收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 动作超多,来试下杀软的主防、查杀和修复吧
12下一页
返回列表 发新帖
查看: 6286|回复: 15
收起左侧

[可疑文件] 动作超多,来试下杀软的主防、查杀和修复吧

[复制链接]
LisaLan
发表于 2012-10-18 14:37:57 | 显示全部楼层 |阅读模式
本帖最后由 LisaLan 于 2012-10-18 15:45 编辑

下载:
360网盘:http://yunpan.cn/lk/sVSS6PcYTVeuX
百度网盘:http://pan.baidu.com/share/link?shareid=83903&uk=2316871793


win8激活工具,可以测试主防能不能全拦截
动作实在太多,请看完整报告
http://camas.comodo.com/cgi-bin/ ... 9412c8640c455ded003       


创建临时文件
  1. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000        2009.01.09 10:37:46.625        2009.01.09 10:37:38.546        2009.01.09 10:37:46.625        0x10
  2. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Bios        2009.01.09 10:37:42.390        2009.01.09 10:37:42.390        2009.01.09 10:37:42.390        0x10
  3. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator        2009.01.09 10:37:45.812        2009.01.09 10:37:39.703        2009.01.09 10:37:45.812        0x10
  4. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data        2009.01.09 10:37:46.453        2009.01.09 10:37:39.703        2009.01.09 10:37:46.453        0x10
  5. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\boot        2009.01.09 10:37:48.765        2009.01.09 10:37:48.765        2009.01.09 10:37:48.765        0x10
  6. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\bootmgr        2009.01.09 10:37:39.859        2009.01.09 10:37:39.859        2009.01.09 10:37:39.859        0x10
  7. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\bootmgr_default        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        0x10
  8. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Certificate        2009.01.09 10:37:46.453        2009.01.09 10:37:46.453        2009.01.09 10:37:46.453        0x10
  9. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Install_files_open        2009.01.09 10:37:42.218        2009.01.09 10:37:39.890        2009.01.09 10:37:42.218        0x10
  10. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Install_files_vfd        2009.01.09 10:37:42.218        2009.01.09 10:37:39.890        2009.01.09 10:37:42.218        0x10
  11. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Install_files_vista        2009.01.09 10:37:39.906        2009.01.09 10:37:39.906        2009.01.09 10:37:39.906        0x10
  12. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Install_files_w7        2009.01.09 10:37:39.875        2009.01.09 10:37:39.875        2009.01.09 10:37:39.875        0x10
  13. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\BIOS_Emulator\data\Install_files_w7open        2009.01.09 10:37:45.843        2009.01.09 10:37:39.906        2009.01.09 10:37:45.843        0x10
  14. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Certificates        2009.01.09 10:37:46.421        2009.01.09 10:37:46.421        2009.01.09 10:37:46.421        0x10
  15. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\dwm        2009.01.09 10:37:42.468        2009.01.09 10:37:42.468        2009.01.09 10:37:42.468        0x10
  16. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\dwm\x64        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        0x10
  17. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\dwm\x64\original        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        0x10
  18. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\dwm\x86        2009.01.09 10:37:48.781        2009.01.09 10:37:48.781        2009.01.09 10:37:48.781        0x10
  19. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\dwm\x86\original        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        2009.01.09 10:37:48.812        0x10
  20. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\FSCapture        2009.01.09 10:37:45.843        2009.01.09 10:37:40.140        2009.01.09 10:37:45.843        0x10
  21. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info        2009.01.09 10:37:40.187        2009.01.09 10:37:40.140        2009.01.09 10:37:40.187        0x10
  22. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files        2009.01.09 10:37:46.421        2009.01.09 10:37:40.187        2009.01.09 10:37:46.421        0x10
  23. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ABIT        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        0x10
  24. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ABIT\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.187        2009.01.09 10:37:42.375        0x10
  25. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Acer        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        0x10
  26. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Acer\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.187        2009.01.09 10:37:42.375        0x10
  27. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ADVENT        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        2009.01.09 10:37:40.187        0x10
  28. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ADVENT\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.187        2009.01.09 10:37:42.375        0x10
  29. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ALIENWARE        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        0x10
  30. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ALIENWARE\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.250        2009.01.09 10:37:42.375        0x10
  31. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMD        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        0x10
  32. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMD\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.250        2009.01.09 10:37:42.390        0x10
  33. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDPH2        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        2009.01.09 10:37:40.250        0x10
  34. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDPH2\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.250        2009.01.09 10:37:42.390        0x10
  35. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDPH3        2009.01.09 10:37:40.296        2009.01.09 10:37:40.250        2009.01.09 10:37:40.296        0x10
  36. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDPH3\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.296        2009.01.09 10:37:42.390        0x10
  37. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDSemp        2009.01.09 10:37:40.296        2009.01.09 10:37:40.296        2009.01.09 10:37:40.296        0x10
  38. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDSemp\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.296        2009.01.09 10:37:42.390        0x10
  39. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDX2        2009.01.09 10:37:40.296        2009.01.09 10:37:40.296        2009.01.09 10:37:40.296        0x10
