收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 国外杀毒软件 Avira(小红伞) 再来几个样本,APC正常的来试试能不能杀,我这边红伞认 ...
返回列表 发新帖
查看: 2613|回复: 2
收起左侧

[求助] 再来几个样本,APC正常的来试试能不能杀,我这边红伞认为安全

 关闭 [复制链接]
,就一个.
发表于 2015-4-16 14:49:47 | 显示全部楼层 |阅读模式
APC正常的来试试能不能杀,顺便给个截图,我确定下是不是我这边云出问题了,看来是不能用红伞了.....

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

诸葛亮
发表于 2015-4-16 15:15:25 | 显示全部楼层
都能连接APC,但是apc认为这些文件是安全的
下面有截图和监控日志[mw_shl_code=css,true]2015/4/15,20:23:29 [INFO] ---------------------------------------------------------
2015/4/15,20:23:29 [INFO] Engine version:  8.3.30.4
2015/4/15,20:23:29 [INFO] VDF version:  8.11.219.82
2015/4/15,20:23:29 [INFO] APC version:  2.7.1.3
2015/4/15,20:23:29 [INFO] RDF version:  14.0.4.54
2015/4/15,20:23:29 [INFO] Real-Time Protection Version: 15.00.09.460
2015/4/15,20:23:31 [INFO] Avira Antivirus Pro has been started successfully!
2015/4/15,20:23:31 [INFO] Real-Time Protection configuration used:
      - Files to scan: scan files from local drives
      - Files to scan: Use file extension list: .386 .?HT* .ACM .ADE .ADP .ANI .APK .APP .ASD .ASF .ASP .ASX .AWX .AX .BAS .BAT .BIN .BOO .CDF .CHM .CLASS .CMD .CNV .COM .CPL .CPX .CRT .CSH .DEX .DLL .DLO .DO* .DRV .EMF .EML .EXE* .FAS .FLT .FOT .HLP .HT* .INF .INI .INS .ISP .J2K .JAR .JFF .JFI .JFIF .JIF .JMH .JNG .JP2 .JPE .JPEG .JPG .JS* .JSE .LNK .LSP .MD? .MDB .MOD .MS? .NWS .OBJ .OCX .OLB .OSD .OV? .PCD .PDF .PDR .PGM .PHP .PIF .PKG .PL* .PNG .POT* .PPAM .PPS* .PPT* .PRG .RAR .REG .RPL .RTF .SBF .SCR .SCRIPT .SCT .SH .SHA .SHB .SHS .SHTM* .SIS .SLD? .SPL .SWF .SYS .TLB .TSP .TTF .URL .VB? .VCS .VLM .VXD .VXO .WIZ .WLL .WMD .WMF .WMS .WMZ .WPC .WSC .WSF .WSH .WWK .XAR .XL* .XML .XXX .ZIP
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Disabled
      - Heuristic: Enabled
      - Win32 file heuristic: Medium detection level
      - Logfile report level: Default
2015/4/15,20:23:33 [INFO] Online services are available.
2015/4/15,20:23:37 [INFO] Real-Time Protection configuration used:
      - Files to scan: scan files from local drives
      - Files to scan: Use file extension list: .386 .?HT* .ACM .ADE .ADP .ANI .APK .APP .ASD .ASF .ASP .ASX .AWX .AX .BAS .BAT .BIN .BOO .CDF .CHM .CLASS .CMD .CNV .COM .CPL .CPX .CRT .CSH .DEX .DLL .DLO .DO* .DRV .EMF .EML .EXE* .FAS .FLT .FOT .HLP .HT* .INF .INI .INS .ISP .J2K .JAR .JFF .JFI .JFIF .JIF .JMH .JNG .JP2 .JPE .JPEG .JPG .JS* .JSE .LNK .LSP .MD? .MDB .MOD .MS? .NWS .OBJ .OCX .OLB .OSD .OV? .PCD .PDF .PDR .PGM .PHP .PIF .PKG .PL* .PNG .POT* .PPAM .PPS* .PPT* .PRG .RAR .REG .RPL .RTF .SBF .SCR .SCRIPT .SCT .SH .SHA .SHB .SHS .SHTM* .SIS .SLD? .SPL .SWF .SYS .TLB .TSP .TTF .URL .VB? .VCS .VLM .VXD .VXO .WIZ .WLL .WMD .WMF .WMS .WMZ .WPC .WSC .WSF .WSH .WWK .XAR .XL* .XML .XXX .ZIP
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Disabled
      - Heuristic: Enabled
      - Win32 file heuristic: Medium detection level
      - Logfile report level: Default
2015/4/15,20:24:20 [INFO] Real-Time Protection configuration used:
      - Files to scan: scan files from local drives
