精睿样本测试（15.9.25）

edwardcl

ESET余13X

lzswwslz126

基准线余23

学雷锋做人

360：24个

FD：34个

莱薇

大概32个


-------------

欧阳宣

norton
扫描检测27个，修复4个。
[mw_shl_code=css,true]Resolved Threats:
Bloodhound.Exploit.551
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
- Deleted


Backdoor.Trojan
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted


Downloader.Upatre!gen9
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted


Trojan.Zbot
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted


W97M.Downloader
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\09.vir - Deleted
1 Browser Cache



Trojan.Gen.SMH
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.25\13.vir - Deleted
d:\virus\huge\2015.9.25\16.vir - Deleted
1 Browser Cache



VBS.Dunihi
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\25.vir - Deleted
1 Browser Cache



Trojan.Gen
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.25\17.vir - Deleted
d:\virus\huge\2015.9.25\21.vir - Deleted
1 Browser Cache



Trojan Horse
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.25\15.vir - Deleted
d:\virus\huge\2015.9.25\26.vir - Deleted
1 Browser Cache



Trojan.Gen.X
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\18.vir - Deleted
1 Browser Cache



Trojan.Cryptolocker.E
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\10.vir - Deleted
1 Browser Cache



Packed.Generic.347
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.25\20.vir - Deleted
d:\virus\huge\2015.9.25\30.vir - Deleted
1 Browser Cache



Meterpreter
Type: Anomaly
Risk: Medium (Medium Stealth, Medium Removal, Medium Performance, Medium Privacy)  
Categories: Security Risk
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\33.vir - Deleted
1 Browser Cache



Downloader.Upatre!gen9
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
4 Files
d:\virus\huge\2015.9.25\11.vir - Deleted
d:\virus\huge\2015.9.25\27.vir - Deleted
d:\virus\huge\2015.9.25\23.vir - Deleted
d:\virus\huge\2015.9.25\46.vir - Deleted
1 Browser Cache



Backdoor.Graybird
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Restart Required
-----------
10 Registry Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UpdatesDisableNotify:0 - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:1 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:1 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc\->Start:2 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:1 - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Internet Explorer\New Windows\->PopupMgr:yes - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\New Windows\->PopupMgr:yes - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\New Windows\->PopupMgr:yes - Repaired
3 Files
C:\Users\jeff6\AppData\Local\virtualstore\windows\syswow64\installed.dat - Restart Required
C:\WINDOWS\SysWOW64\Installed.dat - Restart Required
d:\virus\huge\2015.9.25\34.vir - Deleted
1 Browser Cache

1 System Action



Trojan.Gen.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.25\32.vir - Deleted
d:\virus\huge\2015.9.25\43.vir - Deleted
1 Browser Cache



Infostealer.Limitail
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Virus
Status: Fully Resolved
-----------
6 Registry Entries
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
1 File
d:\virus\huge\2015.9.25\45.vir - Deleted
1 Browser Cache



Suspicious.Epi.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\49.vir - Deleted
1 Browser Cache



Suspicious.Epi.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)  
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.25\48.vir - Deleted
1 Browser Cache[/mw_shl_code]

MXCERILYF!

360杀毒（只开启自主引擎）
文件后缀为vir时：杀24个

文件后缀为exe时：补杀2个

文件后缀为zip时：补杀5个

无后缀：补杀2个

共查杀33个，(排除1个修复)剩余17个

驭龙

McAfee Cloud AV  Beta 双击杀32个，剩余18个其中十个无法在Windows 8.1上运行，准确的说只放过八个

MXCERILYF!

瑞星杀毒软件-检出23个

aboringman

AVG kill 29 files and fix 1 file
[mw_shl_code=css,true]"Shell Extension Scan"
"High severity";"26";"26";"0"
"Medium severity";"4";"4";"0"
"Notifications";"1";"0";"1"
"Scanned:";"C:\Documents and Settings\Administrator\桌面\2015.9.25"
"Started:";"2015-9-25, 20:35:59"
"Finished:";"2015-9-25, 20:36:02"
"Number of items:";"233"
"Launched by:";"Administrator"

"Name";"Description";"Status";"Status";"Priority"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\12.vir";"Virus found JS/Phish";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\27.vir";"Trojan horse Downloader.Generic14.AGRZ";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\38.vir";"Found MalSign.Downloader.D48";"Secured";"Healed";"Medium"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\29.vir";"Trojan horse Inject3.HBQ";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\20.vir";"Could be a Trojan horse Agent";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\06.vir";"Trojan horse Exploit_c.ACAP";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\19.vir";"Adware BundleApp.LTX";"Secured";"Healed";"Medium"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\46.vir";"Found Luhe.Fiha.A";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\14.vir";"Trojan horse Inject3.HBO";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\30.vir";"Could be a Trojan horse Agent";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\49.vir";"Could be a Trojan horse Downloader.NSIS";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\09.vir";"Virus identified W97M/Downloader.AD";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\31.vir";"Virus found JS/Downloader.Agent";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\39.vir";"Virus found Win32/Heur";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\13.vir";"Trojan horse Crypt4.CMSR";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\24.vir";"Trojan horse Inject2.CHNN";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\36.vir";"Found MalSign.Downloader.D48";"Secured";"Healed";"Medium"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\10.vir";"Trojan horse Generic_s.FLM";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\15.vir";"Trojan horse Patched3_c.BUMN";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\26.vir";"Trojan horse Generic_r.FWV";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\07.vir";"Trojan horse Downloader.Generic14.AGSM";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\11.vir";"Trojan horse Downloader.Generic14.AGSM";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\21.vir";"Trojan horse Generic25.SVX";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\43.vir";"Potentially unwanted application HackTool.AQJO";"Secured";"Healed";"Medium"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\37.vir";"Trojan horse Atros2.AAIB";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\40.vir";"Virus found FakeAlert";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\16.vir";"Trojan horse Crypt4.CMSO";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\41.vir";"The file is signed with a broken digital signature, issued by: HUAWEI Technologies Co..";"Notification";"Unresolved";"Message"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\04.vir";"Trojan horse Pakes2_c.BJXO.dropper";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\23.vir";"Trojan horse Downloader.Generic14.AGRY";"Secured";"Healed";"High"
"C:\Documents and Settings\Administrator\桌面\2015.9.25\34.vir";"Trojan horse Downloader.Generic13.AWJB";"Secured";"Healed";"High"
[/mw_shl_code]

GreenCodes

lzswwslz126 发表于 2015-9-25 11:36
基准线余23

竟然和大数字差不多杀毒厂商要倒闭了