  40. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AMDX2\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.296        2009.01.09 10:37:42.390        0x10
  41. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AOPEN        2009.01.09 10:37:40.312        2009.01.09 10:37:40.296        2009.01.09 10:37:40.312        0x10
  42. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\AOPEN\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.312        2009.01.09 10:37:42.375        0x10
  43. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\APPLE        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        0x10
  44. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\APPLE\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.312        2009.01.09 10:37:42.390        0x10
  45. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ASROCK        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        0x10
  46. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ASROCK\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.312        2009.01.09 10:37:42.375        0x10
  47. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ASUS        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        0x10
  48. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ASUS\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.312        2009.01.09 10:37:42.359        0x10
  49. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ATI        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        2009.01.09 10:37:40.312        0x10
  50. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ATI\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.312        2009.01.09 10:37:42.359        0x10
  51. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\BenQ        2009.01.09 10:37:40.328        2009.01.09 10:37:40.328        2009.01.09 10:37:40.328        0x10
  52. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\BenQ\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.328        2009.01.09 10:37:42.359        0x10
  53. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\BIOSTAR        2009.01.09 10:37:40.468        2009.01.09 10:37:40.468        2009.01.09 10:37:40.468        0x10
  54. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\BIOSTAR\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.468        2009.01.09 10:37:42.359        0x10
  55. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\certs        2009.01.09 10:37:46.421        2009.01.09 10:37:46.421        2009.01.09 10:37:46.421        0x10
  56. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Compal        2009.01.09 10:37:40.515        2009.01.09 10:37:40.515        2009.01.09 10:37:40.515        0x10
  57. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Compal\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.515        2009.01.09 10:37:42.359        0x10
  58. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Compaq        2009.01.09 10:37:40.609        2009.01.09 10:37:40.515        2009.01.09 10:37:40.609        0x10
  59. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Compaq\info        2009.01.09 10:37:42.718        2009.01.09 10:37:40.609        2009.01.09 10:37:42.718        0x10
  60. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Dell        2009.01.09 10:37:40.609        2009.01.09 10:37:40.609        2009.01.09 10:37:40.609        0x10
  61. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Dell\info        2009.01.09 10:37:42.359        2009.01.09 10:37:40.609        2009.01.09 10:37:42.359        0x10
  62. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\DFI        2009.01.09 10:37:40.671        2009.01.09 10:37:40.671        2009.01.09 10:37:40.671        0x10
  63. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\DFI\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.671        2009.01.09 10:37:42.375        0x10
  64. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ECS        2009.01.09 10:37:40.687        2009.01.09 10:37:40.687        2009.01.09 10:37:40.687        0x10
  65. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\ECS\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.687        2009.01.09 10:37:42.375        0x10
  66. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\eMachines        2009.01.09 10:37:40.703        2009.01.09 10:37:40.687        2009.01.09 10:37:40.703        0x10
  67. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\eMachines\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.703        2009.01.09 10:37:42.375        0x10
  68. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\EPOX        2009.01.09 10:37:40.718        2009.01.09 10:37:40.718        2009.01.09 10:37:40.718        0x10
  69. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\EPOX\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.718        2009.01.09 10:37:42.375        0x10
  70. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\FOUNDER        2009.01.09 10:37:40.750        2009.01.09 10:37:40.750        2009.01.09 10:37:40.750        0x10
  71. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\FOUNDER\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.750        2009.01.09 10:37:42.390        0x10
  72. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Fujitsu        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        0x10
  73. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Fujitsu\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.765        2009.01.09 10:37:42.375        0x10
  74. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Gateway        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        0x10
  75. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Gateway\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.765        2009.01.09 10:37:42.375        0x10
  76. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\GIGABYTE        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        2009.01.09 10:37:40.765        0x10
  77. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\GIGABYTE\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.765        2009.01.09 10:37:42.390        0x10
  78. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\HP        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        0x10
  79. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\HP\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.781        2009.01.09 10:37:42.375        0x10
  80. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\IBM        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        0x10
  81. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\IBM\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.781        2009.01.09 10:37:42.375        0x10
