精睿样本测试（17.6.16）

显示全部楼层 · 发表于 2017-6-17 21:14:59

小飞侠.net 发表于 2017-6-17 20:35
不会，扩展名非exe可执行类，再说是右键扫描文件夹。

好的我已经用FSCS测试了

显示全部楼层 · 发表于 2017-6-17 22:48:01

芬安全F-Secure:"

已发现 130个有害文件

显示全部楼层 · 发表于 2017-6-18 05:44:46

BD迟到了
BDTS 2017 UP TO DATE

[mw_shl_code=css,true]BitDefender Log File

Product : Bitdefender Total Security 2017
Scanning task : Contextual Scan
Log date : 2017年6月17日星期六 21:00:22
Log path : C:\Users\Administrator\AppData\Roaming\Bitdefender\Desktop\Profiles\Logs\2ab858ed-450b-4bb6-b67c-8e3c45ec13ac\1497704310_1_02.xml

Scan Paths:
Path : E:\TEST\2017.6.16

[-]Scan Results

[-]Resolved issues:
Object Path Threat Name Final Status

E:\TEST\2017.6.16\111.vir Gen:Variant.Zusy.241628 Deleted
E:\TEST\2017.6.16\021.vir Trojan.Phish.O Deleted
E:\TEST\2017.6.16\102.vir Generic.MSIL.Bladabindi.0F048CC3 Deleted
E:\TEST\2017.6.16\120.vir Gen:Variant.Razy.63015 Deleted
E:\TEST\2017.6.16\026.vir W97m.Downloader.FXO Deleted
E:\TEST\2017.6.16\107.vir Trojan.GenericKD.5353769 Deleted
E:\TEST\2017.6.16\118.vir=>word=>embeddings=>696679271.bin=>(NO_NAME)=>(INFECTED_JS) JS:Trojan.Agent.CHVE Deleted
E:\TEST\2017.6.16\081.vir=>(objdata) Exploit.RTF-ObfsStrm.Gen Deleted
E:\TEST\2017.6.16\055.vir Trojan.GenericKD.5350264 Deleted
E:\TEST\2017.6.16\091.vir Trojan.GenericKD.5349267 Deleted
E:\TEST\2017.6.16\037.vir Trojan.GenericKD.5323339 Deleted
E:\TEST\2017.6.16\090.vir Trojan.GenericKD.5332809 Deleted
E:\TEST\2017.6.16\036.vir Trojan.GenericKD.5280958 Deleted
E:\TEST\2017.6.16\117.vir Trojan.GenericKD.5332816 Deleted
E:\TEST\2017.6.16\078.vir Trojan.GenericKD.5343471 Deleted
E:\TEST\2017.6.16\113.vir=>(INFECTED_JS) JS:Trojan.Cryxos.875 Deleted
E:\TEST\2017.6.16\070.vir Trojan.GenericKD.5336283 Deleted
E:\TEST\2017.6.16\034.vir W97m.Downloader.FXS Deleted
E:\TEST\2017.6.16\115.vir Trojan.GenericKD.5355951 Deleted
E:\TEST\2017.6.16\050.vir Trojan.GenericKDZ.24607 Deleted
E:\TEST\2017.6.16\032.vir Trojan.GenericKD.5346125 Deleted
E:\TEST\2017.6.16\056.vir Trojan.GenericKD.5337215 Deleted
E:\TEST\2017.6.16\074.vir Trojan.GenericKD.5343547 Deleted
E:\TEST\2017.6.16\038.vir Trojan.GenericKD.5341789 Deleted
E:\TEST\2017.6.16\119.vir Trojan.GenericKD.5337712 Deleted
E:\TEST\2017.6.16\110.vir=>word/vbaProject.bin W97m.Downloader.FXR Deleted
E:\TEST\2017.6.16\005.vir W97M.Melissa.BQ@mm Deleted
E:\TEST\2017.6.16\053.vir Gen:Variant.Mikey.66309 Deleted
E:\TEST\2017.6.16\035.vir Trojan.GenericKD.5332796 Deleted
E:\TEST\2017.6.16\116.vir Gen:Trojan.Heur.FU.ieX@a8EQGFp Deleted
E:\TEST\2017.6.16\013.vir Gen:Variant.Zusy.238009 Deleted
E:\TEST\2017.6.16\069.vir Gen:Variant.Razy.185764 Deleted
E:\TEST\2017.6.16\104.vir=>(INFECTED_JS) JS:Trojan.JS.Downloader.HYH Deleted
E:\TEST\2017.6.16\087.vir W97m.Downloader.FXV Deleted
E:\TEST\2017.6.16\103.vir=>(NSIS o)=>zlib_nsis0001=>(INFECTED_JS) JS:Trojan.Cryxos.836 Moved to Quarantine
E:\TEST\2017.6.16\022.vir Trojan.GenericKD.5337707 Deleted
E:\TEST\2017.6.16\101.vir=>net/tool/Main$Q4817_.class Java.Trojan.GenericGB.3647 Deleted
E:\TEST\2017.6.16\020.vir W97m.Downloader.FXR Deleted
E:\TEST\2017.6.16\100.vir VB:Trojan.Valyria.570 Deleted
E:\TEST\2017.6.16\077.vir Trojan.GenericKD.5343758 Deleted
E:\TEST\2017.6.16\095.vir Trojan.GenericKD.5332305 Deleted
