精睿样本测试（15.6.19）

挥泪斩情思

http://kuai.xunlei.com/d/zuh.ARAFB2qDVQQA6ac

http://pan.baidu.com/s/1dDGWNxZ

提取密码  ui97  
密码：bbs.vc52.cn
数量：50

勇者无敌

大蜘蛛 捕获19

星之梦

贝壳11个
Scan Started Fri Jun 19 09:45:23 2015
-------------------------------------------------------------------------------


D:\Virus\2015.6.19\03.vir: PUA.Win32.Packer.Upx-50 FOUND
D:\Virus\2015.6.19\09.vir: PUA.Win32.Packer.Purebasic-1 FOUND
D:\Virus\2015.6.19\14.vir: PUA.Win32.Packer.Setup2goInstall FOUND
D:\Virus\2015.6.19\28.vir: PUA.Win32.Packer.Ep-6 FOUND
D:\Virus\2015.6.19\29.vir: PUA.Win32.Packer.Upx-28 FOUND
D:\Virus\2015.6.19\30.vir: PUA.Spyware.XPCSpyPro FOUND
D:\Virus\2015.6.19\32.vir: PUA.Win32.Packer.Armadillo-59 FOUND
D:\Virus\2015.6.19\40.vir: PUA.Win32.Packer.BorlandDelphi-13 FOUND
D:\Virus\2015.6.19\41.vir: PUA.Packed.MEW-1 FOUND
D:\Virus\2015.6.19\43.vir: Win.Backdoor.Bladabindi-1 FOUND
D:\Virus\2015.6.19\47.vir: PUA.Win32.Packer.RlpackFullediti FOUND
----------- SCAN SUMMARY -----------
Known viruses: 3853639
Engine version: 0.98.7
Scanned directories: 1
Scanned files: 50
Infected files: 11

Data scanned: 20.54 MB
Data read: 22.42 MB (ratio 0.92:1)
Time: 37.705 sec (0 m 37 s)

--------------------------------------
Completed
--------------------------------------

星之梦

Emsisoft 免费版本 10.0
上次更新: 2015/6/19 9:30:34
User account: Goddess-PC\Goddess

扫描设置:

扫描类型: 自定义扫描
对象: D:\Virus\2015.6.19

Detect PUPs: 开
扫描压缩文件: 开
ADS 扫描: 开
文件扩展名过滤器: 关
高速缓存: 开
直接磁盘访问: 关

扫描开始于:        2015/6/19 9:48:22
D:\Virus\2015.6.19\02.vir         已检测: Trojan.GenericKD.2496664 (B)
D:\Virus\2015.6.19\03.vir -> (URI)         已检测: Exploit.PDF-Dropper.Gen (B)
D:\Virus\2015.6.19\11.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\08.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\15.vir         已检测: Trojan.Msword.NRO (B)
D:\Virus\2015.6.19\04.vir         已检测: Trojan.GenericKD.2493719 (B)
D:\Virus\2015.6.19\07.vir         已检测: Trojan.GenericKD.2498973 (B)
D:\Virus\2015.6.19\06.vir         已检测: Trojan.Agent.BKOS (B)
D:\Virus\2015.6.19\03.vir -> ldr.pdf         已检测: Exploit.PDF-Dropper.Gen (B)
D:\Virus\2015.6.19\16.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\18.vir         已检测: Trojan.Agent.BKOS (B)
D:\Virus\2015.6.19\33.vir         已检测: Trojan.GenericKD.2496542 (B)
D:\Virus\2015.6.19\32.vir -> invoice-m9j7b0f88neFzlB0o.exe         已检测: Trojan.Zmutzy.10 (B)
D:\Virus\2015.6.19\32.vir -> (heurC)         已检测: Zum.Zmutz.1 (B)
D:\Virus\2015.6.19\34.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\36.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\19.vir         已检测: Gen:Variant.Graftor.197585 (B)
D:\Virus\2015.6.19\37.vir         已检测: Trojan.GenericKD.2498208 (B)
D:\Virus\2015.6.19\42.vir         已检测: Trojan.GenericKD.2498720 (B)
D:\Virus\2015.6.19\39.vir -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\43.vir         已检测: Gen:Variant.Barys.10219 (B)
D:\Virus\2015.6.19\48.vir         已检测: Gen:Variant.Graftor.196915 (B)
D:\Virus\2015.6.19\45.vir -> Order-090TN.exe         已检测: Gen:Variant.Zusy.147013 (B)
D:\Virus\2015.6.19\50.vir         已检测: Gen:Variant.Kazy.596424 (B)
D:\Virus\2015.6.19\46.vir -> (BASE64) -> (REMOVED_NULLS) -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\46.vir -> (BASE64) -> (MIME part) -> (application) -> (Active Mime)         已检测: W97M.Downloader.RN (B)
D:\Virus\2015.6.19\47.vir         已检测: Gen:Variant.Kazy.641773 (B)

