收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 精睿样本测试(15.8.24)
123456下一页
返回列表 发新帖
楼主: 潘达达
 收起左侧

[病毒样本] 精睿样本测试(15.8.24)

  [复制链接]
sjneng
发表于 2015-8-24 16:15:14 | 显示全部楼层
Flying_Bird 发表于 2015-8-24 16:14
今天从国际版官网下载的,还是可以看到有Avira引擎

那我就不知道了
@XywCloud 说下线了,而且下线很久了
回复

举报

瑜辰双飞
发表于 2015-8-24 16:16:59 | 显示全部楼层
Flying_Bird 发表于 2015-8-24 10:06
Huorong killed 7x.
[mw_shl_code=xml,true]
2015.8.24\13.vir        HEUR:Trojan/DE.Downloader

火绒测过双击没?主防怎么样?
回复

举报

XywCloud
发表于 2015-8-24 16:18:21 | 显示全部楼层
Flying_Bird 发表于 2015-8-24 16:14
今天从国际版官网下载的,还是可以看到有Avira引擎


等待自动更新,更新完后就不会有了。
这次扫描应该没有红伞引擎检出。
回复

举报

Flying_Bird
发表于 2015-8-24 16:21:06 | 显示全部楼层
XywCloud 发表于 2015-8-24 16:18
等待自动更新,更新完后就不会有了。
这次扫描应该没有红伞引擎检出。

是吗?检出36x,还有我测试之前是点了更新的。
回复

举报

Flying_Bird
发表于 2015-8-24 16:25:33 | 显示全部楼层
瑜辰双飞 发表于 2015-8-24 16:16
火绒测过双击没?主防怎么样?

测试机是生产环境,没有强大的AVC不敢测试 @电脑发烧友
回复

举报

XywCloud
发表于 2015-8-24 16:26:44 | 显示全部楼层
Flying_Bird 发表于 2015-8-24 16:21
是吗?检出36x,还有我测试之前是点了更新的。

那个撤掉红伞引擎的更新不是你主动点就一定可以点出来的。
如果不信这次扫描没有红伞检出就把红伞关掉再测。
回复

举报

cxy密斯
发表于 2015-8-24 18:08:50 | 显示全部楼层
[mw_shl_code=css,true]
Dr.Web Scanner SE for Windows v9.1.3.08170
Scanning Engine version: 10.0.8.8100
Virus Finding Engine version: 7.0.14.8060