E:\TEST\2017.6.16\088.vir Trojan.GenericKD.5346596 Deleted
E:\TEST\2017.6.16\001.vir=>org/total/Main$N4475_.class Java.Trojan.GenericGB.3561 Deleted
E:\TEST\2017.6.16\089.vir Trojan.Agent.CHXR Deleted
E:\TEST\2017.6.16\105.vir=>(NSIS o)=>zlib_nsis0001=>(INFECTED_JS) JS:Trojan.Cryxos.868 Moved to Quarantine
E:\TEST\2017.6.16\063.vir=>word/vbaProject.bin W97m.Downloader.FXR Deleted
E:\TEST\2017.6.16\061.vir Trojan.GenericKD.5349707 Deleted
E:\TEST\2017.6.16\085.vir W97m.Dropper.GV Deleted
E:\TEST\2017.6.16\073.vir=>word=>embeddings=>oleObject2.bin=>Docx Document Viewer .vbs Trojan.VBS.VAU Deleted
E:\TEST\2017.6.16\084.vir Trojan.GenericKD.5343493 Deleted
E:\TEST\2017.6.16\079.vir Trojan.GenericKD.5323322 Deleted
E:\TEST\2017.6.16\097.vir Trojan.GenericKD.5296211 Deleted
E:\TEST\2017.6.16\058.vir Trojan.GenericKD.5332736 Deleted
E:\TEST\2017.6.16\076.vir Trojan.Agent.CCGV Deleted
E:\TEST\2017.6.16\094.vir Gen:Variant.Kazy.789354 Deleted
E:\TEST\2017.6.16\028.vir Trojan.GenericKD.5337219 Deleted
E:\TEST\2017.6.16\064.vir W97m.Downloader.FXX Deleted
E:\TEST\2017.6.16\082.vir Trojan.GenericKD.5332721 Deleted
E:\TEST\2017.6.16\057.vir Trojan.GenericKD.5324500 Deleted
E:\TEST\2017.6.16\075.vir W97M.Melissa.BQ@mm Deleted
E:\TEST\2017.6.16\066.vir=>(INFECTED_JS) JS:Trojan.JS.Agent.QKC Deleted
E:\TEST\2017.6.16\065.vir=>(INFECTED_JS) JS:Trojan.JS.Downloader.HYH Deleted
E:\TEST\2017.6.16\052.vir=>word=>embeddings=>oleObject2.bin=>Receipt_050123.lnk Trojan.PowerShell.LNK.Gen.6 Deleted
E:\TEST\2017.6.16\049.vir W97m.Downloader.FXS Deleted
E:\TEST\2017.6.16\048.vir Trojan.GenericKD.5342972 Deleted
E:\TEST\2017.6.16\047.vir Trojan.GenericKD.5342349 Deleted
E:\TEST\2017.6.16\043.vir Trojan.GenericKD.5350595 Deleted
E:\TEST\2017.6.16\044.vir VB:Trojan.VBA.Downloader.FO Deleted
E:\TEST\2017.6.16\041.vir Trojan.Phish.O Deleted
E:\TEST\2017.6.16\040.vir VB:Trojan.Valyria.575 Deleted
E:\TEST\2017.6.16\039.vir Trojan.GenericKD.5337223 Deleted
E:\TEST\2017.6.16\052.vir=>word=>embeddings=>oleObject1.bin=>Receipt_050123.lnk Trojan.PowerShell.LNK.Gen.6 Deleted
E:\TEST\2017.6.16\054.vir Gen:Trojan.Heur.kuZ@YkR00Jei Deleted
E:\TEST\2017.6.16\031.vir Gen:Variant.MSILPerseus.75468 Deleted
E:\TEST\2017.6.16\046.vir Gen:Variant.Razy.174703 Deleted
E:\TEST\2017.6.16\042.vir Win32.Neshta.A Deleted
E:\TEST\2017.6.16\033.vir Gen:Variant.Razy.180122 Deleted
E:\TEST\2017.6.16\062.vir=>org/total/Main$N6705_.class Java.Trojan.GenericGB.3561 Deleted
E:\TEST\2017.6.16\019.vir Generic.MSIL.PasswordStealerA.7703F33F Deleted
E:\TEST\2017.6.16\017.vir=>(INFECTED_JS) JS:Trojan.JS.Agent.QKC Deleted
E:\TEST\2017.6.16\015.vir Gen:Variant.Barys.54896 Deleted
E:\TEST\2017.6.16\011.vir=>word/vbaProject.bin W97m.Downloader.FXR Deleted
E:\TEST\2017.6.16\009.vir Trojan.PDF.Phishing.MM Deleted
E:\TEST\2017.6.16\008.vir Gen:Variant.Razy.177703 Deleted
E:\TEST\2017.6.16\014.vir Trojan.GenericKD.5353241 Deleted
E:\TEST\2017.6.16\010.vir Trojan.GenericKD.5343499 Deleted
E:\TEST\2017.6.16\002.vir Gen:Variant.Zusy.241444 Deleted
E:\TEST\2017.6.16\073.vir=>word=>embeddings=>oleObject3.bin=>Docx Document Viewer .vbs Trojan.VBS.VAU Deleted
E:\TEST\2017.6.16\073.vir=>word=>embeddings=>oleObject1.bin=>Docx Document Viewer .vbs Trojan.VBS.VAU Deleted

