楼主: Eset小粉絲
收起左侧

[病毒样本] 精睿样本测试(17.9.15)

  [复制链接]
浅色
发表于 2017-9-17 00:55:59 | 显示全部楼层

红伞 Free Antivirus
报告文件日期: 2017-09-17 00:51:00


程序正以无限制的完整版的形式运行.

序列号       : 0000149996-AVHOE-0000001
Windows 版本: Windows 10 Enterprise 2016 LTSB ()  [10.0.14393]
启动模式      : 已正常启动
用户名       : SYSTEM
计算机名称     : WIN-Q2BKRTB2V3N

版本信息:
build.dat : 15.0.30.29    109304 Bytes  2017年8月21日 星期一 12:26:00
scanui.exe: 15.0.30.25   1514368 Bytes  2017年8月21日 星期一 04:26:17
scanuirc.dll: 15.0.29.2      82536 Bytes  2017年8月21日 星期一 04:26:17
gpscan.dll: 15.0.30.25    565776 Bytes  2017年8月21日 星期一 04:26:23
repair.dll: 15.0.30.25    689944 Bytes  2017年8月21日 星期一 04:26:15
avreg.dll : 15.0.30.25    456632 Bytes  2017年8月21日 星期一 04:26:15
avlode.dll: 15.0.30.29    902408 Bytes  2017年8月21日 星期一 04:26:14
avlode.rdf: 1.0.30.82     168771 Bytes  2017年9月16日 星期六 08:21:29
引擎版本      : 8.03.48.024
所有引擎均已更新至2017年9月16日
Configuration settings for the scan:
AutoActionOnDetection: off
Network scanning enabled: on
Upload to cloud enabled: on
Upload to cloud confirmation needed: off
DetectionUnpackedGen: off
DetectionDamagedGen: off
Maximum number of clients: 10
Heuristic macro: 1
Heuristic files: 2
Scan archives: on
Smart extensions: on
Archive scan types:
Limit recursion depth: on
Recursion depth: 20
Maximum unpack size: 1073741824
Unpack ratio: 250
Excluded files:

扫描开始时间: 2017-09-17 00:51:00


09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\001.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/Dropper.Gen'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\002.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.lxacs'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\003.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'JS/Dldr.Nemucod.3735'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\004.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.gyszd'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\005.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'VBS/Agent.47432'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\007.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.azmnp'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\008.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/AD.UrsnifDropper.rddne'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\009.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
09/17/2017,00-51-00        [INFO]        e:\迅雷下载\2017.9.15\010.vir
09/17/2017,00-51-00        [INFO]        [DETECTION] file contains 'W2000M/Marker.GB'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\011.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'W2000M/Agent.7347317'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\013.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'JAVA/Jaraut.dtrpi'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\014.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.kqucx'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\015.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.ruyyy'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\016.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'Java/Agent.bkdws'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\017.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'HTML/ExpKit.Gen2'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\018.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'TR/Agent.kjwbr'
09/17/2017,00-51-01        [INFO]        e:\迅雷下载\2017.9.15\019.vir
09/17/2017,00-51-01        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.cyuxj'
09/17/2017,00-51-02        [INFO]        文件已通过 Protection Cloud扫描。 SHA256 = e:\迅雷下载\2017.9.15\020.vir
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\021.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.vzolv'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\022.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Agent.btuwo'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\023.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.Gen7'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\024.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'W97M/Agent.7347314'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\025.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.yhtxt'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\026.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.ynguu'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\027.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'W97M/Drop.Madefref.fjilw'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\028.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'EXP/Pidief.EB.523'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\029.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.aroco'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\030.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.ppexo'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\032.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.hgmdp'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\033.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.zrgov'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\034.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.zesbc'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\035.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Injector.noptr'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\036.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'JS/Dldr.Agent.546'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\039.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'DR/Delphi.mceaw'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\040.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.wdbps'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\041.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/AD.Bladabindi.ajknw'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\042.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.zmisw'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\043.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/AD.Inject.nynyv'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\044.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.gczvj'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\045.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.uodgi'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\046.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.zobma'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\047.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'EXP/Pidief.6533'
09/17/2017,00-51-02        [INFO]        e:\迅雷下载\2017.9.15\048.vir
09/17/2017,00-51-02        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.iydjo'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\049.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'JAVA/Dematali.dggcy'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\050.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.rxdef'
09/17/2017,00-51-03        [INFO]        文件已通过 Protection Cloud扫描。 SHA256 = e:\迅雷下载\2017.9.15\051.vir
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\051.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'HEUR/APC'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\052.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/AD.Fareit.gxzjx'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\053.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'DR/Delphi.pigsm'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\054.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'DR/Delphi.dseog'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\055.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'EXP/Pidief.77343'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\056.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'W97M/Dldr.Agent.28039'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\057.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/AD.Obfuscator.hglxr'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\058.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.blddh'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\059.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Agent.dteym'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\060.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.yogyf'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\061.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.nhrwt'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\062.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'Adware/GT3Geeks.mwfxa'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\063.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/PSW.MSIL.Gen7'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\064.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'Java/Agent.nbrdh'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\066.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'DR/Delphi.iqwaw'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\067.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'W97M/Agent.881001016'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\068.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'EXP/Pdfphish.254506'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\069.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.ngeov'
09/17/2017,00-51-03        [INFO]        e:\迅雷下载\2017.9.15\070.vir
09/17/2017,00-51-03        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.qhtbe'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\072.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'Java/Agent.djaui'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\073.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Agent.hyhkc'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\074.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'W2000M/Dldr.Agent.17651006'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\075.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'Worm/Kasidet.C'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\076.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'DR/Delphi.tqnoz'
09/17/2017,00-51-04        [INFO]        文件已通过 Protection Cloud扫描。 SHA256 = e:\迅雷下载\2017.9.15\077.vir
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\077.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'HEUR/APC'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\078.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'PUA/ICLoader.Gen7'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\079.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/AD.BrowserPwdStealer.zbqnj'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\080.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.npwis'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\081.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'EXP/Pidief.EB.564'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\082.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Downloader.Gen7'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\083.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Dldr.MSIL.518146'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\084.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'VBS/Obfuscated.92631'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\085.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'DR/Delphi.otikt'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\086.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Dldr.Delphi.Gen'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\087.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'DR/Delphi.hmjwa'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\088.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Dropper.Gen'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\089.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.cpdpi'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\090.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'VBS/Dldr.Agent.DG'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\091.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'DR/Delphi.llokg'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\092.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'W97M/Dldr.Agent.ivvdh'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\093.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.igrek'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\094.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/AD.Fareit.ufxzz'
09/17/2017,00-51-04        [INFO]        e:\迅雷下载\2017.9.15\095.vir
09/17/2017,00-51-04        [INFO]        [DETECTION] file contains 'TR/ATRAPS.Gen'
09/17/2017,00-51-05        [INFO]        文件已通过 Protection Cloud扫描。 SHA256 = e:\迅雷下载\2017.9.15\096.vir
09/17/2017,00-51-05        [INFO]        e:\迅雷下载\2017.9.15\096.vir
09/17/2017,00-51-05        [INFO]        [DETECTION] file contains 'HEUR/APC'
09/17/2017,00-51-05        [INFO]        e:\迅雷下载\2017.9.15\097.vir
09/17/2017,00-51-05        [INFO]        [DETECTION] file contains 'TR/Kazy.sogyy'
09/17/2017,00-51-05        [INFO]        e:\迅雷下载\2017.9.15\098.vir
09/17/2017,00-51-05        [INFO]        [DETECTION] file contains 'Adware/YoBrowser.avgoc'
09/17/2017,00-51-05        [INFO]        e:\迅雷下载\2017.9.15\099.vir
09/17/2017,00-51-05        [INFO]        [DETECTION] file contains 'DR/Delphi.egioi'
09/17/2017,00-51-05        [INFO]        e:\迅雷下载\2017.9.15\100.vir
09/17/2017,00-51-05        [INFO]        [DETECTION] file contains 'W97M/Madeba.qahkk'


检出92,实为100,故检出率为92%
挥泪斩情思
发表于 2017-9-17 10:21:30 | 显示全部楼层
本帖最后由 挥泪斩情思 于 2017-9-17 10:35 编辑

dr.web




本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
dongwenqi
发表于 2017-9-18 21:18:05 | 显示全部楼层
阿童木来了 发表于 2017-9-15 09:13
卡巴共检测到61个,其中修复2个,剩余39个已上报!!!
[mw_shl_code=css,true]感谢您的帮助,在您提交的 ...

感谢上报,卡巴斯基入库太快了
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-3-29 03:37 , Processed in 0.103842 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表