收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 精睿样本测试(15.9.5)
123下一页
返回列表 发新帖
查看: 4225|回复: 28
收起左侧

[病毒样本] 精睿样本测试(15.9.5)

[复制链接]
神迹般存在
发表于 2015-9-5 09:06:48 来自手机 | 显示全部楼层 |阅读模式
本帖最后由 神迹般存在 于 2015-9-5 09:53 编辑

地址:http://kuai.xunlei.com/d/zuh.Ac1yLjPqVQQA8eb
http://pan.baidu.com/s/1i3IVYLn 提取密码 n3mc
密码:bbs.vc52.cn
数量:50
-----分割线-----
KIS deleted 30x, repaired 5x, missed 15x.

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

MXCERILYF!
发表于 2015-9-5 09:07:40 | 显示全部楼层
本帖最后由 MXCERILYF! 于 2015-9-5 09:56 编辑

金山毒霸10

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

housirvip
发表于 2015-9-5 09:12:51 | 显示全部楼层
本帖最后由 housirvip 于 2015-9-5 09:26 编辑

BullGuard解压杀28,扫描杀5,修复5,余12

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

aboringman
发表于 2015-9-5 09:16:23 | 显示全部楼层
本帖最后由 aboringman 于 2015-9-5 09:52 编辑

趋势国际 扫描(关闭监控):kill 20,fix 6

不改名双击:0;

改exe后缀(双击):kill 07、05、49、28、36、03、06、43、18、16、30、33、42、12;


改rar后缀(解压后扫描/双击):21、09、39、26是压缩包格式。其中26解压不杀,21、39、09解压出的程序双击被杀;

另:50、23双击报错退出(程序格式),42是重复样本(之前已测)
回复

举报

蓝天二号
发表于 2015-9-5 09:29:50 | 显示全部楼层
Q管 KILL 16X


诺顿

[mw_shl_code=html,true]已解决的威胁:
W97M.Downloader
类型: 压缩
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
- 已删除


Downloader.Upatre!gen5
类型: 压缩
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
- 已删除


Trojan.Zbot
类型: 压缩
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
- 已删除


压缩文件“39.vir”中存在风险
类型: 压缩
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
[universal bhop.exe] 位于 [c:\users\cjw20\desktop\新建文件夹\2015.9.5\39.vir] - 完全解决


Infostealer.Limitail
类型: 异常
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
c:\users\cjw20\desktop\新建文件夹\2015.9.5\08.vir - 已删除


W97M.Downloader
类型: 压缩
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
1 个文件
- 已删除


PUA.Gen.2
类型: 异常
风险: 低 (低 隐藏, 低 删除, 低 性能, 低 隐私)  
类别: 安全风险
状态: 已排除
-----------
1 个文件
c:\users\cjw20\desktop\新建文件夹\2015.9.5\30.vir - 已排除
1 个浏览器缓存



Trojan.Gen.2
类型: 异常
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
2 个文件
c:\users\cjw20\desktop\新建文件夹\2015.9.5\32.vir - 已删除
c:\users\cjw20\desktop\新建文件夹\2015.9.5\44.vir - 已删除
1 个浏览器缓存



Trojan.Gen
类型: 异常
风险: 高 (高 隐藏, 高 删除, 高 性能, 高 隐私)  
类别: 病毒
状态: 完全解决
-----------
2 个文件
c:\users\cjw20\desktop\新建文件夹\2015.9.5\34.vir - 已删除
c:\users\cjw20\desktop\新建文件夹\2015.9.5\13.vir - 已删除
1 个浏览器缓存





未解决的威胁:
没有未解决的风险[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

MXCERILYF!
发表于 2015-9-5 09:49:14 | 显示全部楼层
本帖最后由 MXCERILYF! 于 2015-9-5 09:52 编辑

360TS(只开启自主引擎)
文件后缀为vir时:杀29个

文件后缀为exe时:补杀5个

文件后缀为zip时:补杀6个

无后缀时:补杀1个

共查杀41个,剩余9个

卡巴斯基2016补杀

排除1个修复的,剩余6个

ESET补杀

最终剩余5个

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

cxy密斯
发表于 2015-9-5 09:52:34 | 显示全部楼层
[mw_shl_code=css,true]=============================================================================
Dr.Web Scanner SE for Windows v9.1.3.08170
=============================================================================
Scanning Engine version: 10.0.8.8100
Virus Finding Engine version: 7.0.15.8310
-----------------------------------------------------------------------------
Start scanning
-----------------------------------------------------------------------------
Object(s) to scan:
- C:\Users\Shiloh\Desktop\2015.9.5