Start scanning
Object(s) to scan:
- C:\Users\Shiloh\Desktop\2015.8.24
C:\Users\Shiloh\Desktop\2015.8.24\01.vir:Zone.Identifier - Ok - 14ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\02.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\02.vir - infected with Trojan.Packed.20343
C:\Users\Shiloh\Desktop\2015.8.24\02.vir - infected - 379ms, 83968 bytes
C:\Users\Shiloh\Desktop\2015.8.24\03.vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\01.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.24\01.vir\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\01.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\01.vir\data003 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\01.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\01.vir - container - 446ms, 823536 bytes
C:\Users\Shiloh\Desktop\2015.8.24\04.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\05.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\_rels\workbook.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\workbook.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\worksheets\_rels\sheet2.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\worksheets\_rels\sheet1.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\worksheets\sheet2.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\worksheets\sheet1.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\sharedStrings.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\printerSettings\printerSettings1.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\printerSettings\printerSettings2.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\xl\calcChain.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\05.vir - container - 131ms, 37390 bytes
C:\Users\Shiloh\Desktop\2015.8.24\05.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\06.vir - packed by MPRESS
C:\Users\Shiloh\Desktop\2015.8.24\03.vir - infected with BackDoor.Wirenet.5
C:\Users\Shiloh\Desktop\2015.8.24\03.vir - infected - 1042ms, 620544 bytes
C:\Users\Shiloh\Desktop\2015.8.24\06.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\06.vir - infected with Trojan.DownLoader15.55298
C:\Users\Shiloh\Desktop\2015.8.24\06.vir - infected - 591ms, 361984 bytes
C:\Users\Shiloh\Desktop\2015.8.24\07.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\04.vir - infected with Trojan.DownLoader12.42308
C:\Users\Shiloh\Desktop\2015.8.24\04.vir - infected - 1050ms, 140800 bytes
C:\Users\Shiloh\Desktop\2015.8.24\08.vir:Zone.Identifier - Ok - 9ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\08.vir is SIM container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\script.bin - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\temp.bin is CAB archive
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\temp.bin\$inst\4.tmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\temp.bin\$inst\5.tmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\temp.bin\$inst\7.tmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\temp.bin - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin is ASF container
>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file is CAB archive
>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0 is BINARYRES container
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data001 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data001 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data002 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data002 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data003 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data003 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data004 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data004 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data005 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data006 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data006 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data007 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data008 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data009 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data009 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data010 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data010 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data011 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data011 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data012 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data012 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data013 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data013 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data014 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data014 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data015 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data015 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data016 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data016 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data017 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data017 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data018 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data018 - Ok
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data019 is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data019 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0\data020 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\0 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file\1 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin\0.file - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir\data.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\08.vir - container - 751ms, 321477 bytes
C:\Users\Shiloh\Desktop\2015.8.24\09.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\09.vir - Ok - 555ms, 286528 bytes
C:\Users\Shiloh\Desktop\2015.8.24\10.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\10.vir is CAB archive
C:\Users\Shiloh\Desktop\2015.8.24\11.vir - Ok - 334ms, 67584 bytes
C:\Users\Shiloh\Desktop\2015.8.24\11.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\07.vir is AUTOIT container
>>C:\Users\Shiloh\Desktop\2015.8.24\07.vir\Users\Me\AppData\Local\Temp\aut12B3.tmp - packed by ASCRIPT
C:\Users\Shiloh\Desktop\2015.8.24\07.vir\Users\Me\AppData\Local\Temp\aut12B3.tmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\07.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\07.vir - container - 1498ms, 1157208 bytes
C:\Users\Shiloh\Desktop\2015.8.24\12.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\10.vir\bits.ps1 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\10.vir\exec.bat - Ok
C:\Users\Shiloh\Desktop\2015.8.24\10.vir\rand.fil - Ok
C:\Users\Shiloh\Desktop\2015.8.24\10.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\10.vir - archive - 664ms, 733184 bytes
C:\Users\Shiloh\Desktop\2015.8.24\13.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\12.vir is NET container
C:\Users\Shiloh\Desktop\2015.8.24\12.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\12.vir - container - 353ms, 339968 bytes
C:\Users\Shiloh\Desktop\2015.8.24\14.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\13.vir - infected with BackDoor.Comet.2020
C:\Users\Shiloh\Desktop\2015.8.24\13.vir - infected - 427ms, 1237504 bytes