[-]Detailed Scan Summary

[-]Basic
Scanned items : 718
Infected items : 89
Suspicious items : 0 (no suspected items have been detected)
Resolved items : 89
Unresolved items : 0 (no issues remained unresolved)

[-]Advanced
Scan time : 0: 0: 55
Files per second : 13
Skipped items : 0
Password-protected items : 0
Overcompressed items : 0
Scanned archives : 2
Input-output errors : 0
Scanned boot sectors : 0
Scanned processes : 0
Infected processes : 0
Scanned registry keys : 0
Infected registry keys : 0
Scanned cookies : 0
Infected cookies : 0

[-]Scan Options

[-]Target Threat Types:
Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : No
Scan for keyloggers : Yes

[-]Target Selection Options:
Scan registry keys : No
Scan cookies : No
Scan boot sectors : No
Scan memory processes : No
Scan archives : Yes
Scan runtime packers : Yes
Scan emails : Yes
Scan all files : Yes
Heuristic Scan : Yes
Scanned extensions : none configured
Excluded extensions : none configured

[-]Target Processing:
Default primary action for infected objects : None
Default secondary action for infected objects : None
Default primary action for suspicious objects : None
Default secondary action for suspicious objects : None
Default action for hidden objects : None
Default action for password-protected objects : Prompt for password

[-]Scan engines summary
Number of virus signatures : 8899390
[/mw_shl_code]

[病毒样本] 精睿样本测试（17.6.16）