C:\Users\Shiloh\Desktop\2015.9.5\01.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\02.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\01.vir - Ok - 311ms, 15360 bytes
C:\Users\Shiloh\Desktop\2015.9.5\03.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\02.vir - infected with Trojan.DownLoader13.7697
C:\Users\Shiloh\Desktop\2015.9.5\02.vir - infected - 318ms, 30720 bytes
C:\Users\Shiloh\Desktop\2015.9.5\04.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\03.vir - Ok - 323ms, 7168 bytes
C:\Users\Shiloh\Desktop\2015.9.5\05.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\04.vir - Ok - 27ms, 4431 bytes
C:\Users\Shiloh\Desktop\2015.9.5\06.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\05.vir - infected with Trojan.DownLoader16.11642
C:\Users\Shiloh\Desktop\2015.9.5\05.vir - infected - 333ms, 209920 bytes
C:\Users\Shiloh\Desktop\2015.9.5\07.vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\07.vir - infected with Trojan.DownLoader16.11681
C:\Users\Shiloh\Desktop\2015.9.5\07.vir - infected - 320ms, 308736 bytes
C:\Users\Shiloh\Desktop\2015.9.5\08.vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\08.vir is RAR archive
>C:\Users\Shiloh\Desktop\2015.9.5\09.vir is RAR archive
C:\Users\Shiloh\Desktop\2015.9.5\08.vir\scan0000001-pdf.exe - infected with Trojan.PWS.Siggen1.41137
C:\Users\Shiloh\Desktop\2015.9.5\08.vir\scan0000001-pdf.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\08.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\08.vir - infected archive - 58ms, 399301 bytes
C:\Users\Shiloh\Desktop\2015.9.5\09.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\06.vir - Ok - 417ms, 345088 bytes
C:\Users\Shiloh\Desktop\2015.9.5\10.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\09.vir\Visualizar_Fatura_IMG94482019843.jpeg.exe - infected with Trojan.DownLoader16.11214
C:\Users\Shiloh\Desktop\2015.9.5\09.vir\Visualizar_Fatura_IMG94482019843.jpeg.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\09.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\09.vir - infected archive - 334ms, 1477406 bytes
C:\Users\Shiloh\Desktop\2015.9.5\11.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\11.vir - infected with Trojan.Upatre.505
C:\Users\Shiloh\Desktop\2015.9.5\11.vir - infected - 278ms, 114688 bytes
C:\Users\Shiloh\Desktop\2015.9.5\12.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\10.vir - Ok - 331ms, 141312 bytes
C:\Users\Shiloh\Desktop\2015.9.5\13.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\14.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.9.5\14.vir\receiptcopy-tt.exe - infected with Trojan.Inject1.43610
C:\Users\Shiloh\Desktop\2015.9.5\14.vir\receiptcopy-tt.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\14.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\14.vir - infected archive - 22ms, 188129 bytes
C:\Users\Shiloh\Desktop\2015.9.5\14.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\15.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\_rels\document.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\document.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\_rels\vbaProject.bin.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\vbaProject.bin - infected with W97M.DownLoader.600
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\vbaProject.bin - infected
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\vbaData.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\settings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\webSettings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\numbering.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\stylesWithEffects.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\word\fontTable.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\15.vir - infected container
C:\Users\Shiloh\Desktop\2015.9.5\15.vir - infected container - 115ms, 33263 bytes
C:\Users\Shiloh\Desktop\2015.9.5\15.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\13.vir - Ok - 296ms, 4096 bytes
C:\Users\Shiloh\Desktop\2015.9.5\16.vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\12.vir - infected with Trojan.Encoder.514
C:\Users\Shiloh\Desktop\2015.9.5\12.vir - infected - 344ms, 233472 bytes
C:\Users\Shiloh\Desktop\2015.9.5\17.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\18.vir - infected with Trojan.DownLoader15.43774
C:\Users\Shiloh\Desktop\2015.9.5\18.vir - infected - 367ms, 1118208 bytes
C:\Users\Shiloh\Desktop\2015.9.5\18.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\17.vir - packed by FLY-CODE
>C:\Users\Shiloh\Desktop\2015.9.5\19.vir is MAIL container
C:\Users\Shiloh\Desktop\2015.9.5\19.vir\1.part - Ok
C:\Users\Shiloh\Desktop\2015.9.5\19.vir\4.part - Ok
C:\Users\Shiloh\Desktop\2015.9.5\19.vir\5.part - Ok
C:\Users\Shiloh\Desktop\2015.9.5\19.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\19.vir - mail - 73ms, 79503 bytes
C:\Users\Shiloh\Desktop\2015.9.5\19.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\20.vir is RTF container
C:\Users\Shiloh\Desktop\2015.9.5\20.vir\OLEstream-1 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\20.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\20.vir - container - 16ms, 99925 bytes
C:\Users\Shiloh\Desktop\2015.9.5\20.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\21.vir is ZIP archive
>>C:\Users\Shiloh\Desktop\2015.9.5\17.vir - packed by PESTUB
>>C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee is BINARYRES container
C:\Users\Shiloh\Desktop\2015.9.5\17.vir - Ok - 802ms, 180736 bytes
C:\Users\Shiloh\Desktop\2015.9.5\21.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\22.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\_rels\document.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data001 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\document.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\_rels\vbaProject.bin.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data002 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\vbaProject.bin - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\vbaData.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data003 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\settings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\webSettings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\numbering.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data004 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\stylesWithEffects.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\word\fontTable.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\22.vir - container - 164ms, 32649 bytes