C:\Users\Shiloh\Desktop\2015.8.24\15.vir:Zone.Identifier - Ok - 47ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\16.vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\addmodel.baml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\mainwindow.baml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\resources\main.ico - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\resources\offline.png - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\resources\online.png - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\resources\recoff.png - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001\resources\recon.png - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\16.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\16.vir - container - 425ms, 88064 bytes
C:\Users\Shiloh\Desktop\2015.8.24\16.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\14.vir - infected with Trojan.PWS.Stealer.13336
C:\Users\Shiloh\Desktop\2015.8.24\14.vir - infected - 1160ms, 615936 bytes
C:\Users\Shiloh\Desktop\2015.8.24\17.vir:Zone.Identifier - Ok - 22ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\15.vir is NSIS container
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\script.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\awiu78awguioaw547852a - Ok
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\Roxy - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\15.vir\cs_0.2.js is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\cs_0.2.js\JSFile_1[0][58c] - Ok
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\cs_0.2.js - Ok
C:\Users\Shiloh\Desktop\2015.8.24\18.vir - infected with Trojan.DownLoader5.35169
C:\Users\Shiloh\Desktop\2015.8.24\18.vir - infected - 327ms, 67072 bytes
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\postponement.dll - infected with Trojan.Inject1.64449
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\postponement.dll - infected
C:\Users\Shiloh\Desktop\2015.8.24\18.vir:Zone.Identifier - Ok - 17ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\15.vir\_殌\System.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\15.vir - infected container
C:\Users\Shiloh\Desktop\2015.8.24\15.vir - infected container - 1469ms, 683706 bytes
C:\Users\Shiloh\Desktop\2015.8.24\19.vir:Zone.Identifier - Ok - 13ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\20.vir is NET container
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aM3GlOGQuhHyGi - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aND8nwE0qqQaKKtW4y.mp3 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aP9XKE3feIe1U5jI - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aUDwuZVgH - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aWm4CqaoADD4xC0f - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\aZVXVLU2rJi9xXO - Ok
C:\Users\Shiloh\Desktop\2015.8.24\17.vir - Ok - 1216ms, 740864 bytes
C:\Users\Shiloh\Desktop\2015.8.24\20.vir\azhEu00xPqOYPuyR1p - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\20.vir - container - 520ms, 689152 bytes
C:\Users\Shiloh\Desktop\2015.8.24\20.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\21.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\21.vir - packed by UPX
C:\Users\Shiloh\Desktop\2015.8.24\21.vir - infected with Win32.HLLM.MyDoom.54464
C:\Users\Shiloh\Desktop\2015.8.24\21.vir - infected - 320ms, 8192 bytes
C:\Users\Shiloh\Desktop\2015.8.24\22.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\22.vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\2015.8.24\22.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\22.vir\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\22.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\22.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\22.vir - container - 427ms, 446976 bytes
C:\Users\Shiloh\Desktop\2015.8.24\23.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\19.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.8.24\19.vir - Ok - 1272ms, 6656 bytes
C:\Users\Shiloh\Desktop\2015.8.24\24.vir:Zone.Identifier - Ok - 26ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\23.vir - Ok - 578ms, 313920 bytes
C:\Users\Shiloh\Desktop\2015.8.24\25.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\26.vir - infected with Trojan.Siggen6.21837
C:\Users\Shiloh\Desktop\2015.8.24\26.vir - infected - 369ms, 100864 bytes
C:\Users\Shiloh\Desktop\2015.8.24\26.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\24.vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data002 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data003 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data003 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data004 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data004 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data005 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data005 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data006 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data006 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data007 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data007 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data008 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data008 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data009 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data010 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data011 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data011 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data012 is NET container
C:\Users\Shiloh\Desktop\2015.8.24\24.vir\data012 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\24.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\24.vir - container - 1162ms, 694784 bytes
C:\Users\Shiloh\Desktop\2015.8.24\27.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\27.vir - infected with Trojan.Inject1.55895
C:\Users\Shiloh\Desktop\2015.8.24\27.vir - infected - 346ms, 162304 bytes
C:\Users\Shiloh\Desktop\2015.8.24\28.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\25.vir - Ok - 1058ms, 122880 bytes
C:\Users\Shiloh\Desktop\2015.8.24\29.vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\28.vir - Ok - 218ms, 1206122 bytes
C:\Users\Shiloh\Desktop\2015.8.24\30.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\31.vir - infected with BackDoor.Bladabindi.1393
C:\Users\Shiloh\Desktop\2015.8.24\31.vir - infected - 409ms, 44544 bytes
C:\Users\Shiloh\Desktop\2015.8.24\31.vir:Zone.Identifier - Ok - 28ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\30.vir is NET container
C:\Users\Shiloh\Desktop\2015.8.24\30.vir\Tcpz_x86 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\30.vir\php - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - packed by EXECRYPT
>>>C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - packed by PECRYPT
>>>>C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - packed by PECRYPT
>>>>>C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - packed by UPX
C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - is hacktool program Tool.TcpScan.59
C:\Users\Shiloh\Desktop\2015.8.24\30.vir\s - infected
C:\Users\Shiloh\Desktop\2015.8.24\30.vir - infected container
C:\Users\Shiloh\Desktop\2015.8.24\30.vir - infected container - 646ms, 859136 bytes
C:\Users\Shiloh\Desktop\2015.8.24\32.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\29.vir - Ok - 1049ms, 74752 bytes
C:\Users\Shiloh\Desktop\2015.8.24\33.vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\33.vir - infected with Trojan.DownLoader14.40970
C:\Users\Shiloh\Desktop\2015.8.24\33.vir - infected - 321ms, 82791 bytes
C:\Users\Shiloh\Desktop\2015.8.24\34.vir:Zone.Identifier - Ok - 15ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\35.vir - infected with Trojan.DownLoader15.51623