  82. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELCore2        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        0x10
  83. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELCore2\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.781        2009.01.09 10:37:42.375        0x10
  84. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELCore2Q        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        0x10
  85. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELCore2Q\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.781        2009.01.09 10:37:42.390        0x10
  86. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELViiv        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        2009.01.09 10:37:40.781        0x10
  87. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\INTELViiv\info        2009.01.09 10:37:42.390        2009.01.09 10:37:40.781        2009.01.09 10:37:42.390        0x10
  88. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Lenovo        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        0x10
  89. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Lenovo\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.796        2009.01.09 10:37:42.375        0x10
  90. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\LG        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        0x10
  91. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\LG\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.796        2009.01.09 10:37:42.375        0x10
  92. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\MDG        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        0x10
  93. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\MDG\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.796        2009.01.09 10:37:42.375        0x10
  94. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Medion        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        2009.01.09 10:37:40.796        0x10
  95. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Medion\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.796        2009.01.09 10:37:42.375        0x10
  96. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Mercury        2009.01.09 10:37:40.875        2009.01.09 10:37:40.796        2009.01.09 10:37:40.875        0x10
  97. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Mercury\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.875        2009.01.09 10:37:42.375        0x10
  98. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\MSI        2009.01.09 10:37:40.890        2009.01.09 10:37:40.875        2009.01.09 10:37:40.890        0x10
  99. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\MSI\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.890        2009.01.09 10:37:42.375        0x10
  100. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NEC        2009.01.09 10:37:40.890        2009.01.09 10:37:40.890        2009.01.09 10:37:40.890        0x10
  101. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NEC\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.890        2009.01.09 10:37:42.375        0x10
  102. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NEO        2009.01.09 10:37:40.890        2009.01.09 10:37:40.890        2009.01.09 10:37:40.890        0x10
  103. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NEO\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.890        2009.01.09 10:37:42.375        0x10
  104. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Nvidia        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        0x10
  105. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Nvidia\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.921        2009.01.09 10:37:42.375        0x10
  106. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NvidiaSLI        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        0x10
  107. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NvidiaSLI\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.921        2009.01.09 10:37:42.375        0x10
  108. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NvidiaXFX        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        0x10
  109. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\NvidiaXFX\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.921        2009.01.09 10:37:42.375        0x10
  110. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\PB        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        2009.01.09 10:37:40.921        0x10
  111. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\PB\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.921        2009.01.09 10:37:42.375        0x10
  112. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Samsung        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        0x10
  113. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Samsung\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.937        2009.01.09 10:37:42.375        0x10
  114. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\SONY        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        0x10
  115. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\SONY\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.937        2009.01.09 10:37:42.375        0x10
  116. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Toshiba        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        0x10
  117. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Toshiba\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.937        2009.01.09 10:37:42.375        0x10
  118. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Viglen        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        0x10
  119. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\Viglen\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.937        2009.01.09 10:37:42.375        0x10
  120. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\XPC        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        2009.01.09 10:37:40.937        0x10
  121. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OEM_info\files\XPC\info        2009.01.09 10:37:42.375        2009.01.09 10:37:40.937        2009.01.09 10:37:42.375        0x10