C:\Users\Shiloh\Desktop\2015.9.5\22.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data005 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data006 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data007 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\16.vir - Ok - 1266ms, 456276 bytes
C:\Users\Shiloh\Desktop\2015.9.5\23.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data008 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data009 - Ok
>C:\Users\Shiloh\Desktop\2015.9.5\23.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.9.5\23.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.9.5\23.vir\data002 is ZLIB container
C:\Users\Shiloh\Desktop\2015.9.5\23.vir\data002\data001 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\23.vir\data002\data002 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\23.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\23.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\23.vir - container - 471ms, 1247232 bytes
C:\Users\Shiloh\Desktop\2015.9.5\24.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\25.vir - packed by ENCODED SCRIPT
C:\Users\Shiloh\Desktop\2015.9.5\25.vir - Ok - 32ms, 4723 bytes
C:\Users\Shiloh\Desktop\2015.9.5\25.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee\data010 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir\_e7____ _____a1________a4_e2___e7___a4.exee - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\21.vir - archive - 1012ms, 999299 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\26.vir is JAR container
C:\Users\Shiloh\Desktop\2015.9.5\26.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\META-INF\MANIFEST.MF - Ok
>C:\Users\Shiloh\Desktop\2015.9.5\27.vir is RTF container
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\b.txt - Ok
C:\Users\Shiloh\Desktop\2015.9.5\27.vir\OLEstream-1 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\27.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\27.vir - container - 14ms, 99949 bytes
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\a.txt - Ok
C:\Users\Shiloh\Desktop\2015.9.5\27.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\a\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFs.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\b\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFs.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\c\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFs.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\c\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFe.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\d\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFs.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\d\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFe.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\Main.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFs.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir\FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFe.class - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\26.vir - container - 106ms, 100655 bytes
C:\Users\Shiloh\Desktop\2015.9.5\28.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\24.vir - packed by NSPACK
C:\Users\Shiloh\Desktop\2015.9.5\24.vir - infected with Trojan.DownLoader16.7695
C:\Users\Shiloh\Desktop\2015.9.5\24.vir - infected - 621ms, 81945 bytes
C:\Users\Shiloh\Desktop\2015.9.5\29.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\28.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.9.5\28.vir - Ok - 339ms, 113152 bytes
C:\Users\Shiloh\Desktop\2015.9.5\30.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\29.vir - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\2015.9.5\29.vir is CAB archive
C:\Users\Shiloh\Desktop\2015.9.5\30.vir - infected with Trojan.DownLoader16.10031
C:\Users\Shiloh\Desktop\2015.9.5\30.vir - infected - 300ms, 109937 bytes
C:\Users\Shiloh\Desktop\2015.9.5\31.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\29.vir\freedoom.exe - infected with Trojan.DownLoader16.12113
C:\Users\Shiloh\Desktop\2015.9.5\29.vir\freedoom.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\31.vir - infected with Trojan.Starman.6711
C:\Users\Shiloh\Desktop\2015.9.5\31.vir - infected - 273ms, 122368 bytes
C:\Users\Shiloh\Desktop\2015.9.5\32.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\29.vir\install.exe - Ok
C:\Users\Shiloh\Desktop\2015.9.5\29.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\29.vir - infected archive - 615ms, 502784 bytes
C:\Users\Shiloh\Desktop\2015.9.5\33.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\32.vir - infected with Trojan.DownLoader12.43930
C:\Users\Shiloh\Desktop\2015.9.5\32.vir - infected - 339ms, 248135 bytes
C:\Users\Shiloh\Desktop\2015.9.5\34.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\33.vir - Ok - 322ms, 169301 bytes
C:\Users\Shiloh\Desktop\2015.9.5\35.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\34.vir - infected with Trojan.Inject2.2520
C:\Users\Shiloh\Desktop\2015.9.5\34.vir - infected - 338ms, 184320 bytes
C:\Users\Shiloh\Desktop\2015.9.5\36.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\35.vir - infected with Win32.HLLW.Autoruner.5555
C:\Users\Shiloh\Desktop\2015.9.5\35.vir - infected - 302ms, 18824 bytes
C:\Users\Shiloh\Desktop\2015.9.5\37.vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\38.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.9.5\38.vir\Booking.scr - infected with Trojan.Upatre.7859
C:\Users\Shiloh\Desktop\2015.9.5\38.vir\Booking.scr - infected
C:\Users\Shiloh\Desktop\2015.9.5\38.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\38.vir - infected archive - 40ms, 35861 bytes
C:\Users\Shiloh\Desktop\2015.9.5\36.vir - infected with Trojan.Siggen6.48177