C:\Users\Shiloh\Desktop\2015.8.24\35.vir - infected - 315ms, 83456 bytes
C:\Users\Shiloh\Desktop\2015.8.24\35.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\32.vir - Ok - 1206ms, 465408 bytes
C:\Users\Shiloh\Desktop\2015.8.24\36.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\34.vir - infected with Trojan.DownLoader15.52343
C:\Users\Shiloh\Desktop\2015.8.24\34.vir - infected - 1063ms, 582144 bytes
C:\Users\Shiloh\Desktop\2015.8.24\37.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\37.vir - infected with Trojan.PWS.Steam.5359
C:\Users\Shiloh\Desktop\2015.8.24\37.vir - infected - 394ms, 847872 bytes
C:\Users\Shiloh\Desktop\2015.8.24\38.vir:Zone.Identifier - Ok - 9ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\36.vir is NSIS container
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\script.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_殌\ioSpecial.ini - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_殌\modern-wizard.bmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_殌\modern-header.bmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_晙\rez\RF004.REZ.jdiff - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_殌\System.dll - Ok
>C:\Users\Shiloh\Desktop\2015.8.24\38.vir is CAB archive
>>C:\Users\Shiloh\Desktop\2015.8.24\38.vir\i_am_happy_you_are_to_playing_the_flareon_challenge.exe - packed by FLY-CODE
>>>C:\Users\Shiloh\Desktop\2015.8.24\38.vir\i_am_happy_you_are_to_playing_the_flareon_challenge.exe is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.24\38.vir\i_am_happy_you_are_to_playing_the_flareon_challenge.exe\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\38.vir\i_am_happy_you_are_to_playing_the_flareon_challenge.exe\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\38.vir\i_am_happy_you_are_to_playing_the_flareon_challenge.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.24\38.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\38.vir - archive - 1150ms, 186880 bytes
C:\Users\Shiloh\Desktop\2015.8.24\39.vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\_殌\NSISPlugin.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir\SetError - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\36.vir - container - 1891ms, 702657 bytes
C:\Users\Shiloh\Desktop\2015.8.24\40.vir:Zone.Identifier - Ok - 7ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\39.vir - packed by ENIGMA
C:\Users\Shiloh\Desktop\2015.8.24\41.vir - infected with Trojan.Packed.21790
C:\Users\Shiloh\Desktop\2015.8.24\41.vir - infected - 522ms, 813056 bytes
C:\Users\Shiloh\Desktop\2015.8.24\41.vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\42.vir - infected with Exploit.SWF
C:\Users\Shiloh\Desktop\2015.8.24\42.vir - infected - 1ms, 858 bytes
C:\Users\Shiloh\Desktop\2015.8.24\42.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\43.vir is NET container
C:\Users\Shiloh\Desktop\2015.8.24\43.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\43.vir - container - 389ms, 602112 bytes
C:\Users\Shiloh\Desktop\2015.8.24\43.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\40.vir - infected with Trojan.DownLoader15.34326
C:\Users\Shiloh\Desktop\2015.8.24\40.vir - infected - 1012ms, 84480 bytes
C:\Users\Shiloh\Desktop\2015.8.24\44.vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\45.vir - infected with Trojan.Hosts.35916
C:\Users\Shiloh\Desktop\2015.8.24\45.vir - infected - 326ms, 55808 bytes
C:\Users\Shiloh\Desktop\2015.8.24\45.vir:Zone.Identifier - Ok - 9ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\46.vir is INNO SETUP container
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script0.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script1.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\44.vir - infected with Trojan.DownLoader.18632
C:\Users\Shiloh\Desktop\2015.8.24\44.vir - infected - 1095ms, 41472 bytes
C:\Users\Shiloh\Desktop\2015.8.24\46.vir:Zone.Identifier - Ok - 12ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\47.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\_rels\workbook.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\workbook.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\worksheets\_rels\sheet2.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\worksheets\_rels\sheet1.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\worksheets\sheet2.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\theme\theme1.xml - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script2.bin is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\worksheets\sheet1.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script2.bin\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\sharedStrings.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\printerSettings\printerSettings1.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\printerSettings\printerSettings2.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script2.bin\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Script2.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\xl\calcChain.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\0.object - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir - container - 283ms, 39181 bytes
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\Embedded_Setup.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.24\47.vir:Zone.Identifier - Ok - 23ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\stdole2.tlb - Ok
>>C:\Users\Shiloh\Desktop\2015.8.24\39.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\msvbvm60.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\oleaut32.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\olepro32.dll - Ok
>>>C:\Users\Shiloh\Desktop\2015.8.24\39.vir\data001 is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\asycfilt.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir\data001\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir\data001\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\comcat.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\39.vir - container - 4150ms, 2846208 bytes
C:\Users\Shiloh\Desktop\2015.8.24\48.vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\comdlg32.ocx - Ok
C:\Users\Shiloh\Desktop\2015.8.24\48.vir - infected with Trojan.DownLoader11.27742
C:\Users\Shiloh\Desktop\2015.8.24\48.vir - infected - 1039ms, 372736 bytes
C:\Users\Shiloh\Desktop\2015.8.24\49.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\50.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.8.24\50.vir\document23440-966567.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.24\50.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\50.vir - archive - 44ms, 16521 bytes
C:\Users\Shiloh\Desktop\2015.8.24\50.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\mscomctl.ocx - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{sys}\comctl32.ocx - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{app}\MediaPlayer.ocx - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{app}\DVDCutterPlus.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{app}\DVDCutterPlus.exe.manifest - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{tmp}\itdownload.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir\{tmp}\trees.bmp - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.24\46.vir - container - 2446ms, 2171408 bytes
>C:\Users\Shiloh\Desktop\2015.8.24\49.vir - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\2015.8.24\49.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.8.24\49.vir - Ok - 3024ms, 1994752 bytes