      - Files to scan: Use file extension list: .386 .?HT* .ACM .ADE .ADP .ANI .APK .APP .ASD .ASF .ASP .ASX .AWX .AX .BAS .BAT .BIN .BOO .CDF .CHM .CLASS .CMD .CNV .COM .CPL .CPX .CRT .CSH .DEX .DLL .DLO .DO* .DRV .EMF .EML .EXE* .FAS .FLT .FOT .HLP .HT* .INF .INI .INS .ISP .J2K .JAR .JFF .JFI .JFIF .JIF .JMH .JNG .JP2 .JPE .JPEG .JPG .JS* .JSE .LNK .LSP .MD? .MDB .MOD .MS? .NWS .OBJ .OCX .OLB .OSD .OV? .PCD .PDF .PDR .PGM .PHP .PIF .PKG .PL* .PNG .POT* .PPAM .PPS* .PPT* .PRG .RAR .REG .RPL .RTF .SBF .SCR .SCRIPT .SCT .SH .SHA .SHB .SHS .SHTM* .SIS .SLD? .SPL .SWF .SYS .TLB .TSP .TTF .URL .VB? .VCS .VLM .VXD .VXO .WIZ .WLL .WMD .WMF .WMS .WMZ .WPC .WSC .WSF .WSH .WWK .XAR .XL* .XML .XXX .ZIP
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Disabled
      - Heuristic: Enabled
      - Win32 file heuristic: High detection level
      - Logfile report level: Default
2015/4/15,20:27:49 [INFO] Avira Antivirus Pro service has been stopped!
2015/4/15,20:28:13 [INFO] ---------------------------------------------------------
2015/4/15,20:28:13 [INFO] Engine version:  8.3.30.16
2015/4/15,20:28:13 [INFO] VDF version:  8.11.224.84
2015/4/15,20:28:13 [INFO] APC version:  2.7.1.3
2015/4/15,20:28:13 [INFO] RDF version:  14.0.4.64
2015/4/15,20:28:13 [INFO] Real-Time Protection Version: 15.00.09.460
2015/4/15,20:28:13 [INFO] Avira Antivirus Pro has been started successfully!
2015/4/15,20:28:13 [INFO] Real-Time Protection configuration used:
      - Files to scan: scan files from local drives
      - Files to scan: Use file extension list: .386 .?HT* .ACM .ADE .ADP .ANI .APK .APP .ASD .ASF .ASP .ASX .AWX .AX .BAS .BAT .BIN .BOO .CDF .CHM .CLASS .CMD .CNV .COM .CPL .CPX .CRT .CSH .DEX .DLL .DLO .DO* .DRV .EMF .EML .EXE* .FAS .FLT .FOT .HLP .HT* .INF .INI .INS .ISP .J2K .JAR .JFF .JFI .JFIF .JIF .JMH .JNG .JP2 .JPE .JPEG .JPG .JS* .JSE .LNK .LSP .MD? .MDB .MOD .MS? .NWS .OBJ .OCX .OLB .OSD .OV? .PCD .PDF .PDR .PGM .PHP .PIF .PKG .PL* .PNG .POT* .PPAM .PPS* .PPT* .PRG .RAR .REG .RPL .RTF .SBF .SCR .SCRIPT .SCT .SH .SHA .SHB .SHS .SHTM* .SIS .SLD? .SPL .SWF .SYS .TLB .TSP .TTF .URL .VB? .VCS .VLM .VXD .VXO .WIZ .WLL .WMD .WMF .WMS .WMZ .WPC .WSC .WSF .WSH .WWK .XAR .XL* .XML .XXX .ZIP
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Disabled
      - Heuristic: Enabled
      - Win32 file heuristic: High detection level
      - Logfile report level: Default
2015/4/15,20:28:15 [INFO] Online services are available.
2015/4/15,20:44:21 [INFO] Real-Time Protection configuration used:
      - Files to scan: Scan local drive files, scan network drive files
      - Files to scan: All files
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Enabled
              - Maximum recursion depth: 1
              - Maximum number of files: 11
              - Maximum size (Kb): 1024001
      - Heuristic: Enabled
      - Win32 file heuristic: High detection level
      - Logfile report level: Default
2015/4/15,20:52:43 [INFO] Successful Cloud SDK initialization and license check.
