同软件对于同一文件可能存在的不同判断。
endurer 原创
2006-02-16 第2版 瑞星18.14.10将bind_8376.exe报为:Trojan.DL.Agent.ery
2006-02-08 第1版
昨晚帮一位朋友弄电脑,装了AntiVir扫描了一下,发现了24个染毒文件(包括系统还原文件夹里的)。
有几个比较少见的,瑞星2006(18.13.20版本未报,但瑞星18.14.10报为:2Trojan.DL.Agent.ery)和江民KV2006(2月7日的病毒库)均没有反应:
| File: | bind_8376.exe |
| Status: | INFECTED/MALWARE |
| MD5 | c87d7fd43cba4ed6d7be58fb0b80348f |
| Packers detected: | - |
| Scanner results | |
| AntiVir | Found Trojan/Dldr.Agent.XG |
| ArcaVir | Found nothing |
| Avast | Found nothing |
| AVG Antivirus | Found nothing |
| BitDefender | Found Trojan.Downloader.NSIS.Agent.B |
| ClamAV | Found nothing |
| Dr.Web | Found nothing |
| F-Prot Antivirus | Found nothing |
| Fortinet | Found Agent.M!dldr |
| Kaspersky Anti-Virus | Found Trojan-Downloader.NSIS.Agent.m |
| NOD32 | Found nothing |
| Norman Virus Control | Found W32/Agent.IKM |
| UNA | Found nothing |
| VBA32 | Found nothing |
| File: | dtdl.dll |
| Status: | INFECTED/MALWARE |
| MD5 | d32ed2c574857212900a968d84a5b32b |
| Packers detected: | - |
| Scanner results | |
| AntiVir | Found Trojan/Dldr.Agent.G |
| ArcaVir | Found nothing |
| Avast | Found nothing |
| AVG Antivirus | Found nothing |
| BitDefender | Found nothing |
| ClamAV | Found nothing |
| Dr.Web | Found nothing |
| F-Prot Antivirus | Found nothing |
| Fortinet | Found nothing |
| Kaspersky Anti-Virus | Found not-a-virus:Downloader.Win32.Agent.g |
| NOD32 | Found nothing |
| Norman Virus Control | Found nothing |
| UNA | Found nothing |
| VBA32 | Found Downloader.Win32.Agent.g |
| File: | hook.dll |
| Status: | INFECTED/MALWARE |
| MD5 | 77fb8099dd081b71fe7ff1709de639bd |
| Packers detected: | - |
| Scanner results | |
| AntiVir | Found Trojan/PSW.Humbac.1 |
| ArcaVir | Found nothing |
| Avast | Found nothing |
| AVG Antivirus | Found nothing |
| BitDefender | Found nothing |
| ClamAV | Found nothing |
| Dr.Web | Found nothing |
| F-Prot Antivirus | Found nothing |
| Fortinet | Found nothing |
| Kaspersky Anti-Virus | Found nothing |
| NOD32 | Found nothing |
| Norman Virus Control | Found W32/Graybird.FM |
| UNA | Found nothing |
| VBA32 | Found nothing |
| File: | qmdisp.dll |
| Status: | POSSIBLY INFECTED/MALWARE (Note: this file was only classified as malware by scanners known to generate more false positives than the average scanner. Do not consider these results definately accurate. Also, because of this, results of this scan will not be recorded in the database.) |
| MD5 | dd3be0a08dd05057b71908ccc1c2e037 |
| Packers detected: | - |
| Scanner results | |
| AntiVir | Found Trojan/PSW.Humbac.2 |
| ArcaVir | Found nothing |
| Avast | Found nothing |
| AVG Antivirus | Found nothing |
| BitDefender | Found nothing |
| ClamAV | Found nothing |
| Dr.Web | Found nothing |
| F-Prot Antivirus | Found nothing |
| Fortinet | Found nothing |
| Kaspersky Anti-Virus | Found nothing |
| NOD32 | Found nothing |
| Norman Virus Control | Found nothing |
| UNA | Found nothing |
| VBA32 | Found nothing |
| File: | Network.exe |
| Status: | INFECTED/MALWARE |
| MD5 | b4c84021698979834a98fe84406c4302 |
| Packers detected: | - |
| Scanner results | |
| AntiVir | Found nothing |
| ArcaVir | Found nothing |
| Avast | Found nothing |
| AVG Antivirus | Found nothing |
| BitDefender | Found nothing |
| ClamAV | Found nothing |
| Dr.Web | Found DLOADER.Trojan (probable variant) |
| F-Prot Antivirus | Found nothing |
| Fortinet | Found nothing |
| Kaspersky Anti-Virus | Found nothing |
| NOD32 | Found a variant of Win32/Adware.AdHelper application |
| Norman Virus Control | Found nothing |
| UNA | Found nothing |
| VBA32 | Found nothing |
扫一扫
&spm=1001.2101.3001.5002&articleId=594676&d=1&t=3&u=e42be44def8e47758049d3af43e81d4c)
339
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
