자유 게시판
Rainmeter 스킨 HUD2.2쓰시는분들..
2009.08.12 16:35
Rainmeter라는 것을 처음 접해보고 HUD스킨을 알게되어 깔아보려는중
바이러스로 인식하는 파일이 두개 포함되어있어서... 알약에서 오류로 잡아내는 것인지..
아니면 정말 배포자가 넣어둔것인지 의심스러워서 여쭈어봅니다. 스킨은 제작자홈페이지에서 직접다운받았어요.
열심히 의욕 불태우는중에 참 난감하기 그지없네요.
댓글 [2]
-
김용환 2009.08.12 17:19
-
늘비오는거리 2009.08.12 19:50
바이러스토탈에서 각각의 엔진으로 검사한 결과입니다.검사 파일: fileExec.exe 전송 시각: 2009.08.12 10:56:04 (UTC) 안티바이러스 엔진 버전 정의 날짜 검사 결과 a-squared 4.5.0.24 2009.08.12 - AhnLab-V3 5.0.0.2 2009.08.12 - AntiVir 7.9.1.0 2009.08.12 - Antiy-AVL 2.0.3.7 2009.08.12 - Authentium 5.1.2.4 2009.08.12 - Avast 4.8.1335.0 2009.08.11 - AVG 8.5.0.406 2009.08.12 - BitDefender 7.2 2009.08.12 Trojan.Generic.2165878 CAT-QuickHeal 10.00 2009.08.12 - ClamAV 0.94.1 2009.08.12 - Comodo 1953 2009.08.12 - DrWeb 5.0.0.12182 2009.08.12 Trojan.DownLoad.38194 eSafe 7.0.17.0 2009.08.11 Suspicious File eTrust-Vet 31.6.6673 2009.08.12 - F-Prot 4.4.4.56 2009.08.11 - F-Secure 8.0.14470.0 2009.08.12 - Fortinet 3.120.0.0 2009.08.12 - GData 19 2009.08.12 Trojan.Generic.2165878 Ikarus T3.1.1.64.0 2009.08.12 - Jiangmin 11.0.800 2009.08.12 - K7AntiVirus 7.10.816 2009.08.11 - Kaspersky 7.0.0.125 2009.08.12 - McAfee 5706 2009.08.11 - McAfee+Artemis 5706 2009.08.11 Artemis!0D75DDE9B5FC McAfee-GW-Edition 6.8.5 2009.08.12 - Microsoft 1.4903 2009.08.12 - NOD32 4328 2009.08.12 - Norman 6.01.09 2009.08.11 - nProtect 2009.1.8.0 2009.08.12 - Panda 10.0.0.14 2009.08.11 - PCTools 4.4.2.0 2009.08.11 - Prevx 3.0 2009.08.12 High Risk Worm Rising 21.42.23.00 2009.08.12 - Sophos 4.44.0 2009.08.12 - Sunbelt 3.2.1858.2 2009.08.12 - Symantec 1.4.4.12 2009.08.12 - TheHacker 6.3.4.3.381 2009.08.11 - TrendMicro 8.950.0.1094 2009.08.12 PAK_Generic.001 VBA32 3.12.10.9 2009.08.12 - ViRobot 2009.8.12.1881 2009.08.12 - VirusBuster 4.6.5.0 2009.08.11 - 추가 정보 File size: 28160 bytes MD5...: 0d75dde9b5fcfd648e81052fb6920e80 SHA1..: 11eb5955903477346a979f933915299f4d49ce54 SHA256: 053bf8de5423c80a0eb8dc5fe4719e19adc2da3070696999bb1eea5b4c58c6d2 ssdeep: 384:YB3Ynl11SkMbt7sBtGHE5XQrnwQaLk9NhLoemMcXs2LBgDpHFi+p:YB3Yl1g
kcI+H9rw1Y9pmMcXsIBgDpAPEiD..: - TrID..: File type identification
UPX compressed Win32 Executable (38.5%)
Win32 EXE Yoda's Crypter (33.4%)
Win32 Executable Generic (10.7%)
Win32 Dynamic Link Library (generic) (9.5%)
Win16/32 Executable Delphi generic (2.6%)PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x15f60
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0xf000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x10000 0x7000 0x6200 7.87 ec4c2defbc9ef9be0dda4278d0b1faf5
.rsrc 0x17000 0x1000 0x800 3.53 67763f4e486237fdbdfef2d95e10324d
( 4 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> advapi32.dll: RegCloseKey
> oleaut32.dll: SysFreeString
> user32.dll: CharNextA
( 0 exports )PDFiD.: - RDS...: NSRL Reference Data Set
-packers (Kaspersky): PE_Patch.UPX, UPX packers (F-Prot): UPX Prevx info: <a href='https://info.prevx.com/aboutprogramtext.asp?PX5=C99872B200861E146E4E0082BDB5F40082CB893F' target='_blank'>https://info.prevx.com/aboutprogramtext.asp?PX5=C99872B200861E146E4E0082BDB5F40082CB893F</a>
카스퍼스키, 노턴 등등... 유료 백신들로 검색해보시는 것도... 작 년부터 크랙 같은 것들도 바이러스 취급 하던데...