样本

一万个理由

http://www.vdisk.cn/down/index/10079745
http://www.vdisk.cn/down/index/10092312
样本密码:virus

z2009

文件名称: 5.1.rar
文件大小: 164.04 MB

算了，我不测了，公司的小水管

留侯

原来是剑盟样本啊！补上4月30日的：
http://www.vdisk.cn/down/index/10085843
稍后给出结果。

Nocria

5月1日样本：

ESET killed 483x (with cleaned 2x) , missed 89x.
余下分批上报。

4月29日样本：

ESET killed 488x , (with cleaned 9x) , missed 44x.
余下分批上报。

修复以下样本：
C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_0b0b25607d239b7d384d6205d0add587.exe - Win32/Neshta.A 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_17f9b20ea97428cfe36dbaab01970c42.exe - Win32/Virut.NBP 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_2f4095f895296dc2474333dbe3ae455e.exe - Win32/Neshta.A 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_37c4d17144271691889e2c477ebdc4b6.exe - Win32/Parite.B 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_5f41ee8b980cb3c1755ccf59cca83af5.exe - Win32/Parite.B 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_6c0eb951ff21230b60d2d92fc589839d.exe -Win32/Ramnit.H 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_7b8b79a817536decdbdf6c87259de69d.exe - Win32/Sality.NAU 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_7ce4d462da42e918f64b3d9359ce9ca7.exe - Win32/Tenga.gen 病毒 - 已清除 - 已隔离

C:\Users\TOSHIBA\Desktop\4.29\4.29\virussign.com_8d27de47d9026136f652781f6871b029.exe -Win32/Chir.B 病毒 - 已清除 - 已隔离

留侯

4月29日样本，一共532个：


大蜘蛛发现520个病毒，在494个样本内：

修复其中的9个：
4.29\virussign.com_17f9b20ea97428cfe36dbaab01970c42.exe - cured
4.29\virussign.com_2f4095f895296dc2474333dbe3ae455e.exe - cured
4.29\virussign.com_37c4d17144271691889e2c477ebdc4b6.exe - cured
4.29\virussign.com_3e7c704fefce662d4fbf2bdef5a935ab.exe - cured
4.29\virussign.com_5f41ee8b980cb3c1755ccf59cca83af5.exe - cured
4.29\virussign.com_6c0eb951ff21230b60d2d92fc589839d.exe - cured
4.29\virussign.com_7b8b79a817536decdbdf6c87259de69d.exe - cured
4.29\virussign.com_7ce4d462da42e918f64b3d9359ce9ca7.exe - cured
4.29\virussign.com_8d27de47d9026136f652781f6871b029.exe - cured

其中一个扫描错误，扫描统计：
Total 210539694 bytes in 532 files scanned (729 objects)
Total 37 files (213 objects) are clean
Total 484 files (509 objects) are infected
Total 10 files (11 objects) are suspicious
Total 494 files (520 objects) are neutralized
Total 1 file are raised error condition
Scan time is 00:00:34.886
余下已上报！

留侯

4月30日样本，一共608个：

大蜘蛛发现516个病毒，在514个样本内：

修复其中的7个：
4.30\virussign.com_25f770c4864772918aa213b05560f113.exe - cured
4.30\virussign.com_38ce9b89a5532da13811d992b7a842a5.exe - cured
4.30\virussign.com_408f6d807c45e63f1cbccdb4274b8128.exe - cured
4.30\virussign.com_61da1474061210e7476d1d3211a29f6b.exe - cured
4.30\virussign.com_8de4f0f97e6819022f47039e4b6ea38a.exe - cured
4.30\virussign.com_92f6e7d0c8327515d8f559ef135c14eb.exe - cured
4.30\virussign.com_9cc5b158a94ea3de23c7505fec5fabb6.exe - cured

扫描统计：
Total 209831051 bytes in 608 files scanned (913 objects)
Total 94 files (378 objects) are clean
Total 511 files (513 objects) are infected
Total 3 files are suspicious
Total 514 files (516 objects) are neutralized
Scan time is 00:00:47.082
余下94个，已上报。

留侯

5月1号样本，一共572个样本：

大蜘蛛发现478个病毒，在477个样本内：

修复其中的7个：
5.1\virussign.com_036943eaa513d62fd4ccc30244472b9c.exe - cured
5.1\virussign.com_060602f027bed7d8d4f32744131f01f2.exe - cured
5.1\virussign.com_130546e081a56a7f223f44d085fd8e6c.exe - cured
5.1\virussign.com_32339bc7db3f211a23abc4a7c73b8afb.exe - cured
5.1\virussign.com_38253b5e5919e0abfcfe71f69a9305ed.exe - cured
5.1\virussign.com_9281599991dbaabf181d4d5814b806e6.exe - cured
5.1\virussign.com_9064d7e4e616f687ca11114d97c9c3a5.exe - cured

扫描统计：
Total 209969015 bytes in 572 files scanned (1144 objects)
Total 95 files (658 objects) are clean
Total 475 files are infected
Total 2 files (3 objects) are suspicious
Total 477 files (478 objects) are neutralized
Scan time is 00:00:44.483
余下95个已上报。