C:\Users\Shiloh\Desktop\2015.9.5\36.vir - infected - 294ms, 378965 bytes
C:\Users\Shiloh\Desktop\2015.9.5\38.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\39.vir is 7-ZIP archive
C:\Users\Shiloh\Desktop\2015.9.5\39.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\40.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.9.5\39.vir\readme.txt - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\_rels\document.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\document.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\_rels\vbaProject.bin.rels - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\vbaProject.bin - Ok
C:\Users\Shiloh\Desktop\2015.9.5\39.vir\Universal Bhop.exe - infected with Trojan.DownLoader15.43774
C:\Users\Shiloh\Desktop\2015.9.5\39.vir\Universal Bhop.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\39.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\39.vir - infected archive - 102ms, 607558 bytes
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\vbaData.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\settings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\webSettings.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\41.vir - Ok - 22ms, 80384 bytes
C:\Users\Shiloh\Desktop\2015.9.5\41.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\37.vir - Ok - 345ms, 161280 bytes
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\numbering.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\stylesWithEffects.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\word\fontTable.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\40.vir - container - 175ms, 32589 bytes
C:\Users\Shiloh\Desktop\2015.9.5\43.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\44.vir - Ok - 430ms, 494592 bytes
C:\Users\Shiloh\Desktop\2015.9.5\44.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\42.vir - packed by UPX
>C:\Users\Shiloh\Desktop\2015.9.5\43.vir is INNO SETUP container
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script0.bin - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script1.bin - Ok
>>C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script2.bin is BINARYRES container
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script2.bin\data001 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script2.bin\data002 - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Script2.bin - Ok
C:\Users\Shiloh\Desktop\2015.9.5\45.vir - infected with Trojan.Siggen6.24923
C:\Users\Shiloh\Desktop\2015.9.5\45.vir - infected - 318ms, 118784 bytes
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\0.object - Ok
C:\Users\Shiloh\Desktop\2015.9.5\45.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\Embedded_Setup.exe - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir\{tmp}\itdownload.dll - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\43.vir - container - 888ms, 542924 bytes
C:\Users\Shiloh\Desktop\2015.9.5\46.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\47.vir - infected with Exploit.CVE2012-0158.9
C:\Users\Shiloh\Desktop\2015.9.5\47.vir - infected - 2ms, 10280 bytes
C:\Users\Shiloh\Desktop\2015.9.5\47.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\48.vir is PDF container
C:\Users\Shiloh\Desktop\2015.9.5\48.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\48.vir - container - 53ms, 916993 bytes
C:\Users\Shiloh\Desktop\2015.9.5\48.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>>C:\Users\Shiloh\Desktop\2015.9.5\42.vir is AUTOIT container
>C:\Users\Shiloh\Desktop\2015.9.5\46.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\11892232_993729474001443_2337630042342902794_n.jpg - Ok
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\apple.png - Ok
>>>C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Users\Administrator\AppData\Local\AutoIt v3\Aut2Exe\aut5724.tmp.tok - packed by ASCRIPT
>>C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE - packed by FLY-CODE
>C:\Users\Shiloh\Desktop\2015.9.5\49.vir - packed by FLY-CODE
>>>C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE is CAB archive
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE\freedoom.exe - infected with Trojan.DownLoader16.12113
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE\freedoom.exe - infected
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Users\Administrator\AppData\Local\AutoIt v3\Aut2Exe\aut5724.tmp.tok - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Languages.ini - Ok
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE\install.exe - Ok
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\freenet3.EXE - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\49.vir - Ok - 780ms, 1124352 bytes
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\donate.gif - Ok
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\images.jpg - Ok
C:\Users\Shiloh\Desktop\2015.9.5\49.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\46.vir\sfx.ini - Ok
C:\Users\Shiloh\Desktop\2015.9.5\46.vir - infected archive
C:\Users\Shiloh\Desktop\2015.9.5\46.vir - infected archive - 952ms, 658946 bytes
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\donate.jpg - Ok
C:\Users\Shiloh\Desktop\2015.9.5\50.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\W10Privacy_HOSTS.txt - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\wu_andere_ms_produkte_aus.vbs - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\Icons\Leeres_Icon.ico - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\wu_andere_ms_produkte_an.vbs - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\tools\Anheften.vbs - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\Internet Explorer_X64.lnk - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir\Systemsoftware\MyApps\AutoIT_v3\BSC-Scripte\W10Privacy\Tools\Internet Explorer_X86.lnk - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir - Ok
C:\Users\Shiloh\Desktop\2015.9.5\42.vir - container - 1902ms, 714240 bytes
>C:\Users\Shiloh\Desktop\2015.9.5\50.vir - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\2015.9.5\50.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.9.5\50.vir - Ok - 388ms, 20480 bytes