已扫描        50
已发现        27

扫描结束于:        2015/6/19 9:48:25
扫描用时:        0:00:03

星之梦

SecuraLive 13个

1        Trojan.Win32.Crypt        d:\virus\2015.6.19\02.vir
2        possible-Threat.PDF.Acmd        d:\virus\2015.6.19\03.vir
3        Trojan.MSIL.Injector        d:\virus\2015.6.19\04.vir
4        Trojan.Banker        d:\virus\2015.6.19\06.vir
5        Trojan.Spy        d:\virus\2015.6.19\07.vir
6        Trojan-Dropper.VBS.Agent        d:\virus\2015.6.19\09.vir
7        Trojan.Win32.PSW        d:\virus\2015.6.19\13.vir
8        Trojan-Downloader.VBA.Agent        d:\virus\2015.6.19\15.vir
9        Trojan.MSIL8        d:\virus\2015.6.19\22.vir
10        IM-Worm.Win32.Sumom        d:\virus\2015.6.19\41.vir
11        Backdoor.MSIL.Agent        d:\virus\2015.6.19\43.vir
12        Packer.Win32.Klone        d:\virus\2015.6.19\47.vir
13        Trojan.MSIL.Injector        d:\virus\2015.6.19\50.vir

星之梦

NANO Antivirus 6个，3个加密跳过。

Version:0.30.24.67622

Scanning path: D:\Virus\2015.6.19

D:\Virus\2015.6.19\13.vir::[01]Ole10Native::embed::overlay::md5.rar The protected by password Skipped
D:\Virus\2015.6.19\21.vir::word/vbaProject.bin Suspicious Trojan.Ole2.Vbs-heuristic.druvzi Moved
D:\Virus\2015.6.19\24.vir The protected by password Skipped
D:\Virus\2015.6.19\35.vir The protected by password Skipped
D:\Virus\2015.6.19\21.vir Suspicious Trojan.Ole2.Vbs-heuristic.druvzi Moved
D:\Virus\2015.6.19\07.vir Infected Trojan.Win32.Agent.dcbxfg Deleted
D:\Virus\2015.6.19\43.vir Infected Trojan.Win32.DownLoader11.cxfbrl; Trojan.Win32.DownLoader10.cwbhym; Trojan.Win32.DownLoader10.cwbhyr; ... Deleted
D:\Virus\2015.6.19\17.vir Found Riskware.Win32.Spigot.dqmojr Deleted
D:\Virus\2015.6.19\15.vir Infected Trojan.Script.Agent.druzwh Deleted
D:\Virus\2015.6.19\50.vir Infected Trojan.Win32.Androm.dqvkll Deleted

Scan started: 2015/6/19 9:53:46
Scan time: 00:00:11
Scanned: 23.5 Mb

Checked files/objects:
        Total: 50/484
        Infected: 4/6
        Suspicious: 1/2
        Riskware: 1/1
        Cured: 0/0
        Isolated: 1/2
        Deleted: 5/7
        Skipped: 2/3

欧阳宣

mcafee

蓝雨风暴

蛋挞。。。22x

275751198

360  只开云 18个

jayavira

eset kill23x，修复1x