2015/4/15,20:52:43 [INFO] The file 'C:\Users\L\Desktop\新建文件夹\[雷锋]2015.4.exe' was scanned with the Protection Cloud. SHA256 = 6FE03621FC9E404F3979FA63B7488B4C36442F04F644AB66955CFDCE1DB439A9
2015/4/15,20:52:43 [DETECTION] Detection by Protection Cloud: BDS/RedCap.6fe036! SHA256 = 6FE03621FC9E404F3979FA63B7488B4C36442F04F644AB66955CFDCE1DB439A9
  C:\Users\L\Desktop\新建文件夹\[雷锋]2015.4.exe
2015/4/15,20:52:52 [INFO] The file 'C:\Users\L\Desktop\新建文件夹\[雷锋]2015.4.exe' was scanned with the Protection Cloud. SHA256 = 6FE03621FC9E404F3979FA63B7488B4C36442F04F644AB66955CFDCE1DB439A9
2015/4/15,20:52:52 [DETECTION] Detection by Protection Cloud: BDS/RedCap.6fe036! SHA256 = 6FE03621FC9E404F3979FA63B7488B4C36442F04F644AB66955CFDCE1DB439A9
  C:\Users\L\Desktop\新建文件夹\[雷锋]2015.4.exe
2015/4/15,21:03:23 [INFO] Real-Time Protection configuration used:
      - Files to scan: Scan local drive files, scan network drive files
      - Files to scan: All files
      - Device mode: Scan file on open, scan file on close
      - Actions: ask the user
      - Scan archive: Enabled
              - Maximum recursion depth: 1
              - Maximum number of files: 11
              - Maximum size (Kb): 1024001
      - Heuristic: Enabled
      - Win32 file heuristic: High detection level
      - Logfile report level: Default
2015/4/16,11:43:42 [INFO] Update process started!
2015/4/16,11:43:49 [INFO] ---------------------------------------------------------
2015/4/16,11:43:49 [INFO] Engine version:  8.3.30.16
2015/4/16,11:43:49 [INFO] VDF version:  8.11.224.120
2015/4/16,11:43:49 [INFO] APC version:  2.7.1.3
2015/4/16,11:43:49 [INFO] RDF version:  14.0.4.64
2015/4/16,11:43:49 [INFO] Real-Time Protection Version: 15.00.09.460
2015/4/16,15:04:56 [INFO] Update process started!
2015/4/16,15:05:04 [INFO] ---------------------------------------------------------
2015/4/16,15:05:04 [INFO] Engine version:  8.3.30.16
2015/4/16,15:05:04 [INFO] VDF version:  8.11.224.130
2015/4/16,15:05:04 [INFO] APC version:  2.7.1.3
2015/4/16,15:05:04 [INFO] RDF version:  14.0.4.64
2015/4/16,15:05:04 [INFO] Real-Time Protection Version: 15.00.09.460
2015/4/16,15:08:10 [INFO] The file 'C:\Users\L\Desktop\新建文件夹\DTPACrk.exe' was scanned with the Protection Cloud. SHA256 = 5741DA081A96FB84BF486D61227031CEECC0995EDF5C3AE67478599986ABDF30
2015/4/16,15:11:14 [INFO] The file 'C:\Users\L\Desktop\新建文件夹\HaoZip7zSetup.exe' was scanned with the Protection Cloud. SHA256 = 46BCE608F8DED4DF8E84BBFCE02501CC352EE9FE237ABFC2087E4A5F002D32AC
2015/4/16,15:12:40 [INFO] The file 'C:\Users\L\Desktop\新建文件夹\先注册再感染\Restorator.exe' was scanned with the Protection Cloud. SHA256 = B3988B6CE32D435A729A543B4923299F70024DED3A3DD7D3D6F602D0109E02E5
[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

haobaobaby
发表于 2015-4-16 16:00:12 | 显示全部楼层
楼主,你发这3个文件,我这里现在红伞检测跟楼上一样都是missed,需要上报。不是说每一个missed就代表云没有起作用检测过。
而你之前发那个雷锋2014文件,刚刚试了一下已经入库了,现在下载后一解压就被检测到了!之前是本地和右键都不报,我把它放到隔离区扫描触发云检测出来的。
你就用我给你说那方法多测试些,如果确实你那边和云服务器有问题,再换不迟。
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-24 07:27 , Processed in 0.124815 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表