Total 15382539 bytes in 100 files scanned (214 objects, 7 containers)
Total 77 files (182 objects) are clean
Total 23 files are infected
Scan time is 00:00:06.413
-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------
C:\Users\Shiloh\Desktop\2015.9.5\02.vir - quarantined - 872 ms
C:\Users\Shiloh\Desktop\2015.9.5\05.vir - quarantined - 48 ms
C:\Users\Shiloh\Desktop\2015.9.5\07.vir - quarantined - 50 ms
C:\Users\Shiloh\Desktop\2015.9.5\08.vir - quarantined - 39 ms
C:\Users\Shiloh\Desktop\2015.9.5\09.vir - quarantined - 64 ms
C:\Users\Shiloh\Desktop\2015.9.5\11.vir - quarantined - 38 ms
C:\Users\Shiloh\Desktop\2015.9.5\14.vir - quarantined - 35 ms
C:\Users\Shiloh\Desktop\2015.9.5\15.vir - quarantined - 29 ms
C:\Users\Shiloh\Desktop\2015.9.5\12.vir - quarantined - 52 ms
C:\Users\Shiloh\Desktop\2015.9.5\18.vir - quarantined - 95 ms
C:\Users\Shiloh\Desktop\2015.9.5\24.vir - quarantined - 310 ms
C:\Users\Shiloh\Desktop\2015.9.5\30.vir - quarantined - 54 ms
C:\Users\Shiloh\Desktop\2015.9.5\31.vir - quarantined - 33 ms
C:\Users\Shiloh\Desktop\2015.9.5\29.vir - quarantined - 44 ms
C:\Users\Shiloh\Desktop\2015.9.5\32.vir - quarantined - 55 ms
C:\Users\Shiloh\Desktop\2015.9.5\34.vir - quarantined - 106 ms
C:\Users\Shiloh\Desktop\2015.9.5\35.vir - quarantined - 40 ms
C:\Users\Shiloh\Desktop\2015.9.5\38.vir - quarantined - 31 ms
C:\Users\Shiloh\Desktop\2015.9.5\36.vir - quarantined - 47 ms
C:\Users\Shiloh\Desktop\2015.9.5\39.vir - quarantined - 43 ms
C:\Users\Shiloh\Desktop\2015.9.5\45.vir - quarantined - 60 ms
C:\Users\Shiloh\Desktop\2015.9.5\47.vir - quarantined - 39 ms
C:\Users\Shiloh\Desktop\2015.9.5\46.vir - quarantined - 46 ms

Total 15382539 bytes in 100 files scanned (214 objects, 7 containers)
Total 77 files (182 objects) are clean
Total 23 files are infected
Total 23 files are neutralized
Scan time is 00:00:06.413[/mw_shl_code]
回复

举报

狐狸糊涂
发表于 2015-9-5 10:03:16 | 显示全部楼层
本帖最后由 狐狸糊涂 于 2015-9-5 10:09 编辑

BD杀34,修复4,余12

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

steven_lzs
发表于 2015-9-5 10:09:30 | 显示全部楼层
ESET杀37

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

nick20010117
发表于 2015-9-5 10:12:38 | 显示全部楼层
费尔扫描kill 18x
云鉴定kill 22x
动态防御kill 1x
一共kill 41x
今天爆表啊
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-21 16:46 , Processed in 0.157937 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表