  122. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  123. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  124. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\Other        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  125. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\Other\SharePointDesigner        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  126. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\VL        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  127. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\VL\ProjectPro        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  128. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\VL\ProPlus        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  129. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Licenses\VL\Visio        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        2009.01.09 10:37:42.500        0x10
  130. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\OfficeVL\Tokens        2009.01.09 10:37:45.484        2009.01.09 10:37:45.484        2009.01.09 10:37:45.484        0x10
  131. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate        2009.01.09 10:37:42.281        2009.01.09 10:37:42.281        2009.01.09 10:37:42.281        0x10
  132. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\SPP        2009.01.09 10:37:47.265        2009.01.09 10:37:47.265        2009.01.09 10:37:47.265        0x10
  133. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\SysWOW64P        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        0x10
  134. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\SysWOW64T        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        0x10
  135. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\x64P        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        0x10
  136. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\x64T        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        0x10
  137. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\x86P        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        2009.01.09 10:38:00.375        0x10
  138. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Pirate\x86T        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        2009.01.09 10:38:00.437        0x10
  139. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Prefetch        2009.01.09 10:37:42.468        2009.01.09 10:37:42.468        2009.01.09 10:37:42.468        0x10
  140. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Prefetch\7        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        0x10
  141. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Prefetch\R        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        0x10
  142. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Prefetch\R2        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        0x10
  143. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Prefetch\Vista        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        2009.01.09 10:37:42.484        0x10
  144. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\ReadyFor4GB        2009.01.09 10:37:48.937        2009.01.09 10:37:48.937        2009.01.09 10:37:48.937        0x10
  145. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\RegWorkshop        2009.01.09 10:37:42.296        2009.01.09 10:37:42.296        2009.01.09 10:37:42.296        0x10
  146. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe        2009.01.09 10:37:42.609        2009.01.09 10:37:40.937        2009.01.09 10:37:42.609        0x10
  147. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe\pics        2009.01.09 10:37:41.328        2009.01.09 10:37:41.125        2009.01.09 10:37:41.328        0x10
  148. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe\skin        2009.01.09 10:37:42.109        2009.01.09 10:37:40.937        2009.01.09 10:37:42.109        0x10
  149. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~        2009.01.09 10:37:46.421        2009.01.09 10:37:39.531        2009.01.09 10:37:46.421        0x10
  150. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc        2009.01.09 10:37:39.703        2009.01.09 10:37:39.531        2009.01.09 10:37:39.703        0x10
  151. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\0        2009.01.09 10:37:42.218        2009.01.09 10:37:39.562        2009.01.09 10:37:42.218        0x10
  152. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\0\GROUP_ICON        2009.01.09 10:37:39.875        2009.01.09 10:37:39.875        2009.01.09 10:37:39.875        0x10
  153. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\0\ICON        2009.01.09 10:37:42.218        2009.01.09 10:37:42.218        2009.01.09 10:37:42.218        0x10
  154. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\0\MANIFEST        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        0x10
  155. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\2052        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        0x10
  156. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\2052\VERSION        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        2009.01.09 10:37:39.703        0x10
  157. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\Screen2Exe~\.rsrc\MANIFEST        2009.01.09 10:37:39.546        2009.01.09 10:37:39.546        2009.01.09 10:37:39.546        0x10
  158. C:\Documents and Settings\User\Local Settings\Temp\7ZipSfx.000\z%8\Uninstall.cmd        69239        2012.08.29 03:17:40.467        2009.01.09 10:37:42.343        2009.01.09 10:37:42.343        0x20
  159. C:\Documents and Settings\User\Local Settings\Temp\RarSFX0\K.J_120829.exe
复制代码
  1. PId        Image Name        Address        Mutex Name
  2. 0x4ac        C:\TEST\sample.exe        0x77f76e78        _SHuassist.mtx
  3. 0x5b8        C:\DOCUME~1\User\LOCALS~1\Temp\7ZipSfx.000\Run_e.exe        0x407c3f        200901091238141569870892
  4. PId        Image Name        Address        Event Name
  5. 0x448        C:\DOCUME~1\User\LOCALS~1\Temp\7ZipSfx.000\Run.exe        0x77a89422        Global\crypt32LogoffEvent
  6. 0x4ac        C:\TEST\sample.exe        0x77a89422        Global\crypt32LogoffEvent
  7. 0x4b4        C:\DOCUME~1\User\LOCALS~1\Temp\RarSFX0\K.J_120829.exe        0x769c4ec2        Global\userenv: User Profile setup event
复制代码
创建System32文件
  1. C:\WINDOWS\system32\wbem\Logs\wmiprov.log
复制代码
创建进程
  1. PId        Process Name        TId        Start        Start Mem        Win32 Start        Win32 Start Mem
  2. 0x2b0        lsass.exe        0x4b0        0x7c810856        MEM_IMAGE        0x75738e06        MEM_IMAGE
  3. 0x2b0        lsass.exe        0x4c0        0x7c810856        MEM_IMAGE        0x77e76bf0        MEM_IMAGE
  4. 0x4b4        K.J_120829.exe        0x5d0        0x7c810867        MEM_IMAGE        0x430130        MEM_IMAGE
  5. 0x4b4        K.J_120829.exe        0x674        0x7c810856        MEM_IMAGE        0x4014af        MEM_IMAGE
复制代码
  1. 0x4b4        K.J_120829.exe        C:\DOCUME~1\User\LOCALS~1\Temp\RarSFX0\K.J_120829.exe