Total 25128699 bytes in 100 files scanned (245 objects)
Total 77 files (220 objects) are clean
Total 23 files are infected
Scan time is 00:00:15.799

Start curing

C:\Users\Shiloh\Desktop\2015.8.24\02.vir - quarantined - 1192 ms
C:\Users\Shiloh\Desktop\2015.8.24\03.vir - quarantined - 73 ms
C:\Users\Shiloh\Desktop\2015.8.24\06.vir - quarantined - 307 ms
C:\Users\Shiloh\Desktop\2015.8.24\04.vir - quarantined - 45 ms
C:\Users\Shiloh\Desktop\2015.8.24\13.vir - quarantined - 108 ms
C:\Users\Shiloh\Desktop\2015.8.24\14.vir - quarantined - 124 ms
C:\Users\Shiloh\Desktop\2015.8.24\18.vir - quarantined - 45 ms
C:\Users\Shiloh\Desktop\2015.8.24\15.vir - quarantined - 48 ms
C:\Users\Shiloh\Desktop\2015.8.24\21.vir - quarantined - 64 ms
C:\Users\Shiloh\Desktop\2015.8.24\26.vir - quarantined - 60 ms
C:\Users\Shiloh\Desktop\2015.8.24\27.vir - quarantined - 69 ms
C:\Users\Shiloh\Desktop\2015.8.24\31.vir - quarantined - 40 ms
C:\Users\Shiloh\Desktop\2015.8.24\30.vir - quarantined - 51 ms
C:\Users\Shiloh\Desktop\2015.8.24\33.vir - quarantined - 45 ms
C:\Users\Shiloh\Desktop\2015.8.24\35.vir - quarantined - 43 ms
C:\Users\Shiloh\Desktop\2015.8.24\34.vir - quarantined - 70 ms
C:\Users\Shiloh\Desktop\2015.8.24\37.vir - quarantined - 83 ms
C:\Users\Shiloh\Desktop\2015.8.24\41.vir - quarantined - 165 ms
C:\Users\Shiloh\Desktop\2015.8.24\42.vir - quarantined - 31 ms
C:\Users\Shiloh\Desktop\2015.8.24\40.vir - quarantined - 44 ms
C:\Users\Shiloh\Desktop\2015.8.24\45.vir - quarantined - 49 ms
C:\Users\Shiloh\Desktop\2015.8.24\44.vir - quarantined - 62 ms
C:\Users\Shiloh\Desktop\2015.8.24\48.vir - quarantined - 65 ms

Total 25128699 bytes in 100 files scanned (245 objects)
Total 77 files (220 objects) are clean
Total 23 files are infected
Total 23 files are neutralized
Scan time is 00:00:15.799
[/mw_shl_code]
回复

举报

Sailer.X 该用户已被删除
发表于 2015-8-24 18:14:41 | 显示全部楼层
本帖最后由 霄栋 于 2015-8-25 09:14 编辑

江民杀毒移动版:发现12,删除11,未处理1,剩余文件39

MBAM:发现23,删除23,剩余文件27

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

白露为霜
发表于 2015-8-24 18:39:23 | 显示全部楼层
Llano_心情 发表于 2015-8-24 12:03
瑞星2011 killx6

瑞星的成绩每天都这样咯。
回复

举报

辽宁大连~~小海
发表于 2015-8-24 18:48:45 | 显示全部楼层
root1605 发表于 2015-8-24 18:39
瑞星的成绩每天都这样咯。

瑞星现在还有什么值得保留的?有木有人敢测试瑞星主防的
回复

举报

下一页 »
123456下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-24 10:37 , Processed in 0.093983 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表