复制代码
更改系统设置
  1. CU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Administrative Tools       
复制代码
回复

举报

rasis
发表于 2012-10-18 14:47:38 | 显示全部楼层
这个貌似是个假激活文件  很多人用
回复

举报

ytysh
发表于 2012-10-18 15:04:40 | 显示全部楼层
本帖最后由 ytysh 于 2012-10-18 15:09 编辑

无意之间双击,金山K+拦截
文件太大 无法上报
回复

举报

3801187
发表于 2012-10-18 15:06:25 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

LisaLan
 楼主| 发表于 2012-10-18 15:10:27 | 显示全部楼层
ytysh 发表于 2012-10-18 15:04
无意之间双击,金山K+拦截
文件太大 无法上报

可以双击,将生成的文件上报
回复

举报

青春虎
发表于 2012-10-18 15:19:07 | 显示全部楼层
本帖最后由 青春虎 于 2012-10-18 15:21 编辑




ps:说个小插曲,下载,悟空报未知,右键扫描压缩包,蓝芯报毒,解压出来,右键扫描文件夹,红伞报毒,再多扫几次,竟然都不报了………………

抽风了,现在又报了

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

LisaLan
 楼主| 发表于 2012-10-18 15:21:26 | 显示全部楼层
青春虎 发表于 2012-10-18 15:19
ps:说个小插曲,下载,悟空报未知,右键扫描压缩包,蓝芯报毒,解压出来,右键扫描文件夹,红伞报毒, ...

关闭毒霸的防御双击,测试查毒清理修复能力
回复

举报

LisaLan
 楼主| 发表于 2012-10-18 15:30:33 | 显示全部楼层
ytysh 发表于 2012-10-18 15:04
无意之间双击,金山K+拦截
文件太大 无法上报

关闭所有防御双击,试试悟空的查杀和修复能力吧
回复

举报

消停
头像被屏蔽
发表于 2012-10-18 16:42:41 | 显示全部楼层
完整路径: F:\样本\临时收集\eight.Actv\Microsoft Windows 8 Activator(All Edition).exe
____________________________
____________________________
开发人员 不可用
版本 不可用
已识别 2012-10-18 ( 16:40:57 )
上次使用时间 不可用
启动项目 否
____________________________
____________________________
未知
此程序的崩溃历史记录未知。
____________________________
少量用户信任的文件
诺顿社区中有数百名用户使用了此文件。
____________________________
发布已久的文件
该文件已在 2 个月 前发行。
____________________________
良好
诺顿为此文件指定的分级为一般。

____________________________
源文件:
explorer.exe

创建的文件:
microsoft windows 8 activator(all edition).exe
____________________________
文件指纹 - SHA:
01efeb8a28166adf865d04433d50464f00cd4a3b97a989412c8640c455ded003
____________________________
文件指纹 - MD5:
d091e481435c243e155d357cd159f239
____________________________
回复

举报

轻轻的
发表于 2012-10-18 20:03:06 | 显示全部楼层
偶的瑞星V16报毒,偶就直接把它删除了。没有双击。
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-27 11:48 , Processed in 